CVEs from 2026
Total
13,466
critical
critical 1,177
high
high 4,294
medium
medium 4,167
low
low 443
% Critical
8.7%
% with KEV
0.4%
% with exploit
0.8%
Top products
- chrome 417
- firepower_threat_defense 298
- firepower_threat_defense_software 295
- gcp 229
- openclaw 166
- commerce 104
- commerce_b2b 89
- magento 74
Top packages
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-41227 | high | 7.5 | 7.5 | 18d ago | On an HTTP/2 virtual server with Layer 7 DoS Protection configured, undisclosed traffic can result in an increase in memory consumption causing the Traffic Management Microkernel (TMM) process to ter… | |||
| CVE-2026-41218 | high | 7.5 | 7.5 | 18d ago | When BIG-IP PEM iRules are configured on a virtual server (iRules using commands starting with CLASSIFICATION::, CLASSIFY::, PEM::, PSC::, and the urlcatquery command), undisclosed traffic can cause … | |||
| CVE-2026-40629 | high | 7.5 | 7.5 | 18d ago | When SSL profiles are configured on a virtual server, undisclosed traffic can cause the virtual server to stop processing new client connections. Note: Software versions which have reached End of Te… | |||
| CVE-2026-40618 | high | 7.5 | 7.5 | 18d ago | When an SSL profile is configured on a virtual server on BIG-IP Virtual Edition (VE) without Intel QuickAssist Technology (QAT) or on BIG-IP hardware platforms with the database variable crypto.hwacc… | |||
| CVE-2026-40423 | high | 7.5 | 7.5 | 18d ago | When a SIP profile is configured on a virtual server, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate. Note: Software versions which have reached End of Technica… | |||
| CVE-2026-40067 | high | 7.5 | 7.5 | 18d ago | When a BIG-IP APM access policy is configured on a virtual server, undisclosed traffic can cause the apmd process to terminate. Note: Software versions which have reached End of Technical Support (… | |||
| CVE-2026-40060 | high | 7.5 | 7.5 | 18d ago | When a BIG-IP Advanced WAF or ASM security policy is configured on a virtual server, undisclosed requests can cause the bd process to terminate. Note: Software versions which have reached End o… | |||
| CVE-2026-39458 | high | 7.5 | 7.5 | 18d ago | When a BIG-IP DNS profile enabled with DNS cache is configured on a virtual server, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate. Note: Software versions which… | |||
| CVE-2026-39455 | high | 7.5 | 7.5 | 18d ago | When the BIG-IP Configuration utility is configured to use Lightweight Directory Access Protocol (LDAP) authentication, undisclosed traffic can cause the httpd process to exhaust the available file d… | |||
| CVE-2026-39806 | high | 7.5 | 7.5 | 18d ago | Bandit: Unauthenticated DoS via chunked request trailers in Bandit HTTP/1 decoder | |||
| CVE-2026-39803 | high | 7.5 | 7.5 | 18d ago | Bandit: Unauthenticated one-shot DoS via `Transfer-Encoding: chunked` | |||
| CVE-2026-6276 | high | 7.5 | 7.5 | 18d ago | Using libcurl, when a custom `Host:` header is first set for an HTTP request and a second request is subsequently done using the same *easy handle* but without the custom `Host:` header set, the seco… | |||
| CVE-2026-5773 | high | 7.5 | 7.5 | 18d ago | libcurl might in some circumstances reuse the wrong connection for SMB(S) transfers. libcurl features a pool of recent connections so that subsequent requests can reuse an existing connection to avo… | |||
| CVE-2026-4798 | high | 7.5 | 7.5 | 18d ago | The Avada Builder plugin for WordPress is vulnerable to time-based SQL Injection via the ‘product_order’ parameter in all versions up to, and including, 3.15.1 due to insufficient escaping on the use… | |||
| CVE-2026-6929 | high | 7.5 | 7.5 | 19d ago | The JoomSport – for Sports: Team & League, Football, Hockey & more plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'sortf' parameter in all versions up to, and including,… | |||
| CVE-2026-28904 | high | 7.5 | 7.5 | 19d ago | The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5, iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS … | |||
| CVE-2026-28962 | high | 7.5 | 7.5 | 19d ago | This issue was addressed with improved access restrictions. This issue is fixed in Safari 26.5, iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, visionOS 26.5. Processing mal… | |||
| CVE-2026-43660 | high | 7.5 | 7.5 | 19d ago | A validation issue was addressed with improved logic. This issue is fixed in Safari 26.5, iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 2… | |||
| CVE-2026-28944 | high | 7.5 | 7.5 | 19d ago | The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, visionOS 26.5. Processing maliciously crafted web content may le… | |||
| CVE-2026-28913 | high | 7.5 | 7.5 | 19d ago | The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, watchOS 26.5. Processing maliciously crafted web cont… | |||
| CVE-2026-40164 | high | 7.5 | 7.5 | 19d ago | Important: jq security update | |||
| CVE-2026-43658 | high | 7.5 | 7.5 | 19d ago | The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Processing maliciously c… | |||
| CVE-2026-28883 | high | 7.5 | 7.5 | 19d ago | A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Processin… | |||
| CVE-2026-28953 | high | 7.5 | 7.5 | 19d ago | The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5, iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS … | |||
| CVE-2026-28905 | high | 7.5 | 7.5 | 19d ago | The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5. Processing maliciously crafted web con… | |||
| CVE-2026-1250 | high | 7.5 | 7.5 | 19d ago | The Court Reservation – Manage Your Court Bookings Online plugin for WordPress is vulnerable to generic SQL Injection via the ‘id’ parameter in all versions up to, and including, 1.10.11 due to insuf… | |||
| CVE-2026-44648 | high | 7.5 | 7.5 | 19d ago | SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image generation engines, and text-to-speech voice models. Prior to 1.18.0,… | |||
| CVE-2026-44594 | high | 7.5 | 7.5 | 19d ago | esm.sh is a no-build content delivery network (CDN) for web development. In 137 and earlier, a Local File Inclusion (LFI) vulnerability exists in the esbuild plugin's handling of the browser field in… | |||
| CVE-2026-44302 | high | 7.5 | 7.5 | 19d ago | Snappier has an infinite loop during SnappyStream decompression with malformed framed input | |||
| CVE-2026-44296 | high | 7.5 | 7.5 | 19d ago | Deskflow is a keyboard and mouse sharing app. Prior to 1.26.0.167, a remote, unauthenticated denial of service (DoS) vulnerability affects Deskflow servers running with TLS enabled (the default). Whe… | |||
| CVE-2026-44241 | high | 7.5 | 7.5 | 19d ago | Micronaut has unbounded `formattersCache` in `TimeConverterRegistrar` that Allows Memory Exhaustion via `Accept-Language` Header | |||
| CVE-2026-42855 | high | 7.5 | 7.5 | 19d ago | arduino-esp32 is an Arduino core for the ESP32, ESP32-S2, ESP32-S3, ESP32-C3, ESP32-C6 and ESP32-H2 microcontrollers. Prior to 3.3.8, the WebServer Digest authentication implementation in arduino-esp… | |||
| CVE-2026-42544 | high | 7.5 | 7.5 | 19d ago | Granian vulnerable to unauthenticated DoS via WebSocket subprotocol header panic | |||
| CVE-2026-42268 | high | 7.5 | 7.5 | 19d ago | ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. From 3.0.0 to before 3.0.15, there is an unhandled exception (std::out_of_range) caused … | |||
| CVE-2026-44240 | high | 7.5 | 7.5 | 19d ago | basic-ftp allows a malicious FTP server to cause client-side denial of service via unbounded multiline control response buffering | |||
| CVE-2026-44222 | high | 7.5 | 7.5 | 19d ago | vLLM Vulnerable to Remote DoS via Special-Token Placeholders | |||
| CVE-2026-34665 | high | 7.5 | 7.5 | 19d ago | CAI Content Credentials versions 0.78.2, 0.7.0 and earlier are affected by an Uncontrolled Resource Consumption vulnerability that could lead to application denial-of-service. An attacker could explo… | |||
| CVE-2026-34652 | high | 7.5 | 7.5 | 19d ago | Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by a Dependency on Vulnerable Third-Party Component vulnerability that could result i… | |||
| CVE-2026-34651 | high | 7.5 | 7.5 | 19d ago | Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by an Uncontrolled Resource Consumption vulnerability that could lead to application … | |||
| CVE-2026-34650 | high | 7.5 | 7.5 | 19d ago | Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by an Uncontrolled Resource Consumption vulnerability that could lead to application … | |||
| CVE-2026-34649 | high | 7.5 | 7.5 | 19d ago | Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by an Uncontrolled Resource Consumption vulnerability that could lead to application … | |||
| CVE-2026-34648 | high | 7.5 | 7.5 | 19d ago | Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by an Uncontrolled Resource Consumption vulnerability that could lead to application … | |||
| CVE-2026-34646 | high | 7.5 | 7.5 | 19d ago | Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by an Incorrect Authorization vulnerability that could result in a Security feature b… | |||
| CVE-2026-34645 | high | 7.5 | 7.5 | 19d ago | Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by an Incorrect Authorization vulnerability that could result in a Security feature b… | |||
| CVE-2026-23827 | high | 7.5 | 7.5 | 19d ago | A heap-based buffer overflow vulnerability exists in a Network management service of AOS-8 and AOS-10 that could allow an unauthenticated remote attacker to achieve remote code execution. Successful … | |||
| CVE-2026-23826 | high | 7.5 | 7.5 | 19d ago | A vulnerability in a network management service of AOS-8 Operating System could allow an unauthenticated remote attacker to exploit this vulnerability by sending specially crafted network packets to … | |||
| CVE-2026-23825 | high | 7.5 | 7.5 | 19d ago | Vulnerabilities exist in a protocol-handling component of AOS-8 and AOS-10 Operating Systems. An unauthenticated attacker could exploit these vulnerabilities by sending specially crafted network mess… | |||
| CVE-2026-23824 | high | 7.5 | 7.5 | 19d ago | Vulnerabilities exist in a protocol-handling component of AOS-8 and AOS-10 Operating Systems. An unauthenticated attacker could exploit these vulnerabilities by sending specially crafted network mess… | |||
| CVE-2026-43891 | high | 7.5 | 7.5 | 19d ago | changedetection.io is a free open source web page change detection tool. Prior to 0.55.1, the vulnerability is caused by trusting attacker-controlled snapshot paths restored from backup files. The vu… | |||
| CVE-2026-42893 | high | 7.5 | 7.5 | 19d ago | <p>Improper neutralization of special elements used in a command ('command injection') in M365 Copilot allows an unauthorized attacker to perform tampering over a network.</p> | |||
| CVE-2026-42348 | high | 7.5 | 7.5 | 19d ago | OpAMP client reads unbounded HTTP response bodies | |||
| CVE-2026-41895 | high | 7.5 | 7.5 | 19d ago | changedetection.io is a free open source web page change detection tool. In 0.54.9 and earlier, xpath_filter() switches to XML mode for XML/RSS content and creates etree.XMLParser(strip_cdata=False) … | |||
| CVE-2026-40406 | high | 7.5 | 7.5 | 19d ago | <p>Use after free in Windows TCP/IP allows an unauthorized attacker to disclose information over a network.</p> | |||
| CVE-2026-40405 | high | 7.5 | 7.5 | 19d ago | <p>Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service over a network.</p> | |||
| CVE-2026-40379 | high | 7.5 | 7.5 | 19d ago | <p>Exposure of sensitive information to an unauthorized actor in Azure Entra ID allows an unauthorized attacker to perform spoofing over a network.</p> | |||
| CVE-2026-35424 | high | 7.5 | 7.5 | 19d ago | <p>Missing release of memory after effective lifetime in Windows Internet Key Exchange (IKE) Protocol allows an unauthorized attacker to deny service over a network.</p> | |||
| CVE-2026-32161 | high | 7.5 | 7.5 | 19d ago | <p>Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Native WiFi Miniport Driver allows an unauthorized attacker to execute code over an adjacent … | |||
| CVE-2026-31240 | high | 7.5 | 7.5 | 19d ago | mem0 server lacks authentication and authorization controls for its memory management API endpoints | |||
| CVE-2026-43513 | high | 7.5 | 7.5 | 19d ago | Apache Tomcat: LockOutRealm treats user names as case-sensitive | |||
| CVE-2026-41284 | high | 7.5 | 7.5 | 19d ago | Apache Tomcat: Unbounded read in WebDAV LOCK and PROPFIND handling | |||
| CVE-2026-41712 | high | 7.5 | 7.5 | 19d ago | Spring AI: ChatMemory DEFAULT_CONVERSATION_ID causes unintended cross-user data leakage | |||
| CVE-2026-8162 | high | 7.5 | 7.5 | 20d ago | multiparty vulnerable to Denial of Service via Uncaught Exception in filename* parameter parsing | |||
| CVE-2026-8161 | high | 7.5 | 7.5 | 20d ago | multiparty: Denial of Service via Prototype Pollution leads to Uncaught Exception | |||
| CVE-2026-8159 | high | 7.5 | 7.5 | 20d ago | multiparty vulnerable to ReDoS via filename parsing | |||
| CVE-2026-33893 | high | 7.5 | 7.5 | 20d ago | A vulnerability has been identified in Teamcenter V2312 (All versions < V2312.0014), Teamcenter V2406 (All versions < V2406.0012), Teamcenter V2412 (All versions < V2412.0009), Teamcenter V2506 (All … | |||
| CVE-2026-22925 | high | 7.5 | 7.5 | 20d ago | A vulnerability has been identified in SIMATIC CN 4100 (All versions < V5.0). The affected application is susceptible to resource exhaustion when subjected to high volume of TCP SYN packets This cou… | |||
| CVE-2026-2993 | high | 7.5 | 7.5 | 20d ago | The AI Chatbot & Workflow Automation by AIWU plugin for WordPress is vulnerable to SQL Injection in versions up to, and including, 1.4.17 due to insufficient escaping on user supplied parameters and … | |||
| CVE-2026-7287 | high | 7.5 | 7.5 | 20d ago | ** UNSUPPORTED WHEN ASSIGNED ** A buffer overflow vulnerability in the formWep(), formWlAc(), formPasswordSetup(), formUpgradeCert(), and formDelcert() functions of the “webs” binary in Zyxel NWA1100… | |||
| CVE-2026-2614 | high | 7.5 | 7.5 | 20d ago | MLflow allows an unauthenticated remote attacker to read arbitrary files from the server's filesystem | |||
| CVE-2026-28860 | high | 7.5 | 7.5 | 20d ago | The issue was addressed with improved input validation. This issue is fixed in iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4, tvO… | |||
| CVE-2026-7790 | high | 7.5 | 7.5 | 20d ago | cowlib cow_http_te module: Uncontrolled Resource Consumption vulnerability allows Excessive Allocation | |||
| CVE-2026-44413 | high | 7.5 | 7.5 | 20d ago | In JetBrains TeamCity before 2026.1 2025.11.5 authenticated users could expose server API to unauthorised access | |||
| CVE-2026-33361 | high | 7.5 | 7.5 | 20d ago | In Meari IoT SDK image handling (libmrplayer.so) as observed in CloudEdge 5.5.0 (build 220), Arenti 1.8.1 (build 220), and related white-label apps (<= 1.8.x), baby monitor ".jpgx3" files use reversi… | |||
| CVE-2026-33359 | high | 7.5 | 7.5 | 20d ago | In Meari IoT Cloud alert image storage on Alibaba OSS (latest observed; storage service version not disclosed), motion snapshots are retrievable without authentication, signed URLs, or expiry enforce… | |||
| CVE-2026-33357 | high | 7.5 | 7.5 | 20d ago | In Meari client applications embedding "com.meari.sdk" (including CloudEdge 5.5.0 build 220, Arenti 1.8.1 build 220, and related white-label <= 1.8.x), the integrated call path to openapi-euce.mearic… | |||
| CVE-2026-31248 | high | 7.5 | 7.5 | 20d ago | Docling's METS GBS backend is vulnerable to XML Entity Expansion (XXE) attacks | |||
| CVE-2026-34092 | high | 7.5 | 7.5 | 20d ago | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/Skin/Skin.Php. This issue… | |||
| CVE-2026-34091 | high | 7.5 | 7.5 | 20d ago | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation MediaWiki. This issue affects MediaWiki: from * before 1.43.7, 1.44.4, 1.45.2. | |||
| CVE-2026-34090 | high | 7.5 | 7.5 | 20d ago | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation CheckUser. This issue affects CheckUser: from 1.45.0 before 1.45.2. | |||
| CVE-2026-34088 | high | 7.5 | 7.5 | 20d ago | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation MediaWiki. This issue affects MediaWiki: from * before 1.43.7, 1.44.4, 1.45.2. | |||
| CVE-2026-34087 | high | 7.5 | 7.5 | 20d ago | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation OATHAuth. This issue affects OATHAuth: from * before 1.43.7, 1.44.4, 1.45.2. | |||
| CVE-2026-31247 | high | 7.5 | 7.5 | 20d ago | Docling's JATS XML backend is vulnerable to XML Entity Expansion (XXE) attacks | |||
| CVE-2026-28943 | high | 7.5 | 7.5 | 21d ago | A logging issue was addressed with improved data redaction. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5,… | |||
| CVE-2026-28986 | high | 7.5 | 7.5 | 21d ago | A race condition was addressed with additional validation. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, … | |||
| CVE-2026-28872 | high | 7.5 | 7.5 | 21d ago | A resource exhaustion issue was addressed with improved input validation. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.4 and iPadOS 26.4. A remote attacker may be able to cause a denia… | |||
| CVE-2026-28930 | high | 7.5 | 7.5 | 21d ago | A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Tahoe 26.5. An app may be able to access protected user data. | |||
| CVE-2026-43668 | high | 7.5 | 7.5 | 21d ago | A use after free issue was addressed with improved memory management. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS T… | |||
| CVE-2026-43652 | high | 7.5 | 7.5 | 21d ago | A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Tahoe 26.5. An app may be able to access protected user data. | |||
| CVE-2026-28965 | high | 7.5 | 7.5 | 21d ago | A privacy issue was addressed with improved checks. This issue is fixed in iOS 26.5 and iPadOS 26.5. A user may be able to view restricted content from the lock screen. | |||
| CVE-2026-43661 | high | 7.5 | 7.5 | 21d ago | A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, watchOS 26.5. Processing a maliciously crafted image… | |||
| CVE-2026-28848 | high | 7.5 | 7.5 | 21d ago | A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Sequoia 15.7.7, macOS Tahoe 26.5. A remote attacker may be able to cause unexpected system termination. | |||
| CVE-2026-28983 | high | 7.5 | 7.5 | 21d ago | A type confusion issue was addressed with improved checks. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. A r… | |||
| CVE-2026-28991 | high | 7.5 | 7.5 | 21d ago | An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. An app may be able to cau… | |||
| CVE-2026-28925 | high | 7.5 | 7.5 | 21d ago | A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may be able to cause unexpected system termin… | |||
| CVE-2026-28924 | high | 7.5 | 7.5 | 21d ago | A race condition was addressed with improved handling of symbolic links. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may be able to access Contacts with… | |||
| CVE-2026-28976 | high | 7.5 | 7.5 | 21d ago | An information leakage was addressed with additional validation. This issue is fixed in macOS Tahoe 26.5. An app may be able to gain root privileges. | |||
| CVE-2026-28936 | high | 7.5 | 7.5 | 21d ago | The issue was addressed with improved checks. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sonoma 14.8.7, macOS Tahoe 26.5, visionOS 26.5. Processing a malicio… | |||
| CVE-2026-28969 | high | 7.5 | 7.5 | 21d ago | A use after free issue was addressed with improved memory management. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS T… | |||
| CVE-2026-28959 | high | 7.5 | 7.5 | 21d ago | A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26… | |||
| CVE-2026-28954 | high | 7.5 | 7.5 | 21d ago | A file quarantine bypass was addressed with additional checks. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. A maliciously crafted … |