U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Vulnerability Database

National Vulnerability Database

NVD

National Vulnerability Database
Icon for NVD Communications and Status Updates Page
Communications Page
The NVD now supports CVSS version 4.0!
CVSS v4.0 Support
The letters N V D typed out in binary
2.0 APIs

The NVD is the U.S. government repository of standards based vulnerability management data represented using the Security Content Automation Protocol (SCAP). This data enables automation of vulnerability management, security measurement, and compliance. The NVD includes databases of security checklist references, security-related software flaws, product names, and impact metrics.

For information on how to cite the NVD, including the database's Digital Object Identifier (DOI), please consult NIST's Public Data Repository.

Last 20 Scored Vulnerability IDs & Summaries CVSS Severity

  • CVE-2026-23297 - In the Linux kernel, the following vulnerability has been resolved: nfsd: Fix cred ref leak in nfsd_nl_threads_set_doit(). syzbot reported memory leak of struct cred. [0] nfsd_nl_threads_set_doit() passes get_current_cred() to nfsd_svc(), but p... read CVE-2026-23297
    Published: March 25, 2026; 7:16:25 AM -0400

    V3.1: 5.5 MEDIUM

  • CVE-2026-23298 - In the Linux kernel, the following vulnerability has been resolved: can: ucan: Fix infinite loop from zero-length messages If a broken ucan device gets a message with the message length field set to 0, then the driver will loop for forever in uc... read CVE-2026-23298
    Published: March 25, 2026; 7:16:25 AM -0400

    V3.1: 5.5 MEDIUM

  • CVE-2026-23299 - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: purge error queues in socket destructors When TX timestamping is enabled via SO_TIMESTAMPING, SKBs may be queued into sk_error_queue and will stay there until consume... read CVE-2026-23299
    Published: March 25, 2026; 7:16:25 AM -0400

    V3.1: 5.5 MEDIUM

  • CVE-2025-48977 - Relative Path Traversal vulnerability in Apache Ignite REST API. Authenticated REST API users can read any file on the server with "cmd=log" command and a log path crafted in a certain way. This issue affects Apache Ignite: from 2.0.0 through 2.1... read CVE-2025-48977
    Published: May 28, 2026; 6:16:23 AM -0400

    V3.1: 6.5 MEDIUM

  • CVE-2026-38702 - A command injection vulnerability exists in the Admin Access feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IR315 firmware V1.0.118, IR615 firmware V1.0.118, and earlier versions. Attackers can exploit this vulnerabil... read CVE-2026-38702
    Published: May 28, 2026; 1:16:21 PM -0400

  • CVE-2026-38703 - A command injection vulnerability exists in the ZeroTier VPN feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IR315 firmware V1.0.118, IR615 firmware V1.0.118, and earlier versions. Attackers can exploit this vulnerabil... read CVE-2026-38703
    Published: May 28, 2026; 1:16:21 PM -0400

  • CVE-2026-38707 - A command injection vulnerability exists in the IPSec VPN feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IR315 firmware V1.0.118, IR615 firmware V1.0.118, and earlier versions. Attackers can exploit this vulnerability... read CVE-2026-38707
    Published: May 28, 2026; 1:16:21 PM -0400

  • CVE-2026-38704 - A command injection vulnerability exists in the WireGuard VPN feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IR315 firmware V1.0.118, IR615 firmware V1.0.118, and earlier versions. Attackers can exploit this vulnerabi... read CVE-2026-38704
    Published: May 28, 2026; 1:16:21 PM -0400

  • CVE-2026-43616 - Detect-It-Easy prior to 3.21 contains a path traversal vulnerability that allows attackers to write arbitrary files to the filesystem by crafting malicious archive entries with relative traversal sequences or absolute paths. Attackers can exploit ... read CVE-2026-43616
    Published: May 04, 2026; 2:16:32 PM -0400

    V3.1: 7.8 HIGH

  • CVE-2026-44794 - Nautobot is a Network Source of Truth and Network Automation Platform. Prior to 2.4.33 and 3.1.2, in the case of inter-object references via GenericForeignKey (a pattern allowing an object to reference another object that may belong to one of seve... read CVE-2026-44794
    Published: May 28, 2026; 2:16:33 PM -0400

  • CVE-2026-44796 - Nautobot is a Network Source of Truth and Network Automation Platform. Prior to 2.4.33 and 3.1.2, Nautobot UI object-bulk-rename endpoints (for example, /dcim/interfaces/rename/) were vulnerable to application-wide denial of service via maliciousl... read CVE-2026-44796
    Published: May 28, 2026; 2:16:33 PM -0400

  • CVE-2026-44797 - Nautobot is a Network Source of Truth and Network Automation Platform. Prior to 2.4.33 and 3.1.2, Nautobot's Webhook data model and associated feature set could be configured by users with sufficient access to perform requests to various hosts and... read CVE-2026-44797
    Published: May 28, 2026; 2:16:33 PM -0400

  • CVE-2026-29199 - phpBB before 3.3.16 is vulnerable to Host Header Injection that can lead to password rest link poisoning. When force_server_vars is disabled, the servers hostname may be extracted from the HTTP Host header which is used to generate the password re... read CVE-2026-29199
    Published: May 04, 2026; 3:15:59 AM -0400

  • CVE-2026-37540 - OpenAMP v2025.10.0 ELF loader contains an integer overflow vulnerability in firmware image parsing. In elf_loader.c, it performs multiplication of two attacker-controlled 16-bit values from the ELF header without overflow checking. On 32-bit embed... read CVE-2026-37540
    Published: May 01, 2026; 1:16:23 PM -0400

    V3.1: 9.8 CRITICAL

  • CVE-2026-37457 - An off-by-one out-of-bounds write vulnerability in the bgp_flowspec_op_decode() function (bgpd/bgp_flowspec_util.c) of FRRouting (FRR) stable/10.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted FlowSpec component.
    Published: May 01, 2026; 2:16:14 PM -0400

  • CVE-2026-40914 - A vulnerability exists in Apache Artemis whereby an application using the STOMP protocol with security credentials that grant either the consume or send permission on an address can augment the routing-type supported by that address even if said u... read CVE-2026-40914
    Published: May 28, 2026; 9:16:23 AM -0400

    V3.1: 4.3 MEDIUM

  • CVE-2026-35438 - Missing authorization in Windows Admin Center allows an authorized attacker to elevate privileges over a network.
    Published: May 12, 2026; 2:17:14 PM -0400

    V3.1: 8.3 HIGH

  • CVE-2026-47072 - Improper Neutralization of CRLF Sequences ('CRLF Injection') vulnerability in benoitc hackney allows HTTP Request/Response Splitting. The WebSocket upgrade code in src/hackney_ws.erl copies the host, path, headers (ExtraHeaders), and protocols opt... read CVE-2026-47072
    Published: May 25, 2026; 11:16:22 AM -0400

    V3.1: 7.5 HIGH

  • CVE-2026-47075 - Improper Neutralization of CRLF Sequences vulnerability in benoitc hackney allows HTTP Request Splitting. hackney does not percent-encode carriage return (\r) or line feed (\n) characters in the URL query component before constructing the HTTP/1.1... read CVE-2026-47075
    Published: May 25, 2026; 11:16:22 AM -0400

    V3.1: 7.5 HIGH

  • CVE-2026-9078 - Firefox for iOS displayed specially crafted right-to-left (RTL) and internationalized domain names (IDNs) incorrectly in link preview UI surfaces. A crafted RTL hostname could visually reorder portions of the displayed domain, causing attacker-con... read CVE-2026-9078
    Published: May 25, 2026; 11:16:22 AM -0400

Created September 20, 2022 , Updated August 27, 2024