8.4 CVE-2025-26240
In JazzCore python-pdfkit 1.0.0, the from_string method enables the execution of JavaScript code within...

4.3 CVE-2025-32748
Dell PowerFlex rack, version(s) RCM 3.7/3.7, contain(s) a Host Header Injection vulnerability. An unauthenticated...

9.8 CVE-2025-71320
picklescan before 0.0.33 contains an incomplete deny-list that fails to block pydoc.locate and operator.methodcaller...

9.8 CVE-2025-71321
picklescan before 0.0.33 contains an arbitrary file writing vulnerability that allows attackers to bypass...

8.8 CVE-2025-71322
PickleScan before 0.0.33 fails to include the pty.spawn function in its unsafe globals list, allowing...

9.8 CVE-2025-71323
picklescan before 0.0.33 fails to block the ctypes module, allowing attackers to achieve remote code...

9.8 CVE-2025-71325
picklescan before 0.0.27 contains a parsing logic error in the _list_globals function when handling...

7.5 CVE-2026-12151
Impact: The undici WebSocket client enforces maxPayloadSize on the cumulative byte count of fragments...

4.3 CVE-2026-12515
A flaw was found in Katello's of Red Hat Satellite. A content upload functionality where insufficient...

5.5 CVE-2026-1288
A maliciously crafted RFA file, when converted to FormIt via “Convert RFA to FormIt” in...

9.1 CVE-2026-20181
A vulnerability in Cisco ISE and ISE-PIC could allow an authenticated, remote attacker to execute arbitrary...

7.5 CVE-2026-20190
A vulnerability in Cisco ISE and ISE-PIC could allow an unauthenticated, remote attacker to view sensitive...

6.3 CVE-2026-20220
A vulnerability in the web-based management interface of Cisco Crosswork Network Controller could allow...

6 CVE-2026-20246
A vulnerability in the vmadmin CLI of Cisco Umbrella Virtual Appliance could allow an authenticated,...

7.8 CVE-2026-32652
Dell AIOps Collector versions prior to 1.18.3 contain a "Use of Default Credentials" vulnerability....

3.5 CVE-2026-35068
Dell PowerFlex Manager, version(s) [Versions], contain(s) an Improper Neutralization of Special Elements...

5.7 CVE-2026-35069
Dell PowerFlex Manager, version(s) [Versions], contain(s) an Improper Neutralization of Special Elements...

9.1 CVE-2026-36418
JimuReport versions 2.3.4 and below are vulnerable to remote code execution due to improper handling...

10 CVE-2026-3490
picklescan before 1.0.4 fails to block pkgutil.resolve_name, allowing attackers to bypass the entire...

7.5 CVE-2026-53872
picklescan before 0.0.35 contains an unsafe pickle deserialization vulnerability allowing unauthenticated...

9.8 CVE-2026-53873
picklescan before 1.0.4 contains an incomplete blocklist for the profile module that fails to block...