CVE-2026-25667
ASP.NET Core Kestrel in Microsoft .NET 8.0 before 8.0.22 and .NET 9.0 before 9.0.11 allows a remote...

CVE-2026-3503
Protection mechanism failure in wolfCrypt post-quantum implementations (ML-KEM and ML-DSA) in wolfSSL...

6.5 CVE-2026-25744
OpenEMR is a free and open source electronic health records and medical practice management application....

6.5 CVE-2026-25928
OpenEMR is a free and open source electronic health records and medical practice management application....

4.4 CVE-2026-32119
OpenEMR is a free and open source electronic health records and medical practice management application....

9.1 CVE-2026-32238
OpenEMR is a free and open source electronic health records and medical practice management application....

CVE-2026-3579
wolfSSL 5.8.4 on RISC-V RV32I architectures lacks a constant-time software implementation for 64-bit...

CVE-2026-3580
In wolfSSL 5.8.4, constant-time masking logic in sp_256_get_entry_256_9 is optimized into conditional...

8.6 CVE-2026-23658
Insufficiently protected credentials in Azure DevOps allows an unauthorized attacker to elevate privileges...

8.6 CVE-2026-23659
Exposure of sensitive information to an unauthorized actor in Azure Data Factory allows an unauthorized...

5.3 CVE-2026-24299
Improper neutralization of special elements used in a command ('command injection') in M365 Copilot...

6.5 CVE-2026-26120
Server-side request forgery (ssrf) in Microsoft Bing allows an unauthorized attacker to perform tampering...

6.5 CVE-2026-26136
Improper neutralization of special elements used in a command ('command injection') in Microsoft Copilot...

8.9 CVE-2026-26137
Server-side request forgery (ssrf) in Microsoft 365 Copilot's Business Chat allows an authorized attacker...

8.6 CVE-2026-26138
Server-side request forgery (ssrf) in Microsoft Purview allows an unauthorized attacker to elevate privileges...

8.6 CVE-2026-26139
Server-side request forgery (ssrf) in Microsoft Purview allows an unauthorized attacker to elevate privileges...

4.1 CVE-2026-27166
Discourse is an open source discussion platform. Prior to versions 2026.3.0-latest.1, 2026.2.1 and...

5.3 CVE-2026-27454
Discourse is an open-source discussion platform. Prior to versions 2026.3.0-latest.1, 2026.2.1, and...

CVE-2026-27491
Discourse is an open-source discussion platform. Prior to versions 2026.3.0-latest.1, 2026.2.1, and...

CVE-2026-27570
Discourse is an open-source discussion platform. Prior to versions 2026.3.0-latest.1, 2026.2.1, and...

CVE-2026-27740
Discourse is an open-source discussion platform. Versions prior to 2026.3.0-latest.1, 2026.2.1, and...