search menu icon-carat-right cmu-wordmark

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2026-07-02 2026-07-02 2026-07-02 VU#639124 Multiple local privilege escalation vulnerabilities in Little Orbits GameFirst Anti-Cheat
2026-06-22 2026-06-22 2026-06-22 VU#936962 Multiple file parsing vulnerabilities in FastStone Image Viewer 8.3.0.0
2026-06-22 2026-06-22 2026-06-22 VU#226679 Microsoft WinRE allows for bypass of UEFI/BIOS password enforcement
2026-06-18 2026-06-18 2026-06-23 VU#457458 Vendor-signed UEFI applications found vulnerable to Secure Boot bypass
2026-06-17 2026-06-17 2026-06-17 VU#380058 SignalRGB kernel driver contains improper access control and IOCTL vulnerabilities
2026-06-11 2026-06-11 2026-06-15 VU#862559 crypton-x509-validation Haskell libraries do not enforce X.509 NameConstraints
2026-06-09 2026-06-09 2026-06-17 VU#616257 Microsoft-signed UEFI shim bootloaders vulnerable to Secure Boot bypass
2026-06-03 2026-06-03 2026-06-03 VU#595768 Securly Chrome Extension contains multiple weak encryption and access control vulnerabilities
2026-06-02 2026-06-02 2026-06-02 VU#615987 Missing IPsec Integrity Protection for IMS SIP Signaling in Verizon VoLTE Deployments
2026-06-02 2026-06-02 2026-06-02 VU#265691 Appsmiths SQL Query autocomplete renderer contains a cross site scripting vulnerability
2026-06-02 2026-06-02 2026-06-02 VU#873170 Collibra Agent contains improper authentication and path traversal vulnerabilities
2026-06-01 2026-06-01 2026-06-01 VU#158530 PCTCore64.sys Windows kernel driver contains missing access control vulnerability
2026-05-28 2026-05-28 2026-05-28 VU#780781 Casdoor contains multiple authentication bypass and access management vulnerabilities
2026-05-20 2026-05-20 2026-05-20 VU#980487 Local privilege escalation in Linux Kernel (Dirty Frag)
2026-05-18 2026-05-18 2026-05-18 VU#777338 SGLang contains two remote code execution and one path traversal vulnerability

Sponsored by CISA.