search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2026-06-03 2026-06-03 2026-06-03 VU#595768 Securly Chrome Extension contains multiple weak encryption and access control vulnerabilities
2026-06-02 2026-06-02 2026-06-02 VU#615987 Missing IPsec Integrity Protection for IMS SIP Signaling in Verizon VoLTE Deployments
2026-06-02 2026-06-02 2026-06-02 VU#265691 Appsmiths SQL Query autocomplete renderer contains a cross site scripting vulnerability
2026-06-02 2026-06-02 2026-06-02 VU#873170 Collibra Agent contains improper authentication and path traversal vulnerabilities
2022-04-28 2022-04-28 2026-06-01 VU#730007 Tychon is vulnerable to privilege escalation due to OPENSSLDIR location
2026-06-01 2026-06-01 2026-06-01 VU#158530 PCTCore64.sys Windows kernel driver contains missing access control vulnerability
2026-05-28 2026-05-28 2026-05-28 VU#780781 Casdoor contains multiple authentication bypass and access management vulnerabilities
2026-04-23 2026-04-23 2026-05-26 VU#748485 Unauthenticated configuration modification vulnerability in Central Office Services - Content Hosting Component
2026-05-20 2026-05-20 2026-05-20 VU#980487 Local privilege escalation in Linux Kernel (Dirty Frag)
2026-03-30 2026-03-26 2026-05-20 VU#221883 CrewAI contains multiple vulnerabilities including SSRF, RCE and local file read
2026-05-18 2026-05-18 2026-05-18 VU#777338 SGLang contains two remote code execution and one path traversal vulnerability
2026-05-11 2026-05-11 2026-05-12 VU#471747 dnsmasq contains several vulnerabilities, including attacker DNS redirect, privilege escalation, and heap manipulation
2026-05-11 2026-05-11 2026-05-11 VU#937808 Casdoor contains Arbitrary File Write vulnerability
2026-05-08 2026-05-08 2026-05-08 VU#260001 Linux kernel contains local privilege escalation vulnerability (Copy Fail)
2025-09-09 2025-09-09 2026-05-04 VU#461364 Hiawatha open-source web server has multiple vulnerabilities

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis