38454 matches found
CVE-2026-53698
Silverpeas through 6.4.6 mishandles the "Personal space" feature that is selected when no componentId is set...
Silverpeas 安全漏洞
Silverpeas is an open-source business collaboration platform developed by Silverpeas. This platform includes applications such as project management, blogs, forums, and document management. Versions of Silverpeas prior to 6.4.6 contained security vulnerabilities, which were caused by improper...
PT-2026-48353
ESF-IDF is the Espressif Internet of Things IOT Development Framework. In versions 5.2.6, 5.3.5, 5.4.4, 5.5.4, and 6.0, a heap buffer overflow exists in the Security Scheme 2 SRP6a session-setup path of the protocomm component. The first-phase handler handle session command0 in...
ESP-IDF 安全漏洞
ESP-IDF is an open-source development framework for Espressif’s SoCs, supported on Windows, Linux, and macOS. Versions 5.2.6, 5.3.5, 5.4.4, 5.5.4, and 6.0 of ESP-IDF contain security vulnerabilities. These vulnerabilities stem from a buffer overflow in the session setting path of the protocomm...
CVE-2026-47906
Dreamweaver Desktop versions 21.7 and earlier are affected by a Dependency on Vulnerable Third-Party Component vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a maliciou...
MINI-W6X8-38W7-C6CP
Bulletin has no description...
CVE-2026-47906
Dreamweaver Desktop versions 21.7 and earlier are affected by a Dependency on Vulnerable Third-Party Component vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation requires user interaction: the victim must open a malicious file. No remediat...
CVE-2026-47906 Dreamweaver Desktop | Dependency on Vulnerable Third-Party Component (CWE-1395)
Dreamweaver Desktop versions 21.7 and earlier are affected by a Dependency on Vulnerable Third-Party Component vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a maliciou...
EUVD-2026-35803
Dreamweaver Desktop versions 21.7 and earlier are affected by a Dependency on Vulnerable Third-Party Component vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a maliciou...
CVE-2026-42986
Use after free in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally...
CVE-2026-44812 Windows Graphics Component Remote Code Execution Vulnerability
...
CVE-2026-44812 Windows Graphics Component Remote Code Execution Vulnerability
...
CVE-2026-44803 Windows Graphics Component Remote Code Execution Vulnerability
...
CVE-2026-44803 Windows Graphics Component Remote Code Execution Vulnerability
...
CVE-2026-42986 Microsoft Graphics Component Elevation of Privilege Vulnerability
...
EUVD-2026-35737
Use after free in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally...
CVE-2026-42986 Microsoft Graphics Component Elevation of Privilege Vulnerability
...
CVE-2026-42986
CVE-2026-42986 describes a use-after-free in the Microsoft Graphics Component that allows an authorized attacker to elevate privileges locally. Affected: Microsoft Graphics Component; vulnerability class: use-after-free leading to local privilege escalation. Root cause as stated: after-free condi...
CVE-2026-42835
Microsoft Teams for Android contains a vulnerability described as improper neutralization of special elements in output used by a downstream component ('injection'), enabling an authorized attacker to disclose information over a network. Affected software: Microsoft Teams for Android. Root cause:...
Exploit for CVE-2026-48907
CVE-2026-48907: Unauthenticated RCE in JCE Joomla Proof o...