|
1001
|
- |
|
-
|
-
|
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
|
-
|
CVE-2026-6481
|
2026-05-3 08:16 |
2026-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1002
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
ALSA: ctxfi: Fix missing SPDIFI1 index handling
SPDIF1 DAIO type isn't properly handled in daio_device_index() for
hw20k2, and it…
|
-
|
CVE-2026-31776
|
2026-05-2 16:16 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1003
|
- |
|
-
|
-
|
Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2025-67968. Reason: This candidate is a reservation duplicate of CVE-2025-67968. Notes: All CVE users should reference …
|
-
|
CVE-2025-12993
|
2026-05-2 06:16 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1004
|
5.6 |
MEDIUM
Network
|
vllm
|
vllm
|
A vulnerability was found in vllm up to 0.19.0. The affected element is the function has_mamba_layers of the file vllm/v1/kv_cache_interface.py of the component KV Block Handler. Performing a manipul…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2026-7141
|
2026-05-2 05:30 |
2026-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1005
|
7.3 |
HIGH
Network
|
shadowclonelabs
|
glutamate_mcp_servers
|
A vulnerability was determined in ShadowCloneLabs GlutamateMCPServers up to e2de73280b01e5d943593dd1aa2c01c5b9112f78. Affected by this issue is some unknown functionality of the file src/puppeteer/in…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2026-7094
|
2026-05-2 05:30 |
2026-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1006
|
8.8 |
HIGH
Network
|
coze
|
coze_studio
|
A vulnerability was detected in ByteDance coze-studio up to 0.5.1. Affected by this vulnerability is the function ExecuteSQL of the file backend/domain/memory/database/service/database_impl.go of the…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-7023
|
2026-05-2 05:27 |
2026-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1007
|
5.6 |
MEDIUM
Network
|
ollama
|
ollama
|
A security flaw has been discovered in Ollama up to 0.20.2. This affects the function digestToPath of the file x/imagegen/transfer/transfer.go of the component Tensor Model Transfer Handler. The mani…
|
CWE-22
Path Traversal
|
CVE-2026-7020
|
2026-05-2 05:24 |
2026-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1008
|
9.8 |
CRITICAL
Network
|
sipeed
|
picoclaw
|
A vulnerability was detected in PicoClaw up to 0.2.4. Impacted is an unknown function of the file /api/gateway/restart of the component Web Launcher Management Plane. Performing a manipulation result…
|
CWE-74
CWE-77
Injection
Command Injection
|
CVE-2026-6987
|
2026-05-2 05:24 |
2026-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1009
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A security flaw has been discovered in TimBroddin astro-mcp-server up to 1.1.1. The impacted element is an unknown function of the file src/index.ts of the component MCP Tool Query Construction. Perf…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-7591
|
2026-05-2 05:21 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1010
|
7.3 |
HIGH
Network
|
-
|
-
|
A weakness has been identified in itsourcecode Courier Management System 1.0. This affects an unknown function of the file /edit_staff.php. Executing a manipulation of the argument ID can lead to sql…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-7592
|
2026-05-2 05:21 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
