Advanced Threat Data Export
Filter and download the raw CVE repository (CSV/JSON) for SIEM integration and internal reporting.
Data export is locked. Upgrade your package to enable filtering and downloading.
🔔 Premium Features
🔍 Filter Threats
| Title | Severity | PoC | Actively Exploited | Source | Date |
|---|---|---|---|---|---|
| CVE-2026-34692 Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. An attack... | MEDIUM | ????? | ????? | NVD | 2 days ago |
| CVE-2026-40371 Improper handling of insufficient permissions or privileges in Microsoft Dynamics 365 (on-premises) allows an authorized attacker to elevate privilege... | HIGH | ????? | ????? | NVD | 2 days ago |
| CVE-2026-34335 Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. | HIGH | ????? | ????? | NVD | 2 days ago |
| CVE-2026-35188 Issue summary: A malicious server can exploit TLS OCSP stapling by delivering
a crafted response through the status_request extension, triggering a
do... | MEDIUM | ????? | ????? | NVD | 2 days ago |
| CVE-2026-34183 Issue summary: Remote peer may exhaust heap memory of the QUIC
server or client by flooding it with packets containing PATH_CHALLENGE
frames.
Impact ... | HIGH | ????? | ????? | NVD | 2 days ago |
| CVE-2026-33828 Trust boundary violation in Windows Attestation allows an authorized attacker to elevate privileges locally. | HIGH | ????? | ????? | NVD | 2 days ago |
| CVE-2026-33113 Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized att... | MEDIUM | ????? | ????? | NVD | 2 days ago |
| CVE-2026-34182 Issue Summary: Cryptographic Message Services (CMS) processing fails to perform
sufficient input validation on the cipher and tag length fields of
Aut... | CRITICAL | ????? | ????? | NVD | 2 days ago |
| CVE-2026-34181 Issue Summary: The PKCS#12 file processing fails to perform sufficient input
validation for files that use Password-Based Message Authentication Code ... | HIGH | ????? | ????? | NVD | 2 days ago |
| CVE-2026-34180 Issue summary: Parsing a crafted DER-encoded ASN.1 structure with a primitive
element whose content exceeds 2 gigabytes in length may cause a heap buf... | HIGH | ????? | ????? | NVD | 2 days ago |
| CVE-2026-32193 Improper limitation of a pathname to a restricted directory ('path traversal') in Microsoft Azure Kubernetes Service allows an authorized at... | HIGH | ????? | ????? | NVD | 2 days ago |
| CVE-2026-26142 Deserialization of untrusted data in Nuance PowerScribe allows an unauthorized attacker to execute code over a network. | CRITICAL | ????? | ????? | NVD | 2 days ago |
| CVE-2026-28301 A vulnerability in which an attacker can provide a crafted external URL that may redirect a user to an unintended website. | MEDIUM | ????? | ????? | NVD | 2 days ago |
| CVE-2026-22926 Omnissa Workspace ONE® Assist for macOS contains a Local Privilege Escalation Vulnerability. | HIGH | ????? | ????? | NVD | 2 days ago |
| CVE-2026-24181 NVIDIA DALI contains a vulnerability in a component where an attacker could cause an improper index validation. A successful exploit of this vulnerabi... | HIGH | ????? | ????? | NVD | 2 days ago |
| CVE-2026-24180 NVIDIA DALI contains a vulnerability in a component where an attacker could cause a heap-based buffer overflow. A successful exploit of this vulnerabi... | HIGH | ????? | ????? | NVD | 2 days ago |
| CVE-2026-49959 Hermes WebUI before version 0.51.311 contains a remote code execution vulnerability that allows authenticated attackers to execute arbitrary commands ... | HIGH | ????? | ????? | NVD | 2 days ago |
| CVE-2026-49958 Hermes WebUI before version 0.51.303 contains a time-of-check time-of-use (TOCTOU) race condition vulnerability in the git_discard function within api... | MEDIUM | ????? | ????? | NVD | 2 days ago |
| CVE-2026-49957 Hermes WebUI before version 0.51.296 contains a workspace boundary bypass vulnerability that allows authenticated attackers to circumvent blocked-root... | HIGH | ????? | ????? | NVD | 2 days ago |
| CVE-2026-42599 Svelte is a performance oriented web framework. Prior to version 5.55.7, when using spread syntax to render attributes from untrusted data, event hand... | UNKNOWN | ????? | ????? | NVD | 2 days ago |