Critical Alert 1 Active Exploit Detected Today

CVE-2026-10520 Ivanti Sentry OS Command Injection Vulnerability →
Powered by CVE Watchtower
×

CVE Watchtower

Advanced Threat Data Export

Filter and download the raw CVE repository (CSV/JSON) for SIEM integration and internal reporting.

Data export is locked. Upgrade your package to enable filtering and downloading.

πŸ”” Premium Features
πŸ” Filter Threats
Title
SeverityPoCActively ExploitedSourceDate
CVE-2026-42767
Issue summary: An attacker-controlled CMP (Certificate Management Protocol) server could trigger a NULL pointer dereference in a CMP client applicatio...
MEDIUM??????????NVD2 days ago
CVE-2026-42766
Issue summary: A specially crafted password-encrypted CMS message can trigger a NULL pointer dereference during CMS decryption. Impact summary: This ...
MEDIUM??????????NVD2 days ago
CVE-2026-42765
Issue summary: When a partial-chain certificate verification is enabled together with OCSP response checking for the whole chain, a NULL dereference w...
HIGH??????????NVD2 days ago
CVE-2026-42764
Issue summary: Receiving a QUIC initial packet with an invalid token may trigger a NULL pointer dereference in the OpenSSL QUIC server with address va...
HIGH??????????NVD2 days ago
CVE-2026-42570
Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficient for the job. From version 5.6.3 t...
HIGH??????????NVD2 days ago
CVE-2026-41108
Heap-based buffer overflow in Microsoft Windows DNS allows an authorized attacker to elevate privileges locally.
HIGH??????????NVD2 days ago
CVE-2026-41098
Improper neutralization of input during web page generation ('cross-site scripting') in Azure Stack Edge allows an authorized attacker to pe...
HIGH??????????NVD2 days ago
CVE-2026-41092
Improper access control in Microsoft Kinect allows an authorized attacker to elevate privileges locally.
HIGH??????????NVD2 days ago
CVE-2026-40409
Windows Universal Disk Format File System Driver (UDFS) Elevation of Privilege Vulnerability
HIGH??????????NVD2 days ago
CVE-2026-40404
Windows Universal Disk Format File System Driver (UDFS) Elevation of Privilege Vulnerability
HIGH??????????NVD2 days ago
CVE-2026-40376
Improper input validation in Visual Studio Code allows an unauthorized attacker to elevate privileges over a network.
HIGH??????????NVD2 days ago
CVE-2026-38615
DedeCMS V5.7.118 is vulnerable to Command Execution in file_manage_control.php.
CRITICAL??????????NVD2 days ago
CVE-2026-34692
Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. An attack...
MEDIUM??????????NVD2 days ago
CVE-2026-40371
Improper handling of insufficient permissions or privileges in Microsoft Dynamics 365 (on-premises) allows an authorized attacker to elevate privilege...
HIGH??????????NVD2 days ago
CVE-2026-34335
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
HIGH??????????NVD2 days ago
CVE-2026-35188
Issue summary: A malicious server can exploit TLS OCSP stapling by delivering a crafted response through the status_request extension, triggering a do...
MEDIUM??????????NVD2 days ago
CVE-2026-34183
Issue summary: Remote peer may exhaust heap memory of the QUIC server or client by flooding it with packets containing PATH_CHALLENGE frames. Impact ...
HIGH??????????NVD2 days ago
CVE-2026-33828
Trust boundary violation in Windows Attestation allows an authorized attacker to elevate privileges locally.
HIGH??????????NVD2 days ago
CVE-2026-33113
Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized att...
MEDIUM??????????NVD2 days ago
CVE-2026-34182
Issue Summary: Cryptographic Message Services (CMS) processing fails to perform sufficient input validation on the cipher and tag length fields of Aut...
CRITICAL??????????NVD2 days ago