Advanced Threat Data Export
Filter and download the raw CVE repository (CSV/JSON) for SIEM integration and internal reporting.
Data export is locked. Upgrade your package to enable filtering and downloading.
π Premium Features
π Filter Threats
| Title | Severity | EPSS (30-Day) | PoC | Actively Exploited | Source | Date |
|---|---|---|---|---|---|---|
| CVE-2026-9024 A Stored Cross-site Scripting (XSS) vulnerability affecting Process Experience Studio in DELMIA Service Process Engineer from Release 3DEXPERIENCE R20... | HIGH | π LOCKED | ????? | ????? | NVD | 2 days ago |
| CVE-2026-8474 A vulnerability was discovered on Stormshield Network SecurityΒ
* 4.3.0 to 4.3.41,Β
* 4.8.0 to 4.8.15,Β
* 5.0.0 to 5.0.5
It i... | MEDIUM | π LOCKED | ????? | ????? | NVD | 2 days ago |
| CVE-2026-7858 A Deserialization of Untrusted Data vulnerability affecting Teamwork Cloud from No Magic Release 2022x through No Magic Release 2026x and Magic Collab... | CRITICAL | π LOCKED | ????? | ????? | NVD | 2 days ago |
| CVE-2026-49361 Apache Fluss versions prior to 0.9.1 configure the Netty LengthFieldBasedFrameDecoder with Integer.MAX_VALUE as the maximum frame length, allowing una... | HIGH | π LOCKED | ????? | ????? | NVD | 2 days ago |
| CVE-2026-49298 A bug in Apache Airflow's KubernetesExecutor caused JWT tokens used by worker pods to authenticate against the Execution API to be passed to the ... | HIGH | π LOCKED | ????? | ????? | NVD | 2 days ago |
| CVE-2026-49270 Exposure of Sensitive Information Through Metadata vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ All.
Brokers that are co... | MEDIUM | π LOCKED | ????? | ????? | NVD | 2 days ago |
| CVE-2026-49267 Apache Airflow's EmailOperator and the underlying `airflow.utils.email` helpers established SMTP STARTTLS connections without verifying the remot... | MEDIUM | π LOCKED | ????? | ????? | NVD | 2 days ago |
| CVE-2026-49157 Incorrect Default Permissions vulnerability in Apache ActiveMQ.
This issue affects Apache ActiveMQ: before 5.19.7, from 6.0.0 before 6.2.6.
The defa... | HIGH | π LOCKED | ????? | ????? | NVD | 2 days ago |
| CVE-2026-48827 Path traversal vulnerability in Apache MINA SSHD bundle sshd-git. Lack of path validation in git-upload-pack, git-receive-pack, and other git operatio... | HIGH | π LOCKED | ????? | ????? | NVD | 2 days ago |
| CVE-2026-48726 A bug in Apache Airflow's auth manager logout handling left previously-issued JWT tokens valid after the user clicked logout in the UI: the logou... | MEDIUM | π LOCKED | ????? | ????? | NVD | 2 days ago |
| CVE-2026-46764 The Event Log detail endpoint `GET /api/v2/eventLogs/{event_log_id}` in Apache Airflow fetched audit-log rows directly by numeric ID after only the ge... | MEDIUM | π LOCKED | ????? | ????? | NVD | 2 days ago |
| CVE-2026-46605 Incomplete authorization by Apache ActiveMQ server before versions v6.2.6 and v5.19.7 allows authenticated connections to remove existing destinations... | MEDIUM | π LOCKED | ????? | ????? | NVD | 2 days ago |
| CVE-2026-45505 Improper Input Validation, Improper Control of Generation of Code ('Code Injection') vulnerability in Apache ActiveMQ Broker, Apache ActiveM... | HIGH | π LOCKED | ????? | ????? | NVD | 2 days ago |
| CVE-2026-45426 Exploitation requires the attacker to already be an authenticated Airflow worker holding a valid Log-server JWT issued for at least one Dag. Apache Ai... | LOW | π LOCKED | ????? | ????? | NVD | 2 days ago |
| CVE-2026-45360 Apache Airflow's scheduler-side deadline-reference decoder (`SerializedCustomReference.deserialize_reference`) imported and dispatched arbitrary ... | HIGH | π LOCKED | ????? | ????? | NVD | 2 days ago |
| CVE-2026-44825 Hardcoded credentials in the Basic Authentication setup tool (bin/solr auth enable) in Apache Solr versions 9.4.0 through 9.10.1 and 10.0.0 allows a r... | HIGH | π LOCKED | ????? | ????? | NVD | 2 days ago |
| CVE-2026-42588 Improper Input Validation, Improper Control of Generation of Code ('Code Injection') vulnerability in Apache ActiveMQ Broker, Apache ActiveM... | HIGH | π LOCKED | ????? | ????? | NVD | 2 days ago |
| CVE-2026-42360 A bug in Apache Airflow's rendered-template field handling caused nested sensitive-key masking (e.g. nested `password` / `token` / `secret` / `ap... | MEDIUM | π LOCKED | ????? | ????? | NVD | 2 days ago |
| CVE-2026-42359 A bug in Apache Airflow's XCom PATCH endpoint `PATCH /api/v2/xcomEntries/{key}` allowed an authenticated UI/API user with XCom write permission o... | HIGH | π LOCKED | ????? | ????? | NVD | 2 days ago |
| CVE-2026-42358 A bug in Apache Airflow's Variable response masker caused nested-key redaction (triggered by secret-suffixed key names like `password`, `token`, ... | MEDIUM | π LOCKED | ????? | ????? | NVD | 2 days ago |