2339
CVEs
182
Critical
1000
High
3
KEV
112
PoC
20
Unpatched C/H
98.5%
Patch Rate
0.0%
Avg EPSS
Severity Breakdown
CRITICAL
182
HIGH
1000
MEDIUM
1145
LOW
0
Monthly CVE Trend
Affected Products (30)
Linux Kernel
2489
Ubuntu
818
Debian Linux
421
Chrome
276
Python
175
Kubernetes
101
Windows
72
Docker
69
Imagemagick
65
MySQL
61
Mysql Server
56
Java
53
AI / ML
51
Node.js
51
Freerdp
51
Mattermost Server
51
Golang
50
Android
43
Thunderbird
41
PHP
40
macOS
33
PostgreSQL
32
TLS
30
Tomcat
28
OpenSSL
26
Suricata
25
iOS
25
Assimp
21
Safari
20
Enterprise Linux
20
Top Risky CVEs
| CVE | Summary | Severity | CVSS | EPSS | Priority | Signals |
|---|---|---|---|---|---|---|
| CVE-2026-3910 | Chrome's V8 JavaScript engine contains an inappropriate implementation (CVE-2026-3910, CVSS 8.8) that allows remote attackers to execute arbitrary code within the browser sandbox via crafted HTML pages. KEV-listed with public PoC, this V8 vulnerability affects all Chromium-based browsers and enables drive-by exploitation through any web page containing malicious JavaScript. | HIGH | 8.8 | 0.1% | 119 |
KEV
PoC
|
| CVE-2026-3909 | Google Chrome's Skia graphics library contains an out-of-bounds write (CVE-2026-3909, CVSS 8.8) enabling remote attackers to perform memory corruption through crafted HTML pages. KEV-listed with public PoC and patches available, this vulnerability in the core graphics rendering engine affects all Chromium-based browsers. | HIGH | 8.8 | 0.1% | 119 |
KEV
PoC
|
| CVE-2026-33634 | Trivy security scanner v0.69.4 was compromised in a supply chain attack where a threat actor used stolen credentials to publish malicious releases and force-push credential-stealing malware to GitHub Actions repositories. | CRITICAL | 9.4 | 0.0% | 117 |
KEV
PoC
|
| CVE-2026-27944 | Unauthenticated backup download and RCE in Nginx UI before 2.3.3. EPSS 1.0%. PoC available. | CRITICAL | 9.8 | 1.0% | 70 |
PoC
|
| CVE-2026-4689 | A sandbox escape vulnerability exists in Firefox's XPCOM component due to incorrect boundary conditions and integer overflow, allowing attackers to bypass security sandboxing mechanisms. This affects Firefox versions below 149, Firefox ESR below 115.34, and Firefox ESR below 140.9. An attacker can exploit this flaw to escape the browser sandbox and potentially execute arbitrary code with elevated privileges on the affected system. | CRITICAL | 10.0 | 0.0% | 70 |
PoC
|
| CVE-2026-30861 | OS command injection in WeKnora from version 0.2.5 allows authenticated users to execute arbitrary system commands. CVSS 9.9 with scope change. PoC available. | CRITICAL | 9.9 | 0.2% | 70 |
PoC
|
| CVE-2026-29042 | Shell command injection in Nuclio serverless framework before 1.15.20. PoC and patch available. | CRITICAL | 9.8 | 0.7% | 70 |
PoC
|
| CVE-2026-30860 | SQL injection in WeKnora LLM document understanding framework allows authenticated users to extract arbitrary database contents. CVSS 9.9 with scope change. PoC available. | CRITICAL | 9.9 | 0.2% | 70 |
PoC
|
| CVE-2026-31072 | Remote code execution in APScheduler (all versions through 3.10.x and 4.0.0a5) is achievable when applications deserialize attacker-controlled data via the bundled JSONSerializer or CBORSerializer. The unmarshal_object routine dynamically imports modules and invokes __setstate__ on arbitrary classes, letting an attacker pivot an untrusted payload into code execution; publicly available exploit code exists, though EPSS remains low at 0.06% (19th percentile). | CRITICAL | 9.8 | 0.1% | 69 |
PoC
|
| CVE-2026-33032 | Remote unauthenticated nginx service takeover in nginx-ui's MCP integration allows network attackers to create, modify, or delete nginx configuration files and trigger automatic reloads without authentication. The /mcp_message endpoint lacks authentication middleware while exposing the same MCP tool handlers as the protected /mcp endpoint, and the IP whitelist defaults to empty (allow-all). Attackers can inject malicious server blocks to intercept credentials, exfiltrate backend topology, or crash nginx with invalid configs. CVSS 9.8 (Critical) with network attack vector, no authentication required, and high impact across confidentiality, integrity, and availability. No public exploit identified at time of analysis, though detailed proof-of-concept HTTP request provided in advisory. | CRITICAL | 9.8 | 0.1% | 69 |
PoC
No patch
|
| CVE-2026-32760 | Unauthenticated attackers can register administrator accounts in Docker when self-registration is enabled and default user permissions include admin privileges, as the signup handler fails to strip admin permissions from self-registered accounts. Public exploit code exists for this vulnerability. No patch is currently available. | CRITICAL | 9.8 | 0.0% | 69 |
PoC
|
| CVE-2026-28802 | JWT verification bypass in Authlib 1.6.5-1.6.6. PoC and patch available. | CRITICAL | 9.8 | 0.0% | 69 |
PoC
|
| CVE-2026-6722 | Use-after-free memory corruption in PHP 8.2.x enables remote attackers to achieve high-impact exploitation through network-accessible attack vectors, despite high attack complexity and specific timing requirements. PHP 8.2.31 addresses this vulnerability along with seven other security issues in a coordinated security release. The CVSS v4.0 score of 9.5 reflects both confidentiality and integrity impact across vulnerable and subsequent systems, with high availability impact. No public exploit code or active exploitation confirmed at time of analysis, but the vendor urgency indicator (U:Red) and release coordinator emphasis (RE:M) signal critical priority for organizations running PHP 8.2.x in production environments. | CRITICAL | 9.5 | 0.3% | 68 |
PoC
|
| CVE-2026-29183 | Reflected XSS in SiYuan knowledge management before 3.5.9. | CRITICAL | 9.3 | 0.0% | 67 |
PoC
|
| CVE-2026-25921 | Supply chain attack via LFS object overwrite across repos in Gogs before 0.14.2. PoC and patch available. | CRITICAL | 9.3 | 0.0% | 67 |
PoC
|