Recent Advisories

Severity ID Title Vendor Product Date Type
CRITICAL 9.3 CVE-2026-57517

Control Web Panel < 0.9.8.1225 Blind SQL Injection via userRes Parameter_CVE-2026-57517

Control Web Panel before 0.9.8.1225 contains a blind SQL injection vulnerability that allows unauthenticated remote attackers to execute arbitrary ...

Control Web Panel Control Web Panel 0.9.8.1225 CVE
CRITICAL 9.8 CVE-2026-24270

CVE-2026-24270_CVE-2026-24270

NVIDIA AIStore framework contains a vulnerability where an attacker could bypass authentication. A successful exploit of this vulnerability might l...

NVIDIA AIStore framework 0 - 4.4 CVE
CRITICAL 9.6 CVE-2026-14152

CVE-2026-14152_CVE-2026-14152

Out of bounds read and write in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to...

Google Chrome 150.0.7871.47 CVE
CRITICAL 9.6 CVE-2026-14151

CVE-2026-14151_CVE-2026-14151

Inappropriate implementation in AI in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to po...

Google Chrome 150.0.7871.47 CVE
CRITICAL 9.6 CVE-2026-14056

CVE-2026-14056_CVE-2026-14056

Insufficient validation of untrusted input in Media in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the rende...

Google Chrome 150.0.7871.47 CVE
CRITICAL 9.6 CVE-2026-14055

CVE-2026-14055_CVE-2026-14055

Insufficient validation of untrusted input in Device Trust in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had com...

Google Chrome 150.0.7871.47 CVE
CRITICAL 9.6 CVE-2026-14043

CVE-2026-14043_CVE-2026-14043

Use after free in GetUserMedia in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potent...

Google Chrome 150.0.7871.47 CVE
CRITICAL 9.3 CVE-2026-14038

CVE-2026-14038_CVE-2026-14038

Insufficient validation of untrusted input in New Tab Page in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised th...

Google Chrome 150.0.7871.47 CVE
CRITICAL 9.6 CVE-2026-14037

CVE-2026-14037_CVE-2026-14037

Insufficient policy enforcement in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process t...

Google Chrome 150.0.7871.47 CVE
CRITICAL 9.1 CVE-2026-14198

@fastify/middie vulnerable to authorization bypass via encoded slash in path parameter values_CVE-2026-14198

@fastify/middie versions 9.1.0 through 9.3.2 decode the encoded slash %2F inside path parameter values before matching middleware paths, while Fast...

Fastify @fastify/middie 9.1.0 CVE