Recent Advisories

Severity ID Title Vendor Product Date Type
CRITICAL 9.6 CVE-2026-13781

CVE-2026-13781_CVE-2026-13781

Insufficient validation of untrusted input in Skia in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the render...

Google Chrome 150.0.7871.47 CVE
CRITICAL 9.6 CVE-2026-13780

CVE-2026-13780_CVE-2026-13780

Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the rende...

Google Chrome 150.0.7871.47 CVE
CRITICAL 9.6 CVE-2026-13776

CVE-2026-13776_CVE-2026-13776

Type Confusion in Dawn in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially pe...

Google Chrome 150.0.7871.47 CVE
CRITICAL 9.6 CVE-2026-13775

CVE-2026-13775_CVE-2026-13775

Use after free in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially per...

Google Chrome 150.0.7871.47 CVE
CRITICAL 9 CVE-2025-23351

CVE-2025-23351_CVE-2025-23351

NVIDIA ConnectX and BlueField contain a vulnerability in the command interface where a local user with virtual function (VF) access may cause a wri...

NVIDIA BlueField GA All versions prior to 46.3008 CVE
CRITICAL 9 CVE-2025-23350

CVE-2025-23350_CVE-2025-23350

NVIDIA ConnectX and BlueField contain a vulnerability in the command interface where a local user with virtual function (VF) access may cause a wri...

NVIDIA BlueField GA All versions prior to 46.3008 CVE
CRITICAL 9.8 CVE-2025-15646

HTML::Gumbo versions before 0.19 for Perl disclose heap memory via type confusion_CVE-2025-15646

HTML::Gumbo versions before 0.19 for Perl disclose heap memory via type confusion. Support for the element was added to libgumbo 0.10.0 in 2015, ...

BPS HTML::Gumbo CVE
CRITICAL 9.3 CVE-2026-58453

JAIOTlink C492A-W6 4.8.30.57701411 Hard-coded Credentials via anyka_ipc_CVE-2026-58453

JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain a hard-coded credentials vulnerability that allows network-adjacent at...

JAIOTlink C492A-W6 Wi-Fi IP Camera 4.8.30.57701411 CVE
CRITICAL 9.3 CVE-2026-34107

Guardian Language-System Unauthenticated OS Command Injection via id Parameter in translate.php_CVE-2026-34107

Guardian language-system passes the id GET parameter directly into a PHP exec() call in translate.php (line 14) without sanitization: exec(\"php jo...

guardian language-system CVE
CRITICAL 9.3 CVE-2026-34106

Guardian Language-System Unauthenticated OS Command Injection via id Parameter in subtitles.php_CVE-2026-34106

Guardian language-system passes the id GET parameter directly into a PHP exec() call in subtitles.php (line 19) without sanitization: exec(\"php jo...

guardian language-system CVE