search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2026-05-08 2026-05-08 2026-05-08 VU#260001 Linux kernel contains local privilege escalation vulnerability (Copy Fail)
2025-09-09 2025-09-09 2026-05-04 VU#461364 Hiawatha open-source web server has multiple vulnerabilities
2026-04-20 2026-04-20 2026-04-27 VU#915947 SGLang is vulnerable to remote code execution when rendering chat templates from a model file
2026-04-21 2026-04-21 2026-04-24 VU#414811 Terrarium contains a vulnerability that allows arbitrary code execution
2022-08-11 2022-08-11 2026-04-22 VU#309662 Signed third party UEFI bootloaders are vulnerable to Secure Boot bypass
2026-04-22 2026-04-22 2026-04-22 VU#518910 Ollama GGUF Quantization Remote Memory Leak
2026-04-21 2026-04-21 2026-04-21 VU#890999 Radware Alteon has a reflected XSS vulnerability that can execute JavaScript in the host browser
2026-04-09 2026-04-09 2026-04-09 VU#536588 Multiple Heap Buffer Overflows in Orthanc DICOM Server
2026-03-12 2026-03-12 2026-04-07 VU#665416 SGLang (sglang) is vulnerable to code execution attacks via unsafe pickle deserialization
2026-04-02 2026-04-02 2026-04-02 VU#951662 MuPDF by Artifex contains integer overflow vulnerability.
2026-03-30 2026-03-30 2026-03-30 VU#655822 Kyverno is vulnerable to server-side request forgery (SSRF)
2026-03-09 2004-12-10 2026-03-24 VU#976247 Retraction of "Antivirus and Endpoint Detection and Response Archive Scanning Engines may not properly scan malformed ZIP archives"
2026-03-24 2026-03-24 2026-03-24 VU#330121 IDrive for Windows contains local privilege escalation vulnerability
2026-03-24 2026-03-24 2026-03-24 VU#577436 Hard coded credentials vulnerability in GoHarbor's Harbor
2026-02-12 2026-02-12 2026-03-19 VU#504749 PyMuPDF path traversal and arbitrary file write vulnerabilities

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis