| CVE ID | Exploitable | Vendor | Product | Vulnerability | Date added |
|---|---|---|---|---|---|
| CVE-2026-34197 | True | Apache | ActiveMQ | Apache ActiveMQ Improper Input Validation Vulnerability | 2026-04-16 00:00:00 |
| CVE-2026-32201 | True | Microsoft | SharePoint Server | Microsoft SharePoint Server Improper Input Validation Vulnerability | 2026-04-14 00:00:00 |
| CVE-2009-0238 | True | Microsoft | Office | Microsoft Office Remote Code Execution | 2026-04-14 00:00:00 |
| CVE-2026-34621 | True | Adobe | Acrobat and Reader | Adobe Acrobat and Reader Prototype Pollution Vulnerability | 2026-04-13 00:00:00 |
| CVE-2026-21643 | True | Fortinet | FortiClient EMS | Fortinet FortiClient EMS SQL Injection Vulnerability | 2026-04-13 00:00:00 |
| CVE-2020-9715 | True | Adobe | Acrobat | Adobe Acrobat Use-After-Free Vulnerability | 2026-04-13 00:00:00 |
| CVE-2023-36424 | True | Microsoft | Windows | Microsoft Windows Out-of-Bounds Read Vulnerability | 2026-04-13 00:00:00 |
| CVE-2023-21529 | True | Microsoft | Exchange Server | Microsoft Exchange Server Deserialization of Untrusted Data Vulnerability | 2026-04-13 00:00:00 |
| CVE-2025-60710 | True | Microsoft | Windows | Microsoft Windows Link Following Vulnerability | 2026-04-13 00:00:00 |
| CVE-2012-1854 | True | Microsoft | Visual Basic for Applications (VBA) | Microsoft Visual Basic for Applications Insecure Library Loading Vulnerability | 2026-04-13 00:00:00 |
| CVE-2026-1340 | True | Ivanti | Endpoint Manager Mobile (EPMM) | Ivanti Endpoint Manager Mobile (EPMM) Code Injection Vulnerability | 2026-04-08 00:00:00 |
| CVE-2026-35616 | True | Fortinet | FortiClient EMS | Fortinet FortiClient EMS Improper Access Control Vulnerability | 2026-04-06 00:00:00 |
| CVE-2026-3502 | True | TrueConf | Client | TrueConf Client Download of Code Without Integrity Check Vulnerability | 2026-04-02 00:00:00 |
| CVE-2026-5281 | True | Dawn | Google Dawn Use-After-Free Vulnerability | 2026-04-01 00:00:00 | |
| CVE-2026-3055 | True | Citrix | NetScaler | Citrix NetScaler Out-of-Bounds Read Vulnerability | 2026-03-30 00:00:00 |
| CVE-2025-53521 | True | F5 | BIG-IP | F5 BIG-IP Stack-Based Buffer Overflow Vulnerability | 2026-03-27 00:00:00 |
| CVE-2026-33634 | True | Aquasecurity | Trivy | Aquasecurity Trivy Embedded Malicious Code Vulnerability | 2026-03-26 00:00:00 |
| CVE-2026-33017 | True | Langflow | Langflow | Langflow Code Injection Vulnerability | 2026-03-25 00:00:00 |
| CVE-2025-31277 | True | Apple | Multiple Products | Apple Multiple Products Buffer Overflow Vulnerability | 2026-03-20 00:00:00 |
| CVE-2025-43520 | True | Apple | Multiple Products | Apple Multiple Products Classic Buffer Overflow Vulnerability | 2026-03-20 00:00:00 |
AVET INS is an owner of VULNDBASE brand and website. This product uses data from the NVD API but is not endorsed or certified by the NVD. See NVD page for more information. CVE is a registered trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE site. CWE is a registered trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE page. KEV (Known Exploited Vulnerabilities) is a catalog maintained by CISA. EUVD is the official EU repository for timely, curated cybersecurity vulnerability intelligence and remediation guidance run by ENISA. DORA (Digital Operational Resilience Act) is and EU directive.
Copyright AVET INS 1997 - 2026