Common Vulnerabilities and Exposures (CVE)

CVE-2026-48353

Jul 14, 2026 23:39:13 UTC

CAI Content Credentials is affected by an Improper Input Validation vulnerability that could lead to arbitrary file system read. An attacker could exploit this vulnerability to access sensitive files and directories outside the intended acc...

CVE-2026-48352

Jul 14, 2026 23:39:13 UTC

CAI Content Credentials is affected by an Improper Input Validation vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service c...

CVE-2026-48298

Jul 14, 2026 23:39:12 UTC

CAI Content Credentials is affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial...

CVE-2026-48354

Jul 14, 2026 23:39:12 UTC

CAI Content Credentials is affected by an Integer Overflow or Wraparound vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-serv...

CVE-2026-48302

Jul 14, 2026 23:39:12 UTC

CAI Content Credentials is affected by an Improper Input Validation vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service c...

CVE-2026-48351

Jul 14, 2026 23:39:12 UTC

CAI Content Credentials is affected by an Improper Input Validation vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service c...

CVE-2026-48312

Jul 14, 2026 23:39:12 UTC

CAI Content Credentials is affected by an Improper Input Validation vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and gain unauthorized write access. ...

CVE-2026-48287

Jul 14, 2026 23:39:12 UTC

CAI Content Credentials is affected by an Untrusted Search Path vulnerability that could result in arbitrary code execution in the context of the current user. Exploit depends on conditions beyond the attacker's control. Exploitation of thi...

CVE-2026-48296

Jul 14, 2026 23:39:12 UTC

CAI Content Credentials is affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial...

CVE-2026-48357

Jul 14, 2026 23:39:11 UTC

CAI Content Credentials is affected by an Uncontrolled Resource Consumption vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to exhaust system resources, resulting in an applicatio...

CVE-2026-48290

Jul 14, 2026 23:39:11 UTC

CAI Content Credentials is affected by a Server-Side Request Forgery (SSRF) vulnerability that could result in arbitrary code execution in the context of the current user. An attacker could exploit this vulnerability to inject malicious scr...

CVE-2026-48295

Jul 14, 2026 23:39:11 UTC

CAI Content Credentials is affected by an Insufficiently Protected Credentials vulnerability that could result in disclosure of sensitive information. An attacker could leverage this vulnerability to gain unauthorized read access. Exploitat...

CVE-2026-4017

Jul 14, 2026 23:36:28 UTC

Buffer Overflow in the entry handler of the TraceEvent() system call could allow an attacker with local access to cause information disclosure, data tampering or a crash of the QNX Neutrino kernel.

CVE-2026-0515

Jul 14, 2026 23:35:27 UTC

Insufficient Parameter Validation in the SchedGet() system call could allow an attacker with local access to cause a crash of the QNX Neutrino kernel.

CVE-2024-9440

Jul 14, 2026 22:54:54 UTC

Slim Select 2.0 versions through 2.9.0 are affected by a potential cross-site scripting vulnerability. In select.ts:createOption(), the text variable from the user-provided Options object is assigned to an innerHTML without sanitation. Soft...