CVE Vulnerability Catalog
Translated CVE descriptions from NVD NIST - in English
CISA KEV catalog updated: (v2026.07.15)
A resample query can lead to out-of-memory crashes in Grafana.
A vulnerability in public dashboards and direct data-sources exposes passwords of all direct data-sources, even if not used in dashboards. Passwords of proxied data-sources are not exposed.
A Reflected Cross-Site Scripting (XSS) vulnerability has been identified in DSpace JSPUI 6.5 within the search/discover filtering functionality. The vulnerability exists due to improper sanitization of user-supplied input via the filter_type_1 parameter.
A stored cross-site scripting vulnerability in the artifacts API of ByteDance DeerFlow prior to commit 5dbb362 allows attackers to inject malicious HTML or JavaScript by uploading it as artifacts. The code executes in the browser context when users view the artifacts.
Sending a "NOOP (((...)))" command with 4000 parentheses increases memory usage by about 1 MB. Longer commands cause client disconnection. An attacker can keep this memory allocated by not sending the line feed (LF) character.
The Grafana MSSQL data source plugin contains a logic flaw that allows a low-privileged user (Viewer) to bypass API restrictions and trigger a catastrophic Out-Of-Memory (OOM) memory exhaustion, crashing the host container.
A flaw was found in p11-kit where a remote attacker could exploit the C_DeriveKey function on a remote token with specific IBM kyber or IBM btc derive mechanism parameters set to NULL. This could lead to the RPC-client attempting to return an uninitialized value, potentially causing a NULL dereference or undefined behavior.
A vulnerability has been discovered in Grafana OSS that allows an authorization bypass in the provisioning contact points API. Users with Editor role can modify protected webhook URLs without the required alert.notifications.receivers.protected:write permission.
Mattermost Plugins versions <=11.4, 11.0.4, 11.1.3, 11.3.2, and 10.11.11.0 fail to validate incoming request size, allowing an authenticated attacker to disrupt service via the webhook endpoint.
A flaw was found in GIMP, which is a heap buffer over-read in the PCX file loader due to an off-by-one error. A remote attacker could exploit this by convincing a user to open a specially crafted PCX image.
A NULL pointer dereference vulnerability was found in the Linux kernel's icmp_tag_validation() function. When hardened PMTU mode is enabled (ip_no_pmtu_disc=3) and an ICMP Fragmentation Needed packet with an inner IP header containing an unregistered protocol number is received, a kernel panic occurs in softirq context.
A vulnerability in NATS-Server before versions 2.11.15 and 2.12.6 allows a malicious client to cause unbounded memory usage before authentication via WebSockets connections. The attack requires sending a corresponding amount of data, making it a milder variant of CVE-2026-27571.
Domoticz versions prior to 2026.1 contain a stored cross-site scripting vulnerability in the Add Hardware and rename device functionality. An authenticated administrator can inject malicious code via crafted names containing script or HTML markup, which is stored and executed in the browsers of other users viewing the affected page.
A vulnerability in the web-based management interface of Cisco Catalyst SD-WAN Manager allows an authenticated, remote attacker to perform a cross-site scripting (XSS) attack against a user of the interface. This is due to insufficient input validation.
W jądrze systemu Linux zidentyfikowano podatność, która pozwala na błędne usunięcie gniazda z kolejki odbiorczej przez zbieranie śmieci (GC) w wyniku wywołania MSG_PEEK. Problem ten występuje w sytuacji, gdy gniazdo jest zamykane podczas sprawdzania jego stanu przez GC, co prowadzi do nieprawidłowego wniosku o martwym gnieździe.
W jądrze systemu Linux zidentyfikowano podatność związana z wyciekiem pamięci w funkcji ice_set_ringparam. Problem polega na tym, że w przypadku niepowodzenia alokacji rx_rings, tx_rings i xdp_rings pozostają niezwolnione, co prowadzi do wycieku pamięci.
A NULL pointer dereference vulnerability was found in the Linux kernel's bridge br_do_suppress_nd() function. It occurs when IPv6 is disabled via ipv6.disable=1 and an ICMPv6 Neighbor Discovery packet reaches the bridge, causing a kernel crash.
In the Linux kernel, the ETS (Enhanced Transmission Selection) network scheduler has a divide-by-zero vulnerability in the offload path. The issue is caused by unsigned integer overflow when computing WRR weights, potentially leading to a kernel panic.
W jądrze Linuxa zidentyfikowano podatność związaną z niewłaściwym dziedziczeniem parametrów przez zadania SCHED_DEADLINE podczas zmiany priorytetu. Problem ten może prowadzić do błędów w obliczaniu pasma, gdy zadanie nie jest poprawnie oznaczane jako wzmocnione.
In the Linux kernel, the dell-wmi-sysman driver's set_new_password() function hex dumped the entire buffer containing plaintext passwords. The hex dump has been removed to prevent credential leakage.

