CVE Find est une base de données de vulnérabilités en temps réel, indexant 346 840 failles de sécurité (CVE) issues de MITRE, NVD, CISA KEV, CWE et CAPEC. 828 nouvelles CVE ont été publiées ces 7 derniers jours.
Données agrégées depuis : MITRE Corporation (CVE, CWE, CAPEC), National Vulnerability Database – NIST (NVD), CISA Known Exploited Vulnerabilities (KEV), FIRST (EPSS).
| CVE ID | Publié | Description | Score | Gravité | |
|---|---|---|---|---|---|
CVE-2026-7470 |
2026-04-30 02h30 +00:00 |
A flaw has been found in Tenda 4G300 US_4G300V1.0Mt_V1.01.42_CN_TDC01. Affected is the function sub_... Overflow |
8.7 |
Haute |
|
CVE-2026-41940 |
2026-04-29 15h10 +00:00 |
cPanel and WHM versions prior to 11.110.0.97, 11.118.0.63, 11.126.0.54, 11.132.0.29, 11.134.0.20, an... Authorization problems |
9.3 |
Critique |
|
CVE-2026-42426 |
2026-04-28 19h37 +00:00 |
OpenClaw before 2026.4.8 contains an improper authorization vulnerability where the node.pair.approv... Authorization problems |
8.8 |
Haute |
|
CVE-2026-42422 |
2026-04-28 19h37 +00:00 |
OpenClaw before 2026.4.8 contains a role bypass vulnerability in the device.token.rotate function th... Authorization problems |
8.8 |
Haute |
|
CVE-2026-41914 |
2026-04-28 19h37 +00:00 |
OpenClaw before 2026.4.8 contains a server-side request forgery vulnerability in QQ Bot media downlo... Server-Side Request Forgery - SSRF |
8.5 |
Haute |
|
CVE-2026-41404 |
2026-04-28 19h37 +00:00 |
OpenClaw before 2026.3.31 contains an incomplete scope-clearing vulnerability in trusted-proxy authe... Authorization problems |
8.8 |
Haute |
|
CVE-2026-41394 |
2026-04-28 19h37 +00:00 |
OpenClaw before 2026.3.31 contains an authentication bypass vulnerability where unauthenticated plug... Authorization problems |
8.2 |
Haute |
|
CVE-2026-41386 |
2026-04-28 19h37 +00:00 |
OpenClaw before 2026.3.22 contains a privilege escalation vulnerability where bootstrap setup codes ... |
9.1 |
Critique |
|
CVE-2026-41378 |
2026-04-28 19h37 +00:00 |
OpenClaw before 2026.3.31 contains a privilege escalation vulnerability allowing paired nodes with r... Authorization problems |
8.8 |
Haute |
|
CVE-2026-3893 |
2026-04-28 19h37 +00:00 |
The Carlson VASCO-B GNSS Receiver lacks an authentication mechanism,
allowing an attacker with netw... Authorization problems |
9.4 |
Critique |