Monitor vulnerabilities that affect your stack.
Sign up free to get alerts when software you use is affected.
CVE Vulnerabilities - 10 March 2026
RSS664 vulnerabilities published on 10 March 2026
Severity:
Drupal 8 Patching Functionality Bypass
MINI-cwwg-hcrq-v94h
Adobe Acrobat and Reader Unpatched after Update, Malware Risk
ECHO-ede0-d99f-450b
Adobe Acrobat Reader Can Be Tricked into Executing Malicious Code
MINI-58cq-3jvh-fwpj
MINI-738p-2c22-5qhj
MINI-738p-2c22-5qhj
WordPress Plugin 'WP User Manager' Allows Unauthorized Access
MINI-cc54-6882-x3ff
MINI-454c-6qgh-xm7m
MINI-454c-6qgh-xm7m
WordPress Plugin 'Hello Dolly' Allows Unauthorized File Access
ECHO-0786-47fc-4824
Microsoft Windows Denial of Service in Windows Search
MINI-5jhf-hr8q-fvqh
OpenVPN Server Authentication Bypass in Ubuntu
CGA-qj8m-g84m-pxm8
CGA-676w-93cv-mf32
CGA-676w-93cv-mf32
Adobe Reader for Windows Cross-Site Scripting Flaw Allows Malicious Code Execution
CGA-5jrv-6f42-c3ph
CGA-5jrv-6f42-c3ph
Error in Vulnerability Report Causes Wrong Information
CVE-2026-3370
Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in ...
WordPress Plugin WP Fastest Cache Vulnerability Allowing Remote Code Execution
Adobe Acrobat Reader allows malicious PDF to execute arbitrary code
CGA-wcqm-jq92-cx5v
Apache Tomcat Denial of Service Vulnerability
CGA-vxr7-634f-rmvj
CGA-9qvf-vj4h-x7fp
Weaker-than-expected password encryption in Microsoft SQL Server
CGA-9qvf-vj4h-x7fp
CGA-75rj-3cgf-pf8f
CGA-75rj-3cgf-pf8f
Linux Kernel: TLS Data Corrupted Due to Race Condition
CVE-2026-23240
In the Linux kernel, the following vulnerability has been resolved:
tls: Fix race condition in tls_sw_cancel_work_tx()
This issue was discovered dur...
Linux Kernel: Data Loss Risk in espintcp_close() Function
CVE-2026-23239
In the Linux kernel, the following vulnerability has been resolved:
espintcp: Fix race condition in espintcp_close()
This issue was discovered durin...
GIMP: Malicious Files Can Crash or Steal Data
USN-8082-1
Michael Randrianantenaina discovered that GIMP incorrectly handled certain
malformed ICO files. An attacker could possibly use this to cause a denial
...
Python Maturin Date Parsing Error Allows Remote Code Execution
SUSE-SU-2026:0860-1
This update for python-maturin fixes the following issue:
- CVE-2026-25727: time: parsing of user-provided input by the RFC 2822 date parser can lead...
rootio-binutils: Unauthorized Access to Sensitive Data
ROOT-OS-UBUNTU-2204-CVE-2025-1180
Root has patched CVE-2025-1180 in the rootio-binutils package for Root:Ubuntu:22.04. Multiple fixed versions available....
python-aiohttp: Prevent Denial of Service and Data Exposure
SUSE-SU-2026:0859-1
This update for python-aiohttp fixes the following issues:
- CVE-2025-69228: Fixed denial of service through large payloads (bsc#1256022).
- CVE-20...