7.8

CVSS3.1

CVE-2026-21325 - After Effects | Out-of-bounds Read (CWE-125)

After Effects versions 25.6 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user. Expl…

πŸ“… Published: Feb. 10, 2026, 5:52 p.m. πŸ”„ Last Modified: Feb. 11, 2026, 5:36 p.m.

7.8

CVSS3.1

CVE-2026-21327 - After Effects | Out-of-bounds Write (CWE-787)

After Effects versions 25.6 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

πŸ“… Published: Feb. 10, 2026, 5:52 p.m. πŸ”„ Last Modified: Feb. 11, 2026, 5:36 p.m.

7.8

CVSS3.1

CVE-2026-21320 - After Effects | Use After Free (CWE-416)

After Effects versions 25.6 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

πŸ“… Published: Feb. 10, 2026, 5:52 p.m. πŸ”„ Last Modified: Feb. 11, 2026, 5:37 p.m.

7.8

CVSS3.1

CVE-2026-21321 - After Effects | Integer Overflow or Wraparound (CWE-190)

After Effects versions 25.6 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

πŸ“… Published: Feb. 10, 2026, 5:52 p.m. πŸ”„ Last Modified: Feb. 11, 2026, 5:37 p.m.

7.8

CVSS3.1

CVE-2026-21351 - After Effects | Use After Free (CWE-416)

After Effects versions 25.6 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

πŸ“… Published: Feb. 10, 2026, 5:52 p.m. πŸ”„ Last Modified: Feb. 11, 2026, 5:29 p.m.

8.7

CVSS4.0

CVE-2026-25611 - Pre-Authentication Memory Exhaustion Denial of Service in MongoDB Server

A series of specifically crafted, unauthenticated messages can exhaust available memory and crash a MongoDB server.

πŸ“… Published: Feb. 10, 2026, 5:52 p.m. πŸ”„ Last Modified: Feb. 11, 2026, 3:21 p.m.

6.9

CVSS4.0

CVE-2026-26003 - FastGPT Plugin forwarding request is not authenticated, posing a serious risk of attack

FastGPT is an AI Agent building platform. From 4.14.0 to 4.14.5, attackers can directly access the plugin system through FastGPT/api/plugin/xxx without authentication, thereby threatening the plugin system. This may cause the plugin system to crash and the loss of plugin installation status, but it…

πŸ“… Published: Feb. 10, 2026, 5:52 p.m. πŸ”„ Last Modified: Feb. 10, 2026, 9:33 p.m.

8.8

CVSS3.1

CVE-2026-20841 - Windows Notepad App Remote Code Execution Vulnerability

Improper neutralization of special elements used in a command ('command injection') in Windows Notepad App allows an unauthorized attacker to execute code over a network.

πŸ“… Published: Feb. 10, 2026, 5:51 p.m. πŸ”„ Last Modified: Feb. 11, 2026, 7:49 p.m.

7.5

CVSS3.1

CVE-2026-20846 - GDI+ Denial of Service Vulnerability

Buffer over-read in Windows GDI+ allows an unauthorized attacker to deny service over a network.

πŸ“… Published: Feb. 10, 2026, 5:51 p.m. πŸ”„ Last Modified: Feb. 12, 2026, 12:22 p.m.

5.5

CVSS3.1

CVE-2026-21222 - Windows Kernel Information Disclosure Vulnerability

Insertion of sensitive information into log file in Windows Kernel allows an authorized attacker to disclose information locally.

πŸ“… Published: Feb. 10, 2026, 5:51 p.m. πŸ”„ Last Modified: Feb. 12, 2026, 12:22 p.m.
Total resulsts: 332446
Page 44 of 33,245
Β« previous page Β» next page
Filters