Calgary, Alberta, Canada
sales@hackhalt.com
Free Download Free Download Free Download
Explore Pricing Explore Pricing Explore Pricing

Blog

"Prevention is cheaper than a breach"

Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total10,857
Critical0
High0
Medium10,857
Reset
Showing 1281-1300 of 10857 records
Threat Entry Updated 2026-01-14

CVE-2026-21308 - Substance3D - Designer Plugin

Substance3D - Designer versions 15.0.3 and earlier are affected by an Out-of-bounds Read vulnerability that could lead to memory exposure. An attacker could leverage this vulnerability to disclose sensitive information stored in memory. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

PLUGIN Substance3D - Designer

CVE-2026-21308

MEDIUM CVSS 5.5 2026-01-13
Open Full Technical Breakdown
Threat Entry Updated 2026-02-03

CVE-2026-22791 - Opencryptoki Plugin

openCryptoki is a PKCS#11 library and tools for Linux and AIX. In 3.25.0 and 3.26.0, there is a heap buffer overflow vulnerability in the CKM_ECDH_AES_KEY_WRAP implementation allows an attacker with local access to cause out-of-bounds writes in the host process by supplying a compressed EC public key and invoking C_WrapKey. This can lead to heap corruption, or denial-of-service.

PLUGIN Opencryptoki

CVE-2026-22791

MEDIUM CVSS 6.6 2026-01-13
Open Full Technical Breakdown
Threat Entry Updated 2026-01-14

CVE-2026-21288 - Illustrator Plugin

Illustrator versions 29.8.3, 30.0 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption to services. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

PLUGIN Illustrator

CVE-2026-21288

MEDIUM CVSS 5.5 2026-01-13
Open Full Technical Breakdown
Threat Entry Updated 2026-01-14

CVE-2026-21278 - InDesign Desktop Plugin

InDesign Desktop versions 21.0, 19.5.5 and earlier are affected by an Out-of-bounds Read vulnerability that could lead to memory exposure. An attacker could leverage this vulnerability to access sensitive information stored in memory. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

PLUGIN InDesign Desktop

CVE-2026-21278

MEDIUM CVSS 5.5 2026-01-13
Open Full Technical Breakdown
Threat Entry Updated 2026-01-14

CVE-2026-21265 - Windows 10 Version 1607 Plugin

Windows Secure Boot stores Microsoft certificates in the UEFI KEK and DB. These original certificates are approaching expiration, and devices containing affected certificate versions must update them to maintain Secure Boot functionality and avoid compromising security by losing security fixes related to Windows boot manager or Secure Boot. The operating system’s certificate update protection mechanism relies on firmware components that might contain defects, which can cause certificate trust updates to fail or behave unpredictably. This leads to potential disruption of the Secure Boot trust chain and requires careful validation and…

PLUGIN Windows 10 Version 1607

CVE-2026-21265

MEDIUM CVSS 6.4 2026-01-13
Open Full Technical Breakdown
Scroll to top