| | CVE-2026-26127 |  Microsoft | high | 7.5 | 0.1%
| | Out-of-bounds read in .NET allows an unauthorized attacker to deny service over a network. | Mar 10, 2026 | Apr 1, 2026 |
| | CVE-2026-25972 |  Fortinet | medium | 4.3 | 0.0%
| | An improper neutralization of input during web page generation ('cross-site scripting') vulnerabilit… | Mar 10, 2026 | Mar 12, 2026 |
| | CVE-2026-25836 | Fortinet | high | 7.2 | 0.1%
| | An improper neutralization of special elements used in an os command ('os command injection') vulner… | Mar 10, 2026 | May 12, 2026 |
| | CVE-2026-25689 | Fortinet | medium | 6.5 | 0.0%
| | An improper neutralization of argument delimiters in a command ('argument injection') vulnerability … | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-24641 | Fortinet | low | 2.7 | 0.1%
| | A NULL Pointer Dereference vulnerability [CWE-476] vulnerability in Fortinet FortiWeb 8.0.0 through … | Mar 10, 2026 | Mar 12, 2026 |
| | CVE-2026-24640 | Fortinet | medium | 6.6 | 0.0%
| | A Stack-based Buffer Overflow vulnerability [CWE-121] vulnerability in Fortinet FortiWeb 8.0.0 throu… | Mar 10, 2026 | Mar 12, 2026 |
| | CVE-2026-24018 | Fortinet | high | 7.8 | 0.0%
| | A UNIX symbolic link (Symlink) following vulnerability in Fortinet FortiClientLinux 7.4.0 through 7.… | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-24017 | Fortinet | high | 8.1 | 0.1%
| | An Improper Control of Interaction Frequency vulnerability [CWE-799] vulnerability in Fortinet Forti… | Mar 10, 2026 | Mar 12, 2026 |
| | CVE-2026-23660 | Microsoft | high | 7.8 | 0.0%
| | Improper access control in Azure Portal Windows Admin Center allows an authorized attacker to elevat… | Mar 10, 2026 | Mar 18, 2026 |
| | CVE-2026-22629 | Fortinet | low | 3.7 | 0.0%
| | An improper restriction of excessive authentication attempts vulnerability in Fortinet FortiAnalyzer… | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-22628 | Fortinet | medium | 5.3 | 0.0%
| | An improper access control vulnerability in Fortinet FortiSwitchAXFixed 1.0.0 through 1.0.1 may allo… | Mar 10, 2026 | Apr 9, 2026 |
| | CVE-2026-22627 | Fortinet | high | 8.8 | 0.0%
| | A buffer copy without checking size of input ('classic buffer overflow') vulnerability in Fortinet F… | Mar 10, 2026 | Apr 9, 2026 |
| | CVE-2025-68648 | Fortinet | high | 7.2 | 0.1%
| | A use of externally-controlled format string vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7… | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2025-68482 | Fortinet | medium | 6.9 | 0.0%
| | A improper certificate validation vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.4, Forti… | Mar 10, 2026 | Mar 12, 2026 |
| | CVE-2025-66178 | Fortinet | high | 7.2 | 0.0%
| | A improper neutralization of special elements used in an os command ('os command injection') vulnera… | Mar 10, 2026 | Mar 12, 2026 |
| | CVE-2025-55717 | Fortinet | medium | 4.0 | 0.0%
| | A cleartext storage of sensitive information vulnerability [CWE-312] vulnerability in Fortinet Forti… | Mar 10, 2026 | Mar 12, 2026 |
| | CVE-2025-54820 | Fortinet | high | 8.1 | 0.0%
| | A Stack-based Buffer Overflow vulnerability [CWE-121] vulnerability in Fortinet FortiManager 7.4.0 t… | Mar 10, 2026 | Mar 12, 2026 |
| | CVE-2025-54659 | Fortinet | medium | 5.8 | 0.1%
| | An Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability [CWE… | Mar 10, 2026 | Apr 9, 2026 |
| | CVE-2025-53608 | Fortinet | medium | 4.8 | 0.0%
| | An Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerabilit… | Mar 10, 2026 | Mar 12, 2026 |
| | CVE-2025-49784 | Fortinet | medium | 6.0 | 0.0%
| | An improper neutralization of special elements used in an sql command ('sql injection') vulnerabilit… | Mar 10, 2026 | Mar 12, 2026 |
| | CVE-2025-48840 | Fortinet | medium | 5.3 | 0.1%
| | An authentication bypass by spoofing vulnerability in Fortinet FortiWeb 7.6.0 through 7.6.3, FortiWe… | Mar 10, 2026 | Mar 12, 2026 |
| | CVE-2025-48418 | Fortinet | medium | 6.7 | 0.1%
| | A hidden functionality vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.3, FortiAnalyzer 7.… | Mar 10, 2026 | Mar 12, 2026 |
| | CVE-2026-26144 | Microsoft | high | 7.5 | 0.1%
| | Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Of… | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-26141 | Microsoft | high | 7.8 | 0.0%
| | Improper authentication in Azure Arc allows an authorized attacker to elevate privileges locally. | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-26118 | Microsoft | high | 8.8 | 0.1%
| | Server-side request forgery (ssrf) in Azure MCP Server allows an authorized attacker to elevate priv… | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-26117 | Microsoft | high | 7.8 | 0.0%
| | Authentication bypass using an alternate path or channel in Azure Windows Virtual Machine Agent allo… | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-26110 | Microsoft | high | 8.4 | 0.1%
| | Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthor… | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-26109 | Microsoft | high | 8.4 | 0.0%
| | Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally… | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-26108 | Microsoft | high | 7.8 | 0.1%
| | Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code… | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-26107 | Microsoft | high | 7.8 | 0.1%
| | Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-26106 | Microsoft | high | 8.8 | 0.1%
| | Improper input validation in Microsoft Office SharePoint allows an authorized attacker to execute co… | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-23665 | Microsoft | high | 7.8 | 0.0%
| | Heap-based buffer overflow in Azure Linux Virtual Machines allows an authorized attacker to elevate … | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-23662 | Microsoft | high | 7.5 | 0.0%
| | Missing authentication for critical function in Azure IoT Explorer allows an unauthorized attacker t… | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-23661 | Microsoft | high | 7.5 | 0.0%
| | Cleartext transmission of sensitive information in Azure IoT Explorer allows an unauthorized attacke… | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-23654 | Microsoft | high | 8.8 | 0.1%
| | Dependency on vulnerable third-party component in GitHub Repo: zero-shot-scfoundation allows an unau… | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-26148 | Microsoft | high | 8.1 | 0.1%
| | External initialization of trusted variables or data stores in Azure Entra ID allows an unauthorized… | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-23674 | Microsoft | high | 7.5 | 0.1%
| | Improper resolution of path equivalence in Windows MapUrlToZone allows an unauthorized attacker to b… | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-26134 | Microsoft | high | 7.8 | 0.1%
| | Integer overflow or wraparound in Microsoft Office allows an authorized attacker to elevate privileg… | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-26132 | Microsoft | high | 7.8 | 0.1%
| | Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally. | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-26128 | Microsoft | high | 7.8 | 0.0%
| | Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges lo… | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-26116 | Microsoft | high | 8.8 | 0.1%
| | Improper neutralization of special elements used in an sql command ('sql injection') in SQL Server a… | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-26115 | Microsoft | high | 8.8 | 0.1%
| | Improper validation of specified type of input in SQL Server allows an authorized attacker to elevat… | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-26121 | Microsoft | high | 7.5 | 0.1%
| | Server-side request forgery (ssrf) in Azure IoT Explorer allows an unauthorized attacker to perform … | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-20967 | Microsoft | high | 8.8 | 0.1%
| | Improper input validation in System Center Operations Manager allows an authorized attacker to eleva… | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-23656 | Microsoft | medium | 5.9 | 0.0%
| | Insufficient verification of data authenticity in Windows App Installer allows an unauthorized attac… | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-26114 | Microsoft | high | 8.8 | 0.6%
| | Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to ex… | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-26113 | Microsoft | high | 8.4 | 0.0%
| | Untrusted pointer dereference in Microsoft Office allows an unauthorized attacker to execute code lo… | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-26112 | Microsoft | high | 7.8 | 0.1%
| | Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute c… | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-26111 | Microsoft | high | 8.0 | 0.1%
| | Integer overflow or wraparound in Windows Routing and Remote Access Service (RRAS) allows an authori… | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2026-26105 | Microsoft | high | 8.1 | 0.0%
| | Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Of… | Mar 10, 2026 | Mar 13, 2026 |