Stay informed on the latest CVE entries. Explore critical vulnerabilities and exposures to safeguard your systems from cyber threats and attacks.
Search across headline titles and summaries.
Background for this topic.
CVE is a publicly available catalog of common identifiers for publicly known cybersecurity vulnerabilities. Originating from the Common Vulnerabilities and Exposures (CVE) system, it enables security professionals and IT organizations to synchronize their efforts in securing systems against known threats.
In the context of information security, CVE entries provide precise definitions for vulnerabilities and exposures. This allows for better management of security coverage by facilitating clear communication about the presence of threats and the need for patches or remedial action. With a standardized approach to vulnerability management, CVE helps in coordinating across different security tools and databases, ensuring an aligned and coherent response to security incidents.
Weekly headline count for the current query.
CVE-2026-42897 stems from a cross-site scripting (XSS) vulnerability and can allow an attacker to compromise Outlook Web Access (OWA) mailboxes.
Microsoft has disclosed a new security vulnerability impacting on-premise versions of Exchange Server that it said has come under active exploitation in the wild