| TP-EXP-2009-0002 | CVE-2009-3459 | Adobe Acrobat and Reader Heap-Based Buffer Overflow Vulnerability (CVE-2009-3459) | Adobe Acrobat and Reader | high | patched | — | ✓ |
| TP-EXP-2026-0008 | CVE-2026-34621 | Adobe Acrobat and Reader Prototype Pollution RCE (CVE-2026-34621) | Adobe Acrobat and Reader | high | patched | — | ✓ |
| TP-EXP-2020-0001 | CVE-2020-9715 | Adobe Acrobat Use-After-Free Vulnerability (CVE-2020-9715) | Adobe Acrobat | high | patched | — | ✓ |
| TP-EXP-2025-0007 | CVE-2025-48595 | Android Framework Integer Overflow Vulnerability (CVE-2025-48595) | Android Framework | high | patched | — | ✓ |
| TP-EXP-2026-0009 | CVE-2026-34197 | Apache ActiveMQ Improper Input Validation Vulnerability (CVE-2026-34197) | Apache ActiveMQ | high | patched | — | ✓ |
| TP-EXP-2017-0001 | CVE-2017-5638 | Apache Struts Content-Type RCE (CVE-2017-5638) | Apache Struts 2.3.x before 2.3.32, 2.5.x before 2.5.10.1 | critical | patched | — | ✓ |
| TP-EXP-2026-0319 | CVE-2026-7473 | Arista EOS Tunnel Decapsulation Bypass (CVE-2026-7473) | Arista Extensible Operating System | medium | mitigated | — | ✓ |
| TP-EXP-2026-0021 | CVE-2026-42208 | BerriAI LiteLLM SQL Injection in Proxy API Key Verification (CVE-2026-42208) | BerriAI LiteLLM | critical | active | — | ✓ |
| TP-EXP-2026-0316 | CVE-2026-42271 | BerriAI LiteLLM MCP Stdio Command Injection (CVE-2026-42271) | BerriAI LiteLLM | high | patched | — | ✓ |
| TP-EXP-2026-0001 | CVE-2026-33825 | BlueHammer — Microsoft Defender Local Privilege Escalation | Windows 10 / 11 with Microsoft Defender enabled | high | patched | — | — |
| TP-EXP-2019-0001 | CVE-2019-0708 | BlueKeep Remote Desktop Services Remote Code Execution Vulnerability (CVE-2019-0708) | Microsoft Remote Desktop Services on legacy Windows versions | critical | patched | — | ✓ |
| TP-EXP-2026-0315 | CVE-2026-50751 | Check Point Security Gateway Improper Authentication Vulnerability (CVE-2026-50751) | Check Point Security Gateway | critical | active | — | ✓ |
| TP-EXP-2026-0311 | CVE-2026-45829 | ChromaDB pre-auth remote code execution in Python FastAPI server (CVE-2026-45829) | ChromaDB Python FastAPI server | high | active | — | — |
| TP-EXP-2026-0006 | CVE-2026-5281 | Chrome Dawn WebGPU Use-After-Free — CVE-2026-5281 | Google Chrome < 146.0.7680.177 | high | patched | — | ✓ |
| TP-EXP-2026-0286 | CVE-2026-20182 | Cisco Catalyst SD-WAN Controller Authentication Bypass Vulnerability (CVE-2026-20182) | Cisco Catalyst SD-WAN Controller and Manager | critical | patched | — | ✓ |
| TP-EXP-2026-0013 | CVE-2026-20122 | Cisco Catalyst SD-WAN Manager Arbitrary File Overwrite via Privileged API (CVE-2026-20122) | Cisco Catalyst SD-WAN Manager < 20.15.4.2 | medium | patched | 0 | ✓ |
| TP-EXP-2026-0011 | CVE-2026-20128 | Cisco Catalyst SD-WAN Manager — DCA Credential File Exposure (CVE-2026-20128) | Cisco Catalyst SD-WAN Manager prior to 20.18 | high | patched | — | ✓ |
| TP-EXP-2026-0012 | CVE-2026-20133 | Cisco Catalyst SD-WAN Manager — OS-Level Sensitive Information Disclosure (CVE-2026-20133) | Cisco Catalyst SD-WAN Manager prior to 20.18.2.1 | high | patched | — | ✓ |
| TP-EXP-2026-0318 | CVE-2026-20245 | Cisco Catalyst SD-WAN Command Injection Privilege Escalation (CVE-2026-20245) | Cisco Catalyst SD-WAN Manager | high | patched | — | ✓ |
| TP-EXP-2026-0323 | CVE-2026-20262 | Cisco Catalyst SD-WAN Manager Arbitrary File Write (CVE-2026-20262) | Cisco Catalyst SD-WAN Manager | medium | patched | — | ✓ |
| TP-EXP-2026-0002 | CVE-2026-20131 | Cisco FMC Insecure Deserialization — Interlock Ransomware Zero-Day | Cisco Secure FMC | critical | patched | 37 | ✓ |
| TP-EXP-2026-0307 | CVE-2026-45793 | Composer GitHub Actions Token Disclosure Vulnerability (CVE-2026-45793) | Composer | high | patched | — | — |
| TP-EXP-2024-0006 | CVE-2024-1708 | ConnectWise ScreenConnect Path Traversal — Authentication Bypass via Directory Traversal (CVE-2024-1708) | ConnectWise ScreenConnect < 23.9.8 | high | patched | — | ✓ |
| TP-EXP-2025-0005 | CVE-2025-29635 | D-Link DIR-823X Authenticated Command Injection via set_prohibiting API (CVE-2025-29635) | D-Link DIR-823X firmware 240126 / 240802 | high | active | — | ✓ |
| TP-EXP-2026-0308 | CVE-2026-8398 | Daemon Tools Lite Embedded Malicious Code Vulnerability (CVE-2026-8398) | Daemon Tools Lite | critical | active | — | ✓ |
| TP-EXP-2026-0291 | CVE-2026-9082 | Drupal Core SQL Injection Vulnerability (CVE-2026-9082) | Drupal Core | high | patched | — | ✓ |
| TP-EXP-2017-0002 | CVE-2017-0144 | EternalBlue — SMBv1 Remote Code Execution (CVE-2017-0144) | Microsoft Windows SMBv1 (Windows XP through Server 2008 R2) | critical | patched | — | ✓ |
| TP-EXP-2026-0310 | CVE-2026-45185 | Exim BDAT Use-After-Free Remote Code Execution (CVE-2026-45185) | Exim Mail Transfer Agent | critical | patched | — | — |
| TP-EXP-2026-0004 | CVE-2026-35616 | FortiClient EMS API Authentication Bypass — Pre-Auth RCE | FortiClient EMS 7.4.5–7.4.6 | critical | patched | 4 | ✓ |
| TP-EXP-2026-0007 | CVE-2026-21643 | Fortinet FortiClient EMS SQL Injection (CVE-2026-21643) | Fortinet FortiClient EMS | critical | patched | — | ✓ |
| TP-EXP-2026-0023 | CVE-2026-42511 | FreeBSD dhclient Remote Code Execution via DHCP BOOTP File Field Injection (CVE-2026-42511) | FreeBSD 13.5, 14.3, 14.4, and 15.0 (supported stable and releng branches) | high | patched | — | — |
| TP-EXP-2026-0016 | CVE-2026-3854 | GitHub Enterprise Server Git Push Option Injection RCE (CVE-2026-3854) | GitHub Enterprise Server ≤ 3.19.3; GitHub.com (mitigated) | high | patched | — | — |
| TP-EXP-2026-0317 | CVE-2026-11645 | Google Chromium V8 Out-of-Bounds Read and Write (CVE-2026-11645) | Google Chromium V8 | high | patched | — | ✓ |
| TP-EXP-2026-0284 | Pending | GreenPlasma — Windows CTFMON Arbitrary Section Creation Privilege Escalation | Microsoft Windows 11 and Windows Server 2022/2026, per public researcher claims | high | unknown | — | — |
| TP-EXP-2014-0002 | CVE-2014-0160 | Heartbleed — OpenSSL TLS Heartbeat Buffer Over-read (CVE-2014-0160) | OpenSSL 1.0.1 through 1.0.1f | critical | patched | — | ✓ |
| TP-EXP-2026-0020 | CVE-2026-6973 | Ivanti Endpoint Manager Mobile (EPMM) Improper Input Validation Remote Code Execution (CVE-2026-6973) | Ivanti Endpoint Manager Mobile (EPMM) | high | active | — | ✓ |
| TP-EXP-2026-0003 | CVE-2026-1340 | Ivanti EPMM Code Injection — Bash Arithmetic Expansion RCE | Ivanti EPMM ≤ 12.7.0.0 | critical | patched | — | ✓ |
| TP-EXP-2026-0320 | CVE-2026-10520 | Ivanti Sentry OS Command Injection Vulnerability (CVE-2026-10520) | Ivanti Sentry before R10.5.2, R10.6.2, and R10.7.1 | critical | patched | — | ✓ |
| TP-EXP-2024-0002 | CVE-2024-27199 | JetBrains TeamCity Relative Path Traversal — Unauthenticated Limited Admin Actions (CVE-2024-27199) | JetBrains TeamCity prior to 2023.11.4 | high | patched | — | ✓ |
| TP-EXP-2025-0003 | CVE-2025-2749 | Kentico Xperience Staging Sync Server Path Traversal and RCE (CVE-2025-2749) | Kentico Xperience CMS (through version 13.0.178) | high | patched | — | ✓ |
| TP-EXP-2026-0313 | CVE-2026-5426 | KnowledgeDeliver LMS ViewState Deserialization Zero-Day | Digital Knowledge KnowledgeDeliver deployments before 2026-02-24 | critical | patched | — | — |
| TP-EXP-2025-0006 | CVE-2025-34291 | Langflow Origin Validation Error Vulnerability (CVE-2025-34291) | Langflow | high | patched | — | ✓ |
| TP-EXP-2022-0001 | CVE-2022-0492 | Linux Kernel Improper Authentication (CVE-2022-0492) | Linux Kernel | high | active | — | ✓ |
| TP-EXP-2026-0018 | CVE-2026-31431 | Linux Kernel algif_aead In-Place Page-Cache Write Local Privilege Escalation (CVE-2026-31431) | Linux Kernel (algif_aead crypto interface, versions 4.14 through 6.19.11) | high | patched | — | ✓ |
| TP-EXP-2026-0022 | CVE-2026-43284 | Dirty Frag Linux Kernel Local Privilege Escalation (CVE-2026-43284) | Linux kernel ESP/XFRM networking subsystem | high | patched | — | — |
| TP-EXP-2026-0292 | CVE-2026-48172 | LiteSpeed cPanel Plugin Privilege Escalation (CVE-2026-48172) | LiteSpeed cPanel Plugin | high | unknown | — | ✓ |
| TP-EXP-2026-0322 | CVE-2026-54420 | LiteSpeed cPanel Plugin Symlink Following Privilege Escalation (CVE-2026-54420) | LiteSpeed cPanel Plugin | high | patched | — | ✓ |
| TP-EXP-2021-0001 | CVE-2021-44228 | Log4Shell — Apache Log4j2 Remote Code Execution (CVE-2021-44228) | Apache Log4j2 2.0-beta9 through 2.14.1 | critical | patched | 9 | ✓ |
| TP-EXP-2026-0014 | CVE-2026-39987 | Marimo Pre-Authentication Remote Code Execution via Terminal WebSocket (CVE-2026-39987) | Marimo < 0.23.0 | critical | patched | 0 | ✓ |
| TP-EXP-2026-0288 | CVE-2026-41091 | Microsoft Defender Link Following Vulnerability (CVE-2026-41091) | Microsoft Defender | high | patched | — | ✓ |
| TP-EXP-2026-0289 | CVE-2026-45498 | Microsoft Defender Denial of Service Vulnerability (CVE-2026-45498) | Microsoft Defender | medium | active | — | ✓ |
| TP-EXP-2009-0003 | CVE-2009-1537 | Microsoft DirectX NULL Byte Overwrite Vulnerability (CVE-2009-1537) | Microsoft DirectX | high | patched | — | ✓ |
| TP-EXP-2023-0001 | CVE-2023-21529 | Microsoft Exchange Server Deserialization of Untrusted Data (CVE-2023-21529) | Microsoft Exchange Server 2013, 2016, 2019 | high | patched | — | ✓ |
| TP-EXP-2026-0287 | CVE-2026-42897 | Microsoft Exchange Server Cross-Site Scripting Vulnerability (CVE-2026-42897) | Microsoft Exchange Server Outlook Web Access | high | mitigated | — | ✓ |
| TP-EXP-2010-0002 | CVE-2010-0806 | Microsoft Internet Explorer Use-After-Free Vulnerability (CVE-2010-0806) | Microsoft Internet Explorer | high | patched | — | ✓ |
| TP-EXP-2009-0001 | CVE-2009-0238 | Microsoft Office Excel Remote Code Execution (CVE-2009-0238) | Microsoft Office Excel 2000 through 2007 | high | patched | — | ✓ |
| TP-EXP-2026-0010 | CVE-2026-32201 | Microsoft SharePoint Server Improper Input Validation Vulnerability (CVE-2026-32201) | Microsoft SharePoint Server | medium | patched | — | ✓ |
| TP-EXP-2012-0001 | CVE-2012-1854 | Microsoft Visual Basic for Applications Insecure Library Loading (CVE-2012-1854) | Microsoft Visual Basic for Applications (VBA) in Office 2003 SP3, 2007 SP2/SP3, 2010 SP1 | high | patched | — | ✓ |
| TP-EXP-2023-0002 | CVE-2023-36424 | Microsoft Windows Out-of-Bounds Read Vulnerability (CVE-2023-36424) | Microsoft Windows | high | patched | — | ✓ |
| TP-EXP-2025-0001 | CVE-2025-60710 | Microsoft Windows Host Process for Windows Tasks Link Following LPE (CVE-2025-60710) | Microsoft Windows 11 (24H2, 25H2), Windows Server 2025 | high | patched | — | ✓ |
| TP-EXP-2026-0015 | CVE-2026-32202 | Microsoft Windows Shell Spoofing Vulnerability (CVE-2026-32202) | Microsoft Windows | medium | patched | — | ✓ |
| TP-EXP-2026-0312 | CVE-2026-45247 | Mirasvit Full Page Cache Warmer Deserialization of Untrusted Data Vulnerability (CVE-2026-45247) | Mirasvit Mirasvit Full Page Cache Warmer for Magento 2 | critical | patched | — | ✓ |
| TP-EXP-2026-0305 | CVE-2026-42945 | NGINX Rift Heap Buffer Overflow (CVE-2026-42945) | NGINX Open Source 0.6.27 through 1.30.0 and NGINX Plus R32 through R36 | critical | patched | — | — |
| TP-EXP-2026-0309 | CVE-2026-48027 | Nx Console Embedded Malicious Code Vulnerability (CVE-2026-48027) | Nx Console | critical | active | — | ✓ |
| — | CVE-2026-7482 | Ollama GGUF Model Loader Heap Out-of-Bounds Read — Bleeding Llama (CVE-2026-7482) | Ollama (all versions before 0.17.1) | critical | patched | — | — |
| TP-EXP-2026-0309 | CVE-2026-28517 | openDCIM Install and Config Poisoning RCE Chain (CVE-2026-28515 / CVE-2026-28517) | openDCIM version 23.04 through commit 4467e9c4 | critical | unknown | — | — |
| TP-EXP-2026-0321 | CVE-2026-35273 | Oracle PeopleSoft Enterprise PeopleTools Missing Authentication Vulnerability (CVE-2026-35273) | Oracle PeopleSoft Enterprise PeopleTools 8.61 and 8.62 | critical | patched | — | ✓ |
| TP-EXP-2024-0007 | CVE-2024-21182 | Oracle WebLogic Server Unspecified Vulnerability (CVE-2024-21182) | Oracle WebLogic Server | high | unknown | — | ✓ |
| TP-EXP-2026-0311 | CVE-2026-0257 | Palo Alto Networks PAN-OS Authentication Bypass (CVE-2026-0257) | Palo Alto Networks PAN-OS | high | active | — | ✓ |
| TP-EXP-2026-0019 | CVE-2026-0300 | PAN-OS: Unauthenticated Buffer Overflow in User-ID Authentication Portal (CVE-2026-0300) | Palo Alto Networks PAN-OS | critical | active | — | ✓ |
| TP-EXP-2024-0001 | CVE-2024-3400 | Palo Alto PAN-OS GlobalProtect Command Injection (CVE-2024-3400) | Palo Alto Networks PAN-OS 10.2, 11.0, 11.1 | critical | patched | 26 | ✓ |
| TP-EXP-2023-0001 | CVE-2023-27351 | PaperCut NG/MF SecurityRequestFilter Authentication Bypass (CVE-2023-27351) | PaperCut NG and PaperCut MF (versions prior to 20.1.7, 21.2.11, 22.0.9) | high | patched | — | ✓ |
| TP-EXP-2026-0306 | CVE-2026-44338 | PraisonAI Legacy API Authentication Bypass (CVE-2026-44338) | PraisonAI legacy Flask API server versions 2.5.6 through 4.6.33 | high | patched | 0 | — |
| — | CVE-2026-3965 | Qinglong Task Scheduler Authentication Bypass RCE (CVE-2026-3965) | @whyour/qinglong before 2.20.2 | critical | patched | 23 | — |
| TP-EXP-2025-0002 | CVE-2025-32975 | Quest KACE SMA SSO Authentication Bypass (CVE-2025-32975) | Quest KACE Systems Management Appliance (SMA) | critical | patched | — | ✓ |
| TP-EXP-2024-0004 | CVE-2024-7399 | Samsung MagicINFO 9 Server Unauthenticated File Upload to Remote Code Execution (CVE-2024-7399) | Samsung MagicINFO 9 Server <= 21.1050 | high | patched | — | ✓ |
| TP-EXP-2014-0003 | CVE-2014-6271 | Shellshock — GNU Bash Environment Variable Command Injection (CVE-2014-6271) | GNU Bash before patched vendor releases for CVE-2014-6271 | critical | patched | — | ✓ |
| TP-EXP-2024-0003 | CVE-2024-57726 | SimpleHelp Technician Privilege Escalation to Admin via API Key Creation (CVE-2024-57726) | SimpleHelp <= 5.5.7 | critical | patched | — | ✓ |
| TP-EXP-2024-0005 | CVE-2024-57728 | SimpleHelp Admin Arbitrary File Upload via Zip Slip (CVE-2024-57728) | SimpleHelp <= 5.5.7 | high | patched | — | ✓ |
| TP-EXP-2026-0314 | CVE-2026-28318 | SolarWinds Serv-U Uncontrolled Resource Consumption Vulnerability (CVE-2026-28318) | SolarWinds Serv-U 15.5.4 and earlier | high | patched | — | ✓ |
| TP-EXP-2010-0001 | CVE-2010-2568 | Stuxnet — Windows Shell LNK Shortcut Remote Code Execution (CVE-2010-2568) | Microsoft Windows / Siemens SIMATIC WinCC Step 7 | critical | patched | — | ✓ |
| TP-EXP-2025-0004 | CVE-2025-48700 | Synacor Zimbra Collaboration Suite (ZCS) — Cross-Site Scripting in Classic UI (CVE-2025-48700) | Synacor Zimbra Collaboration Suite (ZCS) 8.8.15, 9.0, 10.0, 10.1 | medium | patched | — | ✓ |
| TP-EXP-2026-0310 | CVE-2026-45321 | TanStack Unspecified Vulnerability (CVE-2026-45321) | TanStack packages on npm registry | critical | active | — | ✓ |
| TP-EXP-2026-0290 | CVE-2026-34926 | Trend Micro Apex One (On-Premise) Directory Traversal Vulnerability (CVE-2026-34926) | Trend Micro Apex One | medium | patched | — | ✓ |
| TP-EXP-2026-0005 | CVE-2026-3502 | TrueConf Update Integrity Bypass — Supply Chain Code Execution | TrueConf Windows Client < 8.5.3 | high | patched | — | ✓ |
| TP-EXP-2026-0017 | CVE-2026-41940 | WebPros cPanel & WHM and WP2 (WordPress Squared) Authentication Bypass via Login Flow (CVE-2026-41940) | WebPros cPanel & WHM (versions 11.40 through 136.x) and WP2 WordPress Squared (prior to 136.1.7) | critical | patched | — | ✓ |
| TP-EXP-2026-0324 | CVE-2026-48907 | Widget Factory Joomla Content Editor Improper Access Control Vulnerability (CVE-2026-48907) | Widget Factory Joomla Content Editor | high | patched | — | ✓ |
| TP-EXP-2026-0285 | Pending | YellowKey — Windows BitLocker Bypass (Pending CVE) | Microsoft Windows 11 and Windows Server 2022/2025, per public researcher claims | high | active | — | — |