Notable CVSS 10.0 Vulnerabilities Highlighted, Including Newly Disclosed CVE-2026-29000

The post highlights a newly disclosed CVSS 10.0 vulnerability (CVE-2026-29000) in pac4j-jwt, allowing authentication bypass using only a server’s public key. It lists other maximum-severity vulnerabilities, including Log4Shell (CVE-2021-44228), EternalBlue (CVE-2017-0144), Heartbleed (CVE-2014-0160), and BlueKeep (CVE-2019-0708). The author asks which other CVSS 10.0 vulnerabilities should be included and which had the greatest real-world impact.