Lucene search
K

1388939 matches found

CVE
CVE
added 6 hours ago8 views

CVE-2026-10054

The CVE-2026-10054 entry concerns Eclipse Theia (1.8.1 and later) where the browser backend exposes privileged terminal RPC over WebSocket (/services/shell-terminal, /services/terminals/:id) without proper service-level authentication. The vulnerability stems from fail-open WebSocket origin valid...

8.8CVSS6.2AI score
Exploits0References2
Circl
Circl
added 7 hours ago6 views

CVE-2026-50282

creationtimestamp| type| source ---|---|--- 2026-07-03 08:24:19+00:00| seen| https://bsky.app/profile/qiancx.bsky.social/post/3mpq4ndri4a2i 2026-07-03 08:24:29+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpq4neltfq2n 2026-07-03 09:30:24+00:00| seen|...

7.1CVSS5.9AI score
Exploits0References5
EUVD
EUVD
added 8 hours ago4 views

EUVD-2026-41518

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Apache Lucene.Net Lucene.Net.Replicator library. This issue affects Apache Lucene.Net.Replicator: from 4.8.0-beta00005 before 4.8.0-beta00018. Users are recommended to upgrade to version 4.8.0-beta00018,...

8.9CVSS5.9AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 9 hours ago2 views

CVE-2026-9230

The Quiz and Survey Master QSM – Easy Quiz and Survey Maker plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 11.1.4. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for...

4.3CVSS6AI score
Exploits0References15
RedhatCVE
RedhatCVE
added 9 hours ago4 views

CVE-2026-54891

A flaw was found in Erlang's SSL Secure Sockets Layer component. A network-positioned attacker can exploit this vulnerability by injecting unauthenticated plaintext data into a client's TLS Transport Layer Security handshake. The client application may then process this injected data as if it wer...

6.3CVSS5.9AI score
Exploits0References8
Debian CVE
Debian CVE
added 10 hours ago5 views

CVE-2026-9547

When a libcurl-based application performs transfers via SCP:// or S...

5.9AI score
Exploits0
Debian CVE
Debian CVE
added 10 hours ago5 views

CVE-2026-9545

In this scenario, libcurl first uses a proper HTTP/3 server for the in...

5.9AI score
Exploits0
CVE
CVE
added 10 hours ago10 views

CVE-2026-8932

libcurl (client library) is affected by CVE-2026-8932 due to incomplete mTLS config matching in the connection reuse logic. The vulnerability arises because TLS settings related to client certificates, notably the private key, were omitted from the configuration match checks, allowing a previousl...

6.2AI score
Exploits0References3
EUVD
EUVD
added 10 hours ago3 views

EUVD-2026-41509

libcurl would reuse a previously created connection even when some mTLS config related option had been changed that should have prohibited reuse. libcurl keeps previously used connections in a connection pool for subsequent transfers to reuse if one of them matches the setup. However, some TLS...

6.2AI score
Exploits0References3
EUVD
EUVD
added 10 hours ago3 views

EUVD-2026-41506

The curl logic that works with SASL authentication could end up cleaning up the GSASL context twice without clearing the pointer in between, making it free the same pointer twice...

5.9AI score
Exploits0References3
Debian CVE
Debian CVE
added 10 hours ago4 views

CVE-2026-8924

A flaw in curl\u2019s cookie parsing logic allows a malicious HTTP ser...

5.9AI score
Exploits0
EUVD
EUVD
added 10 hours ago4 views

EUVD-2026-41503

A vulnerability exists where a new transfer that uses STARTTLS to upgrade the connection might reuse an existing live connection even though the TLS configuration mismatches so it should not...

5.9AI score
Exploits0References3
Debian CVE
Debian CVE
added 10 hours ago5 views

CVE-2026-12064

When a user invokes curl using a schemeless URL combined with --proto...

5.9AI score
Exploits0
Debian CVE
Debian CVE
added 10 hours ago4 views

CVE-2026-11856

Successfully using libcurl to do a transfer to a specific HTTP origin...

5.9AI score
Exploits0
Debian CVE
Debian CVE
added 10 hours ago5 views

CVE-2026-10536

A use-after-free vulnerability exists in libcurl when an application c...

6AI score
Exploits0
Circl
Circl
added 12 hours ago4 views

CVE-2026-58652

creationtimestamp| type| source ---|---|--- 2026-07-03 04:04:20+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mppo4hmy6r2j 2026-07-03 10:25:57+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpqdguittd2n...

7.7CVSS5.9AI score
Exploits0References2
OSV
OSV
added 12 hours ago7 views

ROOT-OS-DEBIAN-13-CVE-2026-31417 CVE-2026-31417 in rootio-linux - Patched by Root

Root has patched CVE-2026-31417 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...

7.5CVSS6.2AI score0.00389EPSS
Exploits0
OSV
OSV
added 12 hours ago8 views

ROOT-OS-DEBIAN-13-CVE-2025-22096 CVE-2025-22096 in rootio-linux - Patched by Root

Root has patched CVE-2025-22096 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...

5.5CVSS7.8AI score0.0014EPSS
Exploits0
OSV
OSV
added 12 hours ago5 views

ROOT-OS-DEBIAN-13-CVE-2026-53226 CVE-2026-53226 in rootio-linux - Patched by Root

Root has patched CVE-2026-53226 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...

5.5CVSS5.8AI score0.00173EPSS
Exploits0
OSV
OSV
added 12 hours ago7 views

ROOT-OS-DEBIAN-13-CVE-2025-68321 CVE-2025-68321 in rootio-linux - Patched by Root

Root has patched CVE-2025-68321 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...

5.4AI score0.00176EPSS
Exploits0
Rows per page
Query Builder