CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

GithubExploit•added 2026/05/29 8:27 p.m.•545 views

Exploit for CVE-2026-0257

CVE-2026-0257 — PAN-OS GlobalProtect Authentication Bypass...

7.8CVSS5.9AI score0.18583EPSS

Exploits9

NVD•added 2026/05/29 8:16 p.m.•10 views

CVE-2026-44422

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.26.0, FreeRDP's RDPEAR NDR parser accepts one non-null NDR pointer ref-id for multiple logical pointer fields without tracking the pointed object's expected NDR type or ownership. When the same ref-id is reused across two...

8.8CVSS0.00252EPSS

OSV•added 2026/05/29 8:16 p.m.•5 views

DEBIAN-CVE-2026-44422

OSV•added 2026/05/29 8:16 p.m.•4 views

UBUNTU-CVE-2026-44422

RedhatCVE•added 2026/05/29 8:13 p.m.•13 views

Exploits1References3

CVE-2026-9090

Casdoor versions 2.362.0 and earlier contain a vulnerability that allows an attacker to bypass authentication by supplying an arbitrary signing certificate. The buildSpCertificateStore function extracts the X.509 certificate directly from the incoming SAMLResponse instead of using the trusted...

9.1CVSS5.9AI score0.00163EPSS

RedhatCVE•added 2026/05/29 8:13 p.m.•9 views

CVE-2026-9398

A security vulnerability has been detected in Besen BS20 EV Charging Station up to 20260426. This affects an unknown part of the component BLE/WiFi. Such manipulation leads to authentication bypass by capture-replay. The attack must be carried out from within the local network. Attacks of this...

3.1CVSS5.2AI score0.00345EPSS

RedhatCVE•added 2026/05/29 8:13 p.m.•9 views

CVE-2026-5065

IBM Controller 11.0.1, 11.1.0, 11.1.1, and 11.1.2 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data...

8.8CVSS5.8AI score0.0019EPSS

RedhatCVE•added 2026/05/29 8:13 p.m.•13 views

CVE-2026-20182

May 2026: This security advisory provides the details and fix information for a vulnerability that was discovered and fixed after the was disclosed in February 2026. This new advisory is for a new vulnerability in the control connection handshaking. The section of this advisory includes Show...

10CVSS6.1AI score0.77902EPSS

Exploits4References1

IBM Security Bulletins•added 2026/05/29 8:4 p.m.•14 views

Security Bulletin: IBM Engineering Lifecycle Management - Jazz Foundation is vulnerable to Authentication Bypass

Summary Authentication bypass vulnerability has been identified in IBM Engineering Lifecycle Management - Jazz Foundation. Vulnerability Details CVEID:CVE-2026-3660 DESCRIPTION: IBM Engineering Lifecycle Management 7.0.3, 7.1.0, and 7.2.0 could allow an unauthenticated remote attacker to update...

9.8CVSS5.8AI score0.00528EPSS

Exploits0Affected Software1

EUVD•added 2026/05/29 7:41 p.m.•9 views

EUVD-2026-33434

7.5CVSS5.8AI score0.00252EPSS

ATTACKERKB•added 2026/05/29 7:41 p.m.•8 views

CVE-2026-44422

7.5CVSS5.8AI score0.00252EPSS

Exploits1References2Affected Software1

Vulnrichment•added 2026/05/29 7:41 p.m.•8 views

CVE-2026-44422 FreeRDP RDPEAR NDR ref-id aliasing causes client-side UAF/double-free and type confusion

7.5CVSS5.8AI score0.00252EPSS

CVE•added 2026/05/29 7:41 p.m.•23 views

CVE-2026-44422

CVE-2026-44422 affects FreeRDP prior to 3.26.0. The RDPEAR NDR parser incorrectly reused a non-null NDR pointer ref-id across multiple logical pointer fields, causing the same heap object to be assigned to two outputs. The destructor then frees both pointers, enabling a heap use-after-free / doub...

Exploits1References1Affected Software1

Debian CVE•added 2026/05/29 7:41 p.m.•10 views

CVE-2026-44422

OSV•added 2026/05/29 7:39 p.m.•4 views

Exploits1

GHSA-HPV4-5H6F-WQR3 russh server userauth state is not reset when authentication principal changes

Summary The russh server authentication path keeps internal userauth state across SSHMSGUSERAUTHREQUEST messages without separating that state when the request principal changes. RFC 4252 allows the user name and service name fields to change between authentication requests. The issue is not that...

5.3CVSS5.8AI score0.00362EPSS

Exploits0References3

Github Security Blog•added 2026/05/29 7:39 p.m.•10 views

russh server userauth state is not reset when authentication principal changes

5.3CVSS5.8AI score0.00362EPSS

Exploits0References3Affected Software1

CVE•added 2026/05/29 7:32 p.m.•20 views

CVE-2026-44285

FastGPT is affected by an SSRF flaw in the dataset preview API. Before 4.15.0-beta1, an authenticated attacker could bypass isInternalAddress protection and reach internal services by abusing /api/core/dataset/file/getPreviewChunks with the externalFile data import type. The issue is resolved in ...

7.7CVSS5.9AI score0.00263EPSS

NVD•added 2026/05/29 7:16 p.m.•12 views

CVE-2026-9051

There is an authentication bypass vulnerability in the NI SystemLink Enterprise Dashboard application that may allow an unauthenticated remote attacker to bypass authentication controls leading to privilege escalation or information disclosure. Successful exploitation requires an attacker to send...

9.3CVSS0.00588EPSS

NVD•added 2026/05/29 7:16 p.m.•11 views

CVE-2026-44650

SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image generation engines, and text-to-speech voice models. Prior to 1.18.0, POST /api/extensions/delete endpoint accepts extensionName: "." which bypasses sanitize-filename...

9.1CVSS0.00567EPSS