Lucene search
K

161488 matches found

EUVD
EUVD
added 2026/05/05 8:49 p.m.24 views

EUVD-2026-27133

Nginx-UI: Authenticated settings disclosure exposes node.secret and enables trusted-node authentication abuse, backup exfiltration, and restore-based nginx-ui state rollback...

6.5CVSS5.8AI score0.00299EPSS
Exploits1References3
OSV
OSV
added 2026/05/05 8:49 p.m.6 views

GHSA-7JRR-XW9C-MJ39 Nginx-UI: Authenticated settings disclosure exposes node.secret and enables trusted-node authentication abuse, backup exfiltration, and restore-based nginx-ui state rollback

Summary An authenticated user can call GET /api/settings and retrieve sensitive configuration values, including node.secret. The same node.secret is accepted by AuthRequired through the X-Node-Secret header or nodesecret query parameter, causing the request to be treated as authenticated via the...

6.5CVSS5.7AI score0.00299EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/05/05 8:29 p.m.26 views

CVE-2026-35579 CoreDNS TSIG authentication bypass on gRPC, QUIC, DoH, and DoH3 transports

CoreDNS is a DNS server written in Go. In versions prior to 1.14.3, the gRPC, QUIC, DoH, and DoH3 transport implementations incorrectly handle TSIG authentication. For gRPC and QUIC, the server checks whether the TSIG key name exists in the configuration but never calls dns.TsigVerify to validate...

8.2CVSS0.0051EPSS
Exploits1References1
AlpineLinux
AlpineLinux
added 2026/05/05 8:29 p.m.8 views

CVE-2026-35579

CoreDNS is a DNS server written in Go. In versions prior to 1.14.3, the gRPC, QUIC, DoH, and DoH3 transport implementations incorrectly handle TSIG authentication. For gRPC and QUIC, the server checks whether the TSIG key name exists in the configuration but never calls dns.TsigVerify to validate...

9.8CVSS5.8AI score0.0051EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/05/05 8:29 p.m.7 views

CVE-2026-35579 CoreDNS TSIG authentication bypass on gRPC, QUIC, DoH, and DoH3 transports

CoreDNS is a DNS server written in Go. In versions prior to 1.14.3, the gRPC, QUIC, DoH, and DoH3 transport implementations incorrectly handle TSIG authentication. For gRPC and QUIC, the server checks whether the TSIG key name exists in the configuration but never calls dns.TsigVerify to validate...

8.2CVSS5.8AI score0.0051EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/05/05 8:29 p.m.3 views

CVE-2026-35579

CoreDNS is a DNS server written in Go. In versions prior to 1.14.3, the gRPC, QUIC, DoH, and DoH3 transport implementations incorrectly handle TSIG authentication. For gRPC and QUIC, the server checks whether the TSIG key name exists in the configuration but never calls dns.TsigVerify to validate...

8.2CVSS5.8AI score0.0051EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2026/05/05 8:9 p.m.4 views

EUVD-2026-26247

pgjdbc: Unbounded PBKDF2 iterations in SCRAM authentication allows CPU exhaustion DoS...

7.5CVSS5.8AI score0.0077EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/05/05 8:9 p.m.11 views

pgjdbc: Unbounded PBKDF2 iterations in SCRAM authentication allows CPU exhaustion DoS

Summary pgjdbc is vulnerable to a client-side denial of service during SCRAM-SHA-256 authentication. Impact A malicious server can instruct the driver to perform SCRAM authentication with a very large iteration count. With a large enough value, the client spends an unbounded amount of CPU time...

7.5CVSS5.8AI score0.0077EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2026/05/05 8:9 p.m.3 views

GHSA-98QH-XJC8-98PQ pgjdbc: Unbounded PBKDF2 iterations in SCRAM authentication allows CPU exhaustion DoS

Summary pgjdbc is vulnerable to a client-side denial of service during SCRAM-SHA-256 authentication. Impact A malicious server can instruct the driver to perform SCRAM authentication with a very large iteration count. With a large enough value, the client spends an unbounded amount of CPU time...

7.5CVSS5.8AI score0.0077EPSS
Exploits0References4
GithubExploit
GithubExploit
added 2026/05/05 8:2 p.m.98 views

cPanelSniper-

cPanelSniper CVE-2026-41940 — c...

9.8CVSS6.2AI score0.981EPSS
Exploits64
RedHat Linux
RedHat Linux
added 2026/05/05 7:26 p.m.9 views

dovecot: ManageSieve: Denial of Service via crafted SASL initial response in AUTHENTICATE command

A flaw was found in ManageSieve. A remote attacker can exploit this vulnerability by sending a crafted SASL Simple Authentication and Security Layer initial response during the AUTHENTICATE command. This can cause the ManageSieve service to crash repeatedly, leading to a Denial of Service DoS for...

7.5CVSS5.8AI score0.00703EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2026/05/05 7:26 p.m.9 views

Important: Red Hat Security Advisory: dovecot security update

An update for dovecot is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

7.5CVSS5.9AI score0.0079EPSS
Exploits2References4
NVD
NVD
added 2026/05/05 7:16 p.m.4 views

CVE-2026-31835

Vaultwarden is a Bitwarden-compatible server written in Rust. In versions 1.35.4 and earlier, the WebAuthn authentication flow in validatewebauthnlogin updates persistent credential metadata 1backupeligible1 and 1backupstate flags1 based on unverified authenticatorData before signature validation...

5.4CVSS0.00151EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2026/05/05 7:13 p.m.7 views

AVideo: CSRF in userSavePhoto.php Allows Cross-Origin Overwrite of Authenticated Users' Profile Photos with Arbitrary Content

Summary objects/userSavePhoto.php is a legacy profile-photo endpoint that accepts a base64 POST parameter and writes the decoded bytes to videos/userPhoto/photo.png. Its only access control is User::isLogged. It does not end in .json.php, so it is excluded from the project's global autoCSRFGuard...

5.4CVSS6.1AI score0.00121EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/05 7:2 p.m.7 views

CVE-2026-33190 CoreDNS TSIG authentication bypass on encrypted DNS transports

CoreDNS is a DNS server that chains plugins. In versions prior to 1.14.3, the tsig plugin can be bypassed on non-plain-DNS transports DoT, DoH, DoH3, DoQ, and gRPC because it trusts the transport writer's TsigStatus instead of performing verification itself. The DoH and DoH3 writer's TsigStatus...

8.7CVSS5.8AI score0.00374EPSS
Exploits1References2
CVE
CVE
added 2026/05/05 7:2 p.m.20 views

CVE-2026-33190

CoreDNS TSIG authentication bypass vulnerability (CVE-2026-33190) affects versions prior to 1.14.3 on non-plain-DNS transports. The tsig plugin trusts the transport writer’s TsigStatus() instead of verifying TSIG itself, causing unauthenticated remote access over DoT, DoH, DoH3, DoQ, and gRPC. Do...

8.7CVSS5.8AI score0.00374EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2026/05/05 6:51 p.m.13 views

CVE-2026-31835

Vaultwarden (Rust) prior to 1.35.5 is affected. In 1.35.4 and earlier, validate_webauthn_login() updates persistent credential flags before WebAuthn signature verification, allowing an attacker who knows a user’s password but cannot produce a valid WebAuthn signature to permanently modify backup ...

5.4CVSS5.8AI score0.00151EPSS
Exploits1References2Affected Software1
AlpineLinux
AlpineLinux
added 2026/05/05 6:51 p.m.6 views

CVE-2026-31835

Vaultwarden is a Bitwarden-compatible server written in Rust. In versions 1.35.4 and earlier, the WebAuthn authentication flow in validatewebauthnlogin updates persistent credential metadata 1backupeligible1 and 1backupstate flags1 based on unverified authenticatorData before signature validation...

5.4CVSS5.8AI score0.00151EPSS
Exploits1References2
EUVD
EUVD
added 2026/05/05 6:51 p.m.7 views

EUVD-2026-27424

Vaultwarden is a Bitwarden-compatible server written in Rust. In versions 1.35.4 and earlier, the WebAuthn authentication flow in validatewebauthnlogin updates persistent credential metadata 1backupeligible1 and 1backupstate flags1 based on unverified authenticatorData before signature validation...

5.3CVSS5.8AI score0.00151EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2026/05/05 6:33 p.m.17 views

OpenStack Horizon has Incorrect Behavior Order

An issue was discovered in OpenStack Horizon 25.6 and 25.7 before 25.7.3. There is a write operation to the session storage backend before authentication and thus storage can be exhausted by unauthenticated requests. This is a regression of the CVE-2014-8124 fix...

5.3CVSS5.8AI score0.00365EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder