CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6643 matches found

CVE-2026-49185 Instruction Injection via FieldX MDM

The FieldX MDM adb messaging topic passes unverified payloads directly into Runtime.exec, allowing command/instruction injection...

10CVSS5.8AI score0.00047EPSS

Exploits0References1

CVE•added yesterday•8 views

CVE-2026-49185

The CVE-2026-49185 entry concerns FieldX MDM where the adb messaging topic passes unverified payloads directly into Runtime.exec(), enabling command/instruction injection. Affected component: adb messaging topic within FieldX MDM; root cause is unverified payloads executed via Runtime.exec(). Imp...

10CVSS5.8AI score0.00047EPSS

Exploits0References1Affected Software1

EUVD•added yesterday•5 views

EUVD-2026-34199

The FieldX MDM adb messaging topic passes unverified payloads directly into Runtime.exec, allowing command/instruction injection...

10CVSS5.8AI score0.00047EPSS

Exploits0References1

RedhatCVE•added 2 days ago•2 views

CVE-2026-10264

A vulnerability was determined in lharries whatsapp-mcp 0.0.1. Affected by this vulnerability is the function SendMessageRequest of the file whatsapp-bridge/main.go of the component Send API Endpoint. This manipulation of the argument mediaPath causes path traversal. The exploit has been publicly...

5.1CVSS5.3AI score0.00021EPSS

Exploits0References1

Positive Technologies•added 2 days ago•5 views

PT-2026-46055

ParsedReport ChatGPT Translated Autotext: TI Report Analyser + ChatGPT + Auto Translate ------ В марте 2023 года был обнаружен вариант ботнета Gafgyt под названием C0XMO, использующий уязвимость CVE-2021-27137 в маршрутизаторах DD-WRT для распространения на различные архитектуры Linux. ВПО...

5.8AI score

Exploits1References3

Cvelist•added 3 days ago•32 views

CVE-2026-10528 Orthanc DICOM Server DCMTK FromDcmtkBridge.cpp read stack-based overflow

A security flaw has been discovered in Orthanc DICOM Server up to 1.12.11. This issue affects the function DcmItem::read of the file OrthancFramework/Sources/DicomParsing/FromDcmtkBridge.cpp of the component DCMTK Parser. Performing a manipulation results in stack-based buffer overflow. Attacking...

4.8CVSS0.00013EPSS

Exploits0References8

Tenable Nessus•added 3 days ago•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-42588

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper Input Validation, Improper Control of Generation of Code 'Code Injection' vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ...

8.1CVSS6.4AI score0.00056EPSS

Exploits0References3

NVD•added 4 days ago•8 views

CVE-2026-10264

5.1CVSS0.00021EPSS

Exploits0References8

Cvelist•added 4 days ago•25 views

CVE-2026-10264 lharries whatsapp-mcp Send API Endpoint main.go SendMessageRequest path traversal

5.1CVSS0.00021EPSS

Exploits0References8

Vulnrichment•added 4 days ago•3 views

CVE-2026-10264 lharries whatsapp-mcp Send API Endpoint main.go SendMessageRequest path traversal

5.1CVSS5.3AI score0.00021EPSS

Exploits0References8

CVE•added 4 days ago•13 views

CVE-2026-10264

CVE-2026-10264 affects lharries whatsapp-mcp 0.0.1. The vulnerability is in the SendMessageRequest function of whatsapp-bridge/main.go, where manipulation of the mediaPath argument enables path traversal. The exploit has been publicly disclosed. A patch is available (patch name: 6657cdceadd361e8f...

5.1CVSS5.3AI score0.00021EPSS

Exploits0References8

OSV•added 4 days ago•1 views

SUSE-SU-2026:2202-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2021-47103: inet: fully convert sk-skrxdst to RCU rules bsc1221010. - CVE-2023-20585: x86/CPU: Fix FPDSS on Zen1 bsc1243603. - CVE-2026-23239: espintcp: Fix race...

9.8CVSS6.8AI score0.43539EPSS

Exploits26References124

NVD•added 4 days ago•28 views

CVE-2026-42588

Improper Input Validation, Improper Control of Generation of Code 'Code Injection' vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ. Apache ActiveMQ Classic exposes the Jolokia JMX-HTTP bridge at /api/jolokia/ on the web console. The default Jolokia access policy...

8.1CVSS0.00056EPSS

Exploits0References2

NVD•added 4 days ago•9 views

CVE-2026-45505

Improper Input Validation, Improper Control of Generation of Code 'Code Injection' vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ. Non-parenthesized discovery wrappers such as masterslave:vm://...,... and static:vm://... incorrectly pass validation allowing bypass o...

8.8CVSS0.001EPSS

Exploits0References2

OSV•added 4 days ago•5 views

UBUNTU-CVE-2026-45505

8.8CVSS6.6AI score0.83461EPSS

Exploits11References5

SUSE Linux•added 4 days ago•14 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 kernel was updated to fix various security issues The following security issues were fixed: CVE-2023-2058: x86/CPU: Fix FPDSS on Zen1 bsc1243603. CVE-2025-54518: x86/CPU/AMD: Prevent improper isolation of shared resources in Zen2's op cache bsc1264013...

8.8CVSS6.5AI score0.00355EPSS

Exploits1References294

OSV•added 4 days ago•2 views

SUSE-SU-2026:2195-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2023-2058: x86/CPU: Fix FPDSS on Zen1 bsc1243603. - CVE-2025-54518: x86/CPU/AMD: Prevent improper isolation of shared resources in Zen2's op cache bsc1264013. -...

9.8CVSS6AI score0.00355EPSS

Exploits3References147