CVE-2026-26099

Uncontrolled Search Path Element in Owl opds 2.2.0.4 allows Leveraging/Manipulating Configuration File Search Paths via a crafted network request...

CVE-2026-26099 Uncontrolled Search Path Element in Owl opds

Uncontrolled Search Path Element in Owl opds 2.2.0.4 allows Leveraging/Manipulating Configuration File Search Paths via a crafted network request...

CVE-2023-26099

An issue was discovered in Telindus Apsal 3.14.2022.235 b. The consultation permission is insecure...

CVE-2022-26099

Null pointer dereference vulnerability in parserinfe function of libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds read by remote attackers...

CVE-2021-26099

Missing cryptographic steps in the Identity-Based Encryption service of FortiMail before 7.0.0 may allow an attacker who comes in possession of the encrypted master keys to compromise their confidentiality by observing a few invariant properties of the ciphertext...

CVE-2023-26099

An issue was discovered in Telindus Apsal 3.14.2022.235 b. The consultation permission is insecure...

CVE-2023-26099

Telindus Apsal version 3.14.2022.235 b has an issue where the consultation permission is insecure. Connected sources provide no public technical details on root cause beyond this permission issue, nor a confirmed fix. PT-2023-20486 (Telindus Apsal) notes there is no information about a newer vers...

CVE-2022-26099

creationtimestamp| type| source ---|---|--- 2022-04-12 00:29:23+00:00| seen| https://t.me/cibsecurity/40551...

CVE-2022-26099

CVE-2022-26099 is a null pointer dereference in the parser_infe function of the libsimba library, applicable before the Samsung SMR Apr-2022 Release 1. The vulnerability can cause out-of-bounds reads and is exploitable remotely without authentication, per the CVE description. Connected sources re...

CVE-2021-26099

CVE-2021-26099 affects FortiMail prior to 7.0.0. The FortiMail Identity-Based Encryption (IBE) KeyStore omits necessary cryptographic steps, allowing an attacker who possesses the encrypted master keys to infer plaintext-related properties by observing invariant ciphertext properties. Impact is l...

CVE-2020-26099

cPanel before 88.0.3 allows attackers to bypass the SMTP greylisting protection mechanism SEC-491...

CVE-2020-26099

cPanel before 88.0.3 allows attackers to bypass the SMTP greylisting protection mechanism SEC-491...

CVE-2020-26099

CVE-2020-26099 affects cPanel prior to 88.0.3, where the SMTP greylisting protection (SEC-491) can be bypassed. Root cause details are not broken out beyond the vendor-reported bypass of the greylisting mechanism. The vulnerability enables an attacker to bypass SMTP greylisting, as described in t...