CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

89 matches found

CVE-2026-10281

A weakness has been identified in Enderfga claw-orchestrator up to 3.5.5. This affects the function EmbeddedServer of the file src/embedded-server.ts of the component API Endpoint. This manipulation causes missing authentication. The attack may be initiated remotely. The exploit has been made...

7.5CVSS0.00071EPSS

Exploits0References8

CVE•added 4 days ago•9 views

CVE-2026-10281

The CVE-2026-10281 affects Enderfga claw-orchestrator

7.5CVSS6.8AI score0.00071EPSS

Exploits0References8

Cvelist•added 4 days ago•21 views

CVE-2026-10281 Enderfga claw-orchestrator API Endpoint embedded-server.ts EmbeddedServer missing authentication

7.5CVSS0.00071EPSS

Exploits0References8

Vulnrichment•added 4 days ago•6 views

CVE-2026-10281 Enderfga claw-orchestrator API Endpoint embedded-server.ts EmbeddedServer missing authentication

7.5CVSS6.8AI score0.00071EPSS

Exploits0References8

EUVD•added 4 days ago•9 views

EUVD-2026-33743

7.5CVSS6.8AI score0.00071EPSS

Exploits0References8

RedHat Linux•added 2026/05/06 3:56 p.m.•11 views

Moderate: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: openssl: openssl-3.5.6-0.3.hum1 aarch64, x8664 openssl-config-fips-3.5.6-0.3.hum1 aarch64, x8664 openssl-devel-3.5.6-0.3.hum1 aarch64, x8664 openssl-devel-engine-3.5.6-0.3.hum1 aarch64, x8664...

7.5CVSS5.8AI score0.0014EPSS

Exploits0References3

Tenable Nessus•added 2026/04/29 12:0 a.m.•4 views

Fedora 43 : edk2 (2026-a484707720)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-a484707720 advisory. unbreak https boot ---- update openssl to 3.5.6 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...

7.5CVSS5.4AI score0.0014EPSS

Exploits0References2

Tenable Nessus•added 2026/04/25 12:0 a.m.•6 views

Fedora 44 : openssl (2026-d3e275d525)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-d3e275d525 advisory. Backport security patches from OpenSSL 3.5.6 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Ness...

6.5CVSS7.3AI score0.00023EPSS

Exploits0References2

OSV•added 2026/01/13 11:15 p.m.•2 views

CVE-2022-50931

TeamSpeak 3.5.6 contains an insecure file permissions vulnerability that allows local attackers to replace executable files with malicious binaries. Attackers can replace system executables like ts3clientwin32.exe with custom files to potentially gain SYSTEM or Administrator-level access...

7.8CVSS5.8AI score

Exploits0References4

Positive Technologies•added 2026/01/13 12:0 a.m.•2 views

PT-2026-2407

Name of the Vulnerable Software and Affected Versions TeamSpeak version 3.5.6 Description TeamSpeak 3.5.6 has a file permissions issue that allows local attackers to replace executable files with malicious binaries. An attacker can replace system executables, such as ts3client win32.exe, with...

8.5CVSS6.3AI score0.00022EPSS

Exploits1References8

RedhatCVE•added 2026/01/08 3:15 a.m.•5 views

CVE-2024-14020

A weakness has been identified in carboneio carbone up to fbcd349077ad0e8748be73eab2a82ea92b6f8a7e. This impacts an unknown function of the file lib/input.js of the component Formatter Handler. Executing a manipulation can lead to improperly controlled modification of object prototype attributes...

5CVSS6.6AI score0.00029EPSS

Exploits0References1

OSV•added 2026/01/07 12:31 p.m.•1 views

GHSA-6RCW-WW3X-XQWM carbone Code Injection vulnerability

5CVSS4.8AI score0.00029EPSS

Exploits0References6

Github Security Blog•added 2026/01/07 12:31 p.m.•6 views

carbone Code Injection vulnerability

5CVSS5.1AI score0.00029EPSS

Exploits0References6Affected Software1

NVD•added 2026/01/07 12:16 p.m.•1 views

CVE-2024-14020

5CVSS0.00029EPSS

Exploits0References5

Vulnrichment•added 2026/01/07 12:2 a.m.•1 views

CVE-2024-14020 carboneio carbone Formatter input.js prototype pollution

5CVSS6.3AI score0.00029EPSS

Exploits0References5

CVE•added 2026/01/07 12:2 a.m.•7 views

CVE-2024-14020

CVE-2024-14020 affects carbone (Formatter Handler, lib/input.js). A prototype pollution flaw exists in the formatters input path that can enable manipulation of Object.prototype attributes. Exploitation is described as remote with high complexity; affected versions are up to fbcd349077ad0e8748be7...

5CVSS5.1AI score0.00029EPSS

Exploits0References5

Cvelist•added 2026/01/07 12:2 a.m.•21 views

CVE-2024-14020 carboneio carbone Formatter input.js prototype pollution

5CVSS0.00029EPSS

Exploits0References5

Tenable Nessus•added 2025/12/18 12:0 a.m.•1 views

Mozilla Firefox < 3.5.6

The version of Firefox installed on the remote Windows host is prior to 3.5.6. It is, therefore, affected by a vulnerability as referenced in the mfsa2009-68 advisory. - Mozilla Firefox before 3.0.16 and 3.5.x before 3.5.6, and SeaMonkey before 2.0.1, allows remote attackers to send authenticated...

6.8CVSS8.6AI score0.00664EPSS

Exploits0References3

Positive Technologies•added 2025/11/01 12:0 a.m.•2 views

PT-2025-44698

Name of the Vulnerable Software and Affected Versions Inactive Logout plugin for WordPress versions up to and including 3.5.5 Description The Inactive Logout plugin for WordPress is susceptible to Stored Cross-Site Scripting. This is due to insufficient input sanitization and output escaping...

6.4CVSS5.8AI score0.00047EPSS

Exploits0References11

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-15487

Malicious code in bioql PyPI...

8.5CVSS8.8AI score0.00179EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by