CVE-2026-40586

creationtimestamp| type| source ---|---|--- 2026-04-21 19:25:57+00:00| seen| Telegram/HMXFp0TlwkMV3YbUFvnNEgjo9AC8CPiEoVa-pxPf99RdwY...

CVE-2026-40586

CVE-2026-40586 affects blueprintUE: prior to version 4.2.0, the login form handler does not throttle or rate-limit failed authentication attempts (no IP-based limits, no per-account counters, no temporary lockout, no tarpit, no CAPTCHA). This enables unlimited credential guessing attempts against...

CVE-2023-40586

OWASP Coraza WAF is a golang modsecurity compatible web application firewall library. Due to the misuse of log.Fatalf, the application using coraza crashed after receiving crafted requests from attackers. The application will immediately crash after receiving a malicious request that triggers an...

EUVD-2025-40586

Malicious code in bambang-keraktelor48-miaww npm...

MAL-2025-40586 Malicious code in yonder-jewjh-p5y10-pearl-project (npm)

The package yonder-jewjh-p5y10-pearl-project was found to contain malicious code...

CVE-2024-40586

An Improper Access Control vulnerability CWE-284 in FortiClient Windows version 7.4.0, version 7.2.6 and below, version 7.0.13 and below may allow a local user to escalate his privileges via FortiSSLVPNd service pipe...

CVE-2024-40586

An Improper Access Control vulnerability CWE-284 in FortiClient Windows version 7.4.0, version 7.2.6 and below, version 7.0.13 and below may allow a local user to escalate his privileges via FortiSSLVPNd service pipe...

CVE-2024-40586

creationtimestamp| type| source ---|---|--- 2025-02-11 16:36:29+00:00| seen| https://infosec.exchange/users/cve/statuses/113986226698718423 2025-02-11 17:16:32+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhw5yb6lwl2x 2025-02-11 17:45:28+00:00| seen|...

CVE-2024-40586

An Improper Access Control vulnerability CWE-284 in FortiClient Windows version 7.4.0, version 7.2.6 and below, version 7.0.13 and below may allow a local user to escalate his privileges via FortiSSLVPNd service pipe...

CVE-2023-40586

OWASP Coraza WAF is a golang modsecurity compatible web application firewall library. Due to the misuse of log.Fatalf, the application using coraza crashed after receiving crafted requests from attackers. The application will immediately crash after receiving a malicious request that triggers an...

CVE-2023-40586 go package github.com/corazawaf/coraza is vulnerable to denial of service

OWASP Coraza WAF is a golang modsecurity compatible web application firewall library. Due to the misuse of log.Fatalf, the application using coraza crashed after receiving crafted requests from attackers. The application will immediately crash after receiving a malicious request that triggers an...

CVE-2023-40586 go package github.com/corazawaf/coraza is vulnerable to denial of service

OWASP Coraza WAF is a golang modsecurity compatible web application firewall library. Due to the misuse of log.Fatalf, the application using coraza crashed after receiving crafted requests from attackers. The application will immediately crash after receiving a malicious request that triggers an...

CVE-2023-40586

CVE-2023-40586 affects OWASP Coraza WAF (Go) where misuse of log.Fatalf in the multipart body processing leads to immediate crash when a crafted request triggers an error in mime.ParseMediaType. Patch is available in version 3.0.1; remediation is to upgrade to 3.0.1+ (or apply fix). The Red Hat/V...

CVE-2023-40586

creationtimestamp| type| source ---|---|--- 2023-06-25 16:16:46+00:00| published-proof-of-concept| https://github.com/corazawaf/coraza/security/advisories/GHSA-c2pj-v37r-2p6h 2023-08-26 00:14:45+00:00| seen| https://t.me/cibsecurity/69224...

Adobe Flash Player - 'newfunction' Invalid Pointer Use (Metasploit) (1)

$Id: adobeflashplayernewfunction.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Adobe Reader authplay.dll newfunction Memory Corruption

Added: 06/17/2010 CVE: CVE-2010-1297 BID: 40586 OSVDB: 65141 Background Adobe Reader is free software for viewing PDF documents. Problem A memory corruption vulnerability in authplay.dll provided with Adobe Reader 9.3.2 and earlier 9.x versions allows command execution when a user opens a special...

CVE-2022-40586

CVE-2022-40586 entry is rejected/not used per initial description.