Lucene search
K

8 matches found

CVE
CVE
added 2026/06/09 11:49 p.m.17 views

CVE-2026-41730

Spring Data REST is the affected component. The CVE describes that it serializes the full exception cause chain into HTTP error response bodies, potentially exposing persistence‑layer internals to HTTP clients. Affected versions include Spring Data REST 3.7.0–3.7.19; 4.3.0–4.3.16; 4.4.0–4.4.14; 4...

5.3CVSS5.5AI score0.00197EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2026/06/01 7:47 a.m.16 views

EUVD-2026-33586

A vulnerability was discovered on Stormshield Network Security 4.3.0 to 4.3.41, 4.8.0 to 4.8.15, 5.0.0 to 5.0.5 It is possible to execute a reflected XSS attack on the login API available on Stormshield SNS appliance by executing a script on the victim's machine. The risks include the theft of...

5.3CVSS5.9AI score0.00183EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/01 12:0 a.m.18 views

PT-2026-45387

A vulnerability was discovered on Stormshield Network Security 4.3.0 to 4.3.41, 4.8.0 to 4.8.15, 5.0.0 to 5.0.5 It is possible to execute a reflected XSS attack on the login API available on Stormshield SNS appliance by executing a script on the victim's machine. The risks include the theft of...

5.3CVSS5.9AI score0.00183EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/14 3:38 p.m.4 views

CVE-2026-39813

A path traversal: '../filedir' vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.5, FortiSandbox 4.4.0 through 4.4.8 may allow attacker to escalation of privilege via specially crafted HTTP requests...

9.8CVSS5.8AI score0.16739EPSS
Exploits2References2Affected Software2
CVE
CVE
added 2026/04/14 3:38 p.m.49 views

CVE-2026-39813

Fortinet FortiSandbox is affected by CVE-2026-39813, a path traversal vulnerability that enables privilege escalation via crafted requests (example path traversal: '../filedir'). Affected versions include FortiSandbox 4.4.0–4.4.8 and 5.0.0–5.0.5. Reported impact is high/critical, with potential f...

9.8CVSS5.8AI score0.16739EPSS
In wildExploits2References1Affected Software1
CVE
CVE
added 2026/04/14 3:38 p.m.20 views

CVE-2026-27316

The CVE-2026-27316 entry describes an insufficiently protected credentials vulnerability affecting Fortinet FortiSandbox: 5.0.0–5.0.5, FortiSandbox 4.4 (all versions), and FortiSandbox PaaS 5.0.1–5.0.5. Root cause: credentials stored or exposed in a way that can be read via client-side inspection...

2.7CVSS5.8AI score0.00305EPSS
Exploits0References1Affected Software2
Positive Technologies
Positive Technologies
added 2026/04/14 12:0 a.m.6 views

PT-2026-32692

Name of the Vulnerable Software and Affected Versions FortiSandbox versions 5.0.0 through 5.0.5 FortiSandbox versions 4.4.0 through 4.4.8 Description A path traversal issue exists where an attacker can use the ../filedir sequence in specially crafted HTTP requests to bypass restricted directory...

9.8CVSS7.6AI score0.16739EPSS
Exploits2References61
IBM Security Bulletins
IBM Security Bulletins
added 2020/08/26 2:47 p.m.27 views

Security Bulletin: Openstack Keystone vulnerabilities affects IBM Spectrum Scale (CVE-2020-12689)

Summary IBM Spectrum Scale, shipped with Openstack keystone, is exposed to vulnerabilities as detailed below. Vulnerability Details CVEID: CVE-2020-12689 DESCRIPTION: OpenStack Keystone could allow a remote authenticated attacker to gain elevated privileges on the system, caused by improper...

8.8CVSS1.4AI score0.04918EPSS
Exploits0Affected Software1
Rows per page
Query Builder