Lucene search
K

767 matches found

NVD
NVD
added 2026/01/23 4:16 a.m.7 views

CVE-2026-0794

ALGO 8180 IP Audio Alerter SIP Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of ALGO 8180 IP Audio Alerter devices. Authentication is not required to exploit this vulnerability. The specific flaw...

9.8CVSS0.00631EPSS
Exploits0References1
NVD
NVD
added 2026/01/23 4:16 a.m.12 views

CVE-2026-0787

ALGO 8180 IP Audio Alerter SAC Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of ALGO 8180 IP Audio Alerter devices. Authentication is not required to exploit this vulnerability. The specific fl...

9.8CVSS0.01278EPSS
Exploits0References1
NVD
NVD
added 2026/01/23 4:16 a.m.11 views

CVE-2026-0792

ALGO 8180 IP Audio Alerter SIP INVITE Alert-Info Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of ALGO 8180 IP Audio Alerter devices. Authentication is not required to exploit this...

9.8CVSS0.00631EPSS
Exploits0References1
NVD
NVD
added 2026/01/23 4:16 a.m.8 views

CVE-2026-0774

WatchYourLAN Configuration Page Argument Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of WatchYourLAN. Authentication is not required to exploit this vulnerability. The specific flaw exists...

8.8CVSS0.00665EPSS
Exploits0References1
NVD
NVD
added 2026/01/23 4:16 a.m.10 views

CVE-2026-0764

GPT Academic upload Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GPT Academic. Authentication is not required to exploit this vulnerability. The specific flaw exists within...

9.8CVSS0.00993EPSS
Exploits0References1
NVD
NVD
added 2026/01/23 4:16 a.m.7 views

CVE-2026-0769

Langflow evalcustomcomponentcode Eval Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Langflow. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...

9.8CVSS0.33827EPSS
Exploits1References1
NVD
NVD
added 2026/01/23 4:16 a.m.12 views

CVE-2026-0767

Open WebUI Cleartext Transmission of Credentials Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of Open WebUI. Authentication is not required to exploit this vulnerability. The specific flaw...

6.5CVSS0.00241EPSS
Exploits1References1
NVD
NVD
added 2026/01/23 4:16 a.m.10 views

CVE-2026-0756

github-kanban-mcp-server execAsync Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of github-kanban-mcp-server. Authentication is not required to exploit this vulnerability. The specific flaw...

9.8CVSS0.01815EPSS
Exploits0References1
NVD
NVD
added 2026/01/23 4:16 a.m.6 views

CVE-2026-0761

Foundation Agents MetaGPT actionoutputstrtomapping Code Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foundation Agents MetaGPT. Authentication is not required to exploit this vulnerability. The...

9.8CVSS0.01051EPSS
Exploits0References1
NVD
NVD
added 2026/01/23 4:16 a.m.8 views

CVE-2025-15349

Anritsu ShockLine SCPI Race Condition Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Anritsu ShockLine. Authentication is not required to exploit this vulnerability. The specific flaw exists within t...

7.5CVSS0.00414EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/23 3:31 a.m.3 views

CVE-2025-15349

Anritsu ShockLine SCPI Race Condition Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Anritsu ShockLine. Authentication is not required to exploit this vulnerability. The specific flaw exists within t...

7.5CVSS6.3AI score0.00414EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/01/23 3:29 a.m.34 views

CVE-2026-0774 WatchYourLAN Configuration Page Argument Injection Remote Code Execution Vulnerability

WatchYourLAN Configuration Page Argument Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of WatchYourLAN. Authentication is not required to exploit this vulnerability. The specific flaw exists...

8.8CVSS0.00665EPSS
Exploits0References1
CVE
CVE
added 2026/01/23 3:29 a.m.14 views

CVE-2026-0774

WatchYourLAN suffers a remote code execution through argument injection in the arpstrs parameter. The flaw arises from insufficient validation of a user-supplied string before it is used in a system call, allowing network-adjacent attackers to run code with the service account’s privileges withou...

8.8CVSS6.4AI score0.00665EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/23 3:28 a.m.10 views

CVE-2026-0770

Langflow execglobals Inclusion of Functionality from Untrusted Control Sphere Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Langflow. Authentication is not required to exploit this vulnerability. The specific...

9.8CVSS6.3AI score0.10371EPSS
Exploits8References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/23 3:28 a.m.9 views

CVE-2026-0769 Langflow eval_custom_component_code Eval Injection Remote Code Execution Vulnerability

Langflow evalcustomcomponentcode Eval Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Langflow. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...

9.8CVSS6.5AI score0.33827EPSS
Exploits1References1
CVE
CVE
added 2026/01/23 3:28 a.m.16 views

CVE-2026-0767

Technical details for CVE-2026-0767 are not publicly available in the provided documents. Monitor for updates.

6.5CVSS5.5AI score0.00241EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2026/01/23 3:28 a.m.15 views

CVE-2026-0763

GPT Academic is affected by CVE-2026-0763 via the run_in_subprocess_wrapper_func deserialization flaw, enabling remote code execution with root privileges. The issue stems from insufficient validation of user-supplied data, allowing deserialization of untrusted data, and does not require authenti...

9.8CVSS6.6AI score0.00993EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2026/01/23 3:28 a.m.4 views

CVE-2026-0760 Foundation Agents MetaGPT deserialize_message Deserialization of Untrusted Data Remote Code Execution Vulnerability

Foundation Agents MetaGPT deserializemessage Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foundation Agents MetaGPT. Authentication is not required to exploit this...

9.8CVSS7.7AI score0.00993EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/01/23 3:26 a.m.8 views

CVE-2026-0756 github-kanban-mcp-server execAsync Command Injection Remote Code Execution Vulnerability

github-kanban-mcp-server execAsync Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of github-kanban-mcp-server. Authentication is not required to exploit this vulnerability. The specific flaw...

9.8CVSS6.5AI score0.01815EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/23 3:1 a.m.3 views

CVE-2026-0794

ALGO 8180 IP Audio Alerter SIP Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of ALGO 8180 IP Audio Alerter devices. Authentication is not required to exploit this vulnerability. The specific flaw...

8.1CVSS6.3AI score0.00631EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder