CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 6 days ago•28 views

CVE-2026-47341 Apache APISIX: Session replay issue in hmac-auth

6.3CVSS0.0043EPSS

Positive Technologies•added 6 days ago•13 views

PT-2026-50887

Name of the Vulnerable Software and Affected Versions Apache APISIX versions 3.11.0 through 3.16.0 Description An authentication bypass exists due to a capture-replay issue. An attacker can leverage specific configurations in the hmac-auth module to reuse a token indefinitely, effectively bypassi...

6.5CVSS5.9AI score0.0043EPSS

Exploits0References6

RedhatCVE•added 2026/05/29 8:13 p.m.•11 views

CVE-2026-9398

A security vulnerability has been detected in Besen BS20 EV Charging Station up to 20260426. This affects an unknown part of the component BLE/WiFi. Such manipulation leads to authentication bypass by capture-replay. The attack must be carried out from within the local network. Attacks of this...

NVD•added 2026/05/24 9:16 p.m.•14 views

CVE-2026-9398

3.1CVSS0.00294EPSS

ATTACKERKB•added 2026/05/24 8:45 p.m.•8 views

CVE-2026-9398

Exploits0References5Affected Software1

CVE•added 2026/05/24 8:45 p.m.•18 views

CVE-2026-9398

The CVE-2026-9398 entry concerns Besen BS20 EV Charging Station with a flaw in the BLE/WiFi authentication that enables bypass via capture-replay. Affected component: BLE/WiFi, within the Besen BS20 line up to 20260426. The attack must originate from the local network; exploitation is described a...

Cvelist•added 2026/05/24 8:45 p.m.•13 views

CVE-2026-9398 Besen BS20 EV Charging Station BLE/WiFi authentication replay

3.1CVSS0.00294EPSS

Vulnrichment•added 2026/05/24 8:45 p.m.•8 views

CVE-2026-9398 Besen BS20 EV Charging Station BLE/WiFi authentication replay

EUVD•added 2026/05/24 8:45 p.m.•15 views

EUVD-2026-31550

Positive Technologies•added 2026/05/24 12:0 a.m.•11 views

PT-2026-42969

RedhatCVE•added 2026/03/26 3:15 p.m.•4 views

CVE-2026-4583

A vulnerability was detected in Shenzhen HCC Technology MPOS M6 PLUS 1V.31-N. Affected by this issue is some unknown functionality of the component Bluetooth Handler. Performing a manipulation results in authentication bypass by capture-replay. The attack must originate from the local network. Th...

5CVSS5.5AI score0.00288EPSS

RedhatCVE•added 2026/03/26 3:5 p.m.•2 views

CVE-2025-13777

Authentication bypass by capture-replay vulnerability in ABB AWIN GW100 rev.2, ABB AWIN GW120.This issue affects AWIN GW100 rev.2: 2.0-0, 2.0-1; AWIN GW120: 1.2-0, 1.2-1...

8.3CVSS5.8AI score0.00228EPSS

EUVD•added 2026/03/23 12:30 p.m.•4 views

EUVD-2026-14399

5CVSS5.5AI score0.00288EPSS

Exploits0References5

NVD•added 2026/03/23 11:16 a.m.•7 views

CVE-2026-4583

5CVSS0.00288EPSS

ATTACKERKB•added 2026/03/23 10:31 a.m.•3 views

CVE-2026-4583

5CVSS5.3AI score0.00288EPSS

Cvelist•added 2026/03/23 10:31 a.m.•26 views

CVE-2026-4583 Shenzhen HCC Technology MPOS M6 PLUS Bluetooth authentication replay

5CVSS0.00288EPSS

CVE•added 2026/03/23 10:31 a.m.•11 views

CVE-2026-4583

The CVE-2026-4583 entry affects Shenzhen HCC Technology MPOS M6 PLUS 1V.31-N, specifically a vulnerability in the Bluetooth Handler that enables authentication bypass via capture-replay. The attack is reported to originate from the local network and has high complexity; exploitation is described ...

5CVSS5.5AI score0.00288EPSS