CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

39 matches found

RedhatCVE•added 2026/03/26 2:59 p.m.•5 views

CVE-2026-31904

The WebSocket Application Programming Interface lacks restrictions on the number of authentication requests. This absence of rate limiting may allow an attacker to conduct denial-of-service attacks by suppressing or mis-routing legitimate charger telemetry, or conduct brute-force attacks to gain...

8.7CVSS5.8AI score0.00427EPSS

Exploits0References1

EUVD•added 2026/03/21 12:31 a.m.•4 views

EUVD-2026-13855

8.7CVSS5.8AI score0.00427EPSS

Exploits0References4

NVD•added 2026/03/20 11:16 p.m.•7 views

CVE-2026-31904

8.7CVSS0.00427EPSS

Exploits0References3

ATTACKERKB•added 2026/03/20 10:56 p.m.•4 views

CVE-2026-31903

8.7CVSS5.8AI score0.00408EPSS

Exploits0References3

Cvelist•added 2026/03/20 10:56 p.m.•24 views

CVE-2026-31903 IGL-Technologies eParking.fi Improper Restriction of Excessive Authentication Attempts

8.7CVSS0.00408EPSS

Exploits0References2

CVE•added 2026/03/20 10:45 p.m.•11 views

CVE-2026-31904

CVE-2026-31904 concerns the WebSocket API used by CTEK Chargeportal. The issue arises from a lack of rate limiting on authentication requests within the WebSocket interface, which could allow an attacker to perform denial-of-service attacks that suppress or mis-route charger telemetry, or execute...

8.7CVSS5.8AI score0.00427EPSS

Exploits0References3Affected Software1

Positive Technologies•added 2026/03/20 12:0 a.m.•3 views

PT-2026-26698

8.7CVSS5.8AI score0.00427EPSS

Exploits0References5

RedhatCVE•added 2026/03/07 7:31 p.m.•5 views

CVE-2026-24696

8.7CVSS5.8AI score0.00357EPSS

Exploits0References1

EUVD•added 2026/03/06 6:31 p.m.•3 views

EUVD-2026-10033

8.7CVSS5.8AI score0.00357EPSS

Exploits0References3

Vulnrichment•added 2026/03/06 3:16 p.m.•4 views

CVE-2026-24696 Everon api.everon.io Improper Restriction of Excessive Authentication Attempts

8.7CVSS5.8AI score0.00357EPSS

Exploits0References2

ATTACKERKB•added 2026/03/06 3:16 p.m.•5 views

CVE-2026-24696

8.7CVSS5.8AI score0.00357EPSS

Exploits0References3

ATTACKERKB•added 2026/03/06 3:5 p.m.•4 views

CVE-2026-20882

8.7CVSS5.8AI score0.00437EPSS

Exploits0References4

Vulnrichment•added 2026/03/06 3:5 p.m.•4 views

CVE-2026-20882 Mobiliti e-mobi.hu Improper Restriction of Excessive Authentication Attempts

8.7CVSS5.8AI score0.00437EPSS

Exploits0References3

EUVD•added 2026/03/06 12:31 a.m.•6 views

EUVD-2026-9943

8.7CVSS6AI score0.00601EPSS

Exploits1References4

Vulnrichment•added 2026/03/05 11:36 p.m.•1 views

CVE-2026-27778 ePower epower.ie Improper Restriction of Excessive Authentication Attempts

8.7CVSS5.8AI score0.00601EPSS

Exploits1References3

CVE•added 2026/03/05 11:36 p.m.•18 views

CVE-2026-27778

The CVE-2026-27778 entry concerns the WebSocket API. The root cause is no rate limiting on authentication attempts, allowing potential denial-of-service by disrupting legitimate charger telemetry and enabling brute-force access attempts. The available documents consistently describe the issue but...

8.7CVSS6AI score0.00601EPSS

Exploits1References3Affected Software1

Cvelist•added 2026/03/05 11:36 p.m.•32 views

CVE-2026-27778 ePower epower.ie Improper Restriction of Excessive Authentication Attempts

8.7CVSS0.00601EPSS

Exploits1References3

RedhatCVE•added 2026/02/28 1:55 a.m.•3 views

CVE-2026-25114

9.8CVSS6AI score0.00475EPSS

Exploits0References1

RedhatCVE•added 2026/02/28 1:55 a.m.•4 views

CVE-2026-25113