5 matches found
CVE-2026-50495
CVE-2026-50495 is a Windows DNS vulnerability described as improper access control that could allow an authorized local attacker to tamper DNS-related data. Multiple connected sources (NVD entry and MSRC update guidance) confirm this as a locally exploitable issue with a baseline CVSS v3.1 score ...
CVE-2026-50465
CVE-2026-50465 is a Windows DNS Client tampering vulnerability caused by improper access control that can be exploited locally by an authorized attacker. Connected sources confirm Windows DNS is affected (CVE-2026-50465 listed under Windows DNS with data manipulation; MSRC update guidance). The C...
CVE-2025-59280
CVE-2025-59280 affects the Windows SMB Client and is described as an improper authentication vulnerability that allows an unauthorized attacker to tamper over the network. The CVSSv3.1 vector from the initial document is: AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N with a base score of 3.1 (Low). Connect...
Important: nodejs20
Issue Overview: NOTE: https://nodejs.org/en/blog/vulnerability/april-2024-security-releases/ CVE-2024-27982 An attacker can make the Node.js HTTP/2 server completely unavailable by sending a small amount of HTTP/2 frames packets with a few HTTP/2 frames inside. It is possible to leave some data i...
PT-2006-3505 · Linksys · Linksys Wrt54Gl Wireless-G Broadband Router
Name of the Vulnerable Software and Affected Versions: Linksys WRT54G Wireless-G Broadband Router affected versions not specified Description: The issue allows remote attackers to bypass access restrictions and conduct unauthorized operations. This is achieved via a UPnP request with a modified...