CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

152 matches found

CNNVD•added 2026/05/22 12:0 a.m.•5 views

Ubiquiti UniFi OS Server 安全漏洞

The Ubiquiti UniFi OS Server is a server platform developed by the Ubiquiti company, designed for managing UniFi networks and security devices. The Ubiquiti UniFi OS Server has a security vulnerability, which stems from improper input validation. This vulnerability could allow malicious actors wi...

9.1CVSS5.9AI score0.00063EPSS

Exploits0References2

CNNVD•added 2026/05/22 12:0 a.m.•4 views

Ubiquiti UniFi OS Server 安全漏洞

10CVSS5.9AI score0.00104EPSS

Exploits0References2

Tenable Nessus•added 2026/03/23 12:0 a.m.•1 views

RHEL 9 : python3.9 (RHSA-2026:5219)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:5219 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level...

6CVSS7.3AI score0.00104EPSS

Exploits0References9

RedHat Linux•added 2026/03/19 5:57 p.m.•2 views

Moderate: Red Hat Security Advisory: python3.11 security update

An update for python3.11 is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring...

6CVSS5.9AI score0.00104EPSS

Exploits0References4

Tenable Nessus•added 2026/02/28 12:0 a.m.•2 views

SUSE SLES15 / openSUSE 15 Security Update : python310 (SUSE-SU-2026:0613-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0613-1 advisory. - CVE-2025-11468: header injection when folding a long comment in an email header containing exclusively unfoldable...

6CVSS7.2AI score0.00205EPSS

Exploits0References19

OSV•added 2026/01/13 4:16 p.m.•0 views

CVE-2026-0406

An insufficient input validation vulnerability in the NETGEAR XR1000v2 allows attackers connected to the router's LAN to execute OS command injections...

8CVSS5.9AI score

Exploits0References2

OSV•added 2026/01/13 4:16 p.m.•2 views

CVE-2026-0403

An insufficient input validation vulnerability in NETGEAR Orbi routers allows attackers connected to the router's LAN to execute OS command injections...

8CVSS5.9AI score0.00083EPSS

Exploits0References11

Cvelist•added 2026/01/13 4:0 p.m.•19 views

CVE-2026-0403 Insufficient input validation in NETGEAR Orbi routers

An insufficient input validation vulnerability in NETGEAR Orbi routers allows attackers connected to the router's LAN to execute OS command injections...

4.8CVSS0.00083EPSS

Exploits0References11

CVE•added 2026/01/13 4:0 p.m.•7 views

CVE-2026-0403

CVE-2026-0403 involves an insufficient input validation vulnerability in NETGEAR Orbi routers that allows attackers on the LAN to execute OS command injections. Affected product family: NETGEAR Orbi routers (multiple models referenced in advisories). Root cause: inadequate input validation. Impac...

8CVSS6.8AI score0.00083EPSS

Exploits0References11Affected Software1

Positive Technologies•added 2026/01/13 12:0 a.m.•4 views

PT-2026-2626

CVE-2026-0403 An insufficient input validation vulnerability in NETGEAR Orbi routers allows attackers connected to the router's LAN to execute OS command injections. https://t.co/RZjGc6Wp0E...

4.8CVSS7.2AI score0.00083EPSS

Exploits0References13

RedhatCVE•added 2026/01/09 10:44 a.m.•6 views

CVE-2022-26580

PAX A930 device with PayDroid7.1.1VirgoV04.3.26T120210419 can allow the execution of specific command injections on selected binaries in the ADB daemon shell service. The attacker must have physical USB access to the device in order to exploit this vulnerability...

6.8CVSS6.9AI score0.01497EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:0 a.m.•1 views

CVE-2023-50382

Three os command injection vulnerabilities exist in the boa formWsc functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to arbitrary command execution. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This comman...

7.2CVSS7.9AI score0.00472EPSS

Exploits0References1

NVD•added 2025/12/09 5:15 p.m.•4 views

CVE-2025-12945

A vulnerability in NETGEAR Nighthawk R7000P routers lets an authenticated admin execute OS command injections due to improper input validation. This issue affects R7000P: through 1.3.3.154...

7.2CVSS0.00511EPSS

Exploits0References2

OSV•added 2025/10/07 2:15 p.m.•1 views

CVE-2025-54405

Multiple OS command injection vulnerabilities exist in the formPingCmd functionality of Planet WGR-500 v1.3411b190912. A specially crafted series of HTTP requests can lead to arbitrary command execution. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This command...

8.8CVSS6AI score0.00481EPSS

Exploits1References2