CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

38 matches found

CVE-2025-41270

Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' in the Console WebUI in Waterfall WF-500 TX and RX Hosts in version 7.9.1.0 R2502171040 that allows remote unauthenticated attackers to execute arbitrary operating...

9.3CVSS6.1AI score0.00261EPSS

Exploits0References1

Tenable Nessus•added 2026/05/06 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2023-54344

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Eclipse Equinox OSGi 3.7.2 and earlier contains a remote code execution vulnerability that allows unauthenticated attackers to execute arbitrary commands by...

9.8CVSS6.7AI score0.00199EPSS

Exploits0References2

ATTACKERKB•added 2026/05/05 11:24 a.m.•1 views

CVE-2023-54344

Eclipse Equinox OSGi 3.7.2 and earlier contains a remote code execution vulnerability that allows unauthenticated attackers to execute arbitrary commands by sending payloads to the console interface. Attackers can connect to the OSGi console port and send base64-encoded bash commands wrapped in...

9.8CVSS6.7AI score0.00199EPSS

Exploits0References2Affected Software1

CNNVD•added 2026/05/05 12:0 a.m.•4 views

Eclipse Equinox OSGi 访问控制错误漏洞

Eclipse Equinox OSGi is a modular runtime framework developed by the Eclipse Foundation. Versions of Eclipse Equinox OSGi prior to 3.7.2 contained an access control vulnerability. This vulnerability stemmed from a remote code execution flaw in the console interface, allowing unauthenticated...

9.8CVSS6.7AI score0.00199EPSS

Exploits0References1

RedhatCVE•added 2026/04/29 9:0 a.m.•2 views

CVE-2026-42510

A flaw was found in OpenStack Ironic. When configured with a console interface in a non-default setup, this vulnerability allows an attacker to execute ipmitool commands. This unauthorized execution can lead to remote management of the underlying hardware, potentially resulting in arbitrary code...

6.6CVSS6.4AI score0.00027EPSS

Exploits0References4

OSV•added 2026/04/28 6:30 a.m.•1 views

GHSA-WQPV-C3PP-3M58 OpenStack Ironic is Vulnerable to Inclusion of Functionality from Untrusted Control Sphere

OpenStack Ironic through 25.0.0 allows ipmitool execution in a non-default configuration that has a console interface...

6.6CVSS5.9AI score0.00027EPSS

Exploits0References4

Github Security Blog•added 2026/04/28 6:30 a.m.•3 views

OpenStack Ironic is Vulnerable to Inclusion of Functionality from Untrusted Control Sphere

OpenStack Ironic through 25.0.0 allows ipmitool execution in a non-default configuration that has a console interface...

6.6CVSS5.9AI score0.00027EPSS

Exploits0References4Affected Software1

OSV•added 2026/04/28 6:16 a.m.•0 views

DEBIAN-CVE-2026-42510

OpenStack Ironic before 35.0.1 allows ipmitool execution in a non-default configuration that has a console interface...

6.6CVSS5.6AI score0.00027EPSS

Exploits0References1

NVD•added 2026/04/28 6:16 a.m.•1 views

CVE-2026-42510

OpenStack Ironic before 35.0.1 allows ipmitool execution in a non-default configuration that has a console interface...

6.6CVSS0.00027EPSS

Exploits0References3

Cvelist•added 2026/04/28 4:53 a.m.•28 views

CVE-2026-42510

OpenStack Ironic before 35.0.1 allows ipmitool execution in a non-default configuration that has a console interface...

6.6CVSS0.00027EPSS

Exploits0References2

EUVD•added 2026/04/28 4:53 a.m.•1 views

EUVD-2026-25982

OpenStack Ironic through 25.0.0 allows ipmitool execution in a non-default configuration that has a console interface...

6.6CVSS5.5AI score0.00027EPSS

Exploits0References1

Vulnrichment•added 2026/04/28 4:53 a.m.•0 views

CVE-2026-42510

OpenStack Ironic before 35.0.1 allows ipmitool execution in a non-default configuration that has a console interface...

6.6CVSS5.4AI score0.00027EPSS

Exploits0References1

CVE•added 2026/04/28 4:53 a.m.•4 views

CVE-2026-42510

OpenStack Ironic is affected by CVE-2026-42510. The CVE record for OpenStack Ironic identifies that before version 35.0.1 it allows ipmitool execution in a non-default configuration that includes a console interface. The root cause is the ability to execute ipmitool under non-default console conf...

6.6CVSS5.5AI score0.00027EPSS

Exploits0References3

Debian CVE•added 2026/04/28 4:53 a.m.•3 views

CVE-2026-42510

OpenStack Ironic before 35.0.1 allows ipmitool execution in a non-default configuration that has a console interface...

6.6CVSS5.5AI score0.00027EPSS

Exploits0

Positive Technologies•added 2026/04/28 12:0 a.m.•0 views

PT-2026-35657

CVE-2026-42510 OpenStack Ironic before 35.0.1 allows ipmitool execution in a non-default configuration that has a console interface. https://t.co/7WlPP7580G...

6.6CVSS5.5AI score0.00027EPSS

Exploits0References3

Positive Technologies•added 2026/04/22 12:0 a.m.•0 views

PT-2026-34585

IBM Total Storage Service Console TSSC / TS4500 IMC 9.2, 9.3, 9.4, 9.5, 9.6 TSSC/IMC could allow an unauthenticated user to execute arbitrary commands with normal user privileges on the system due to improper validation of user supplied input...

7.3CVSS6.1AI score0.00102EPSS

Exploits0References2

EUVD•added 2026/04/10 9:31 a.m.•1 views

EUVD-2026-21332

OpenStack Skyline before 5.0.1, 6.0.0, and 7.0.0 has a DOM-based Cross-Site Scripting XSS vulnerability in the console because document.write is used unsafely, which is relevant in scenarios where administrators use the console web interface to view instance console logs...

5.4CVSS5.8AI score0.00012EPSS

Exploits0References4

Tenable Nessus•added 2026/01/16 12:0 a.m.•1 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003986)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003986 advisory. A flaw was found in the Linux kernel. A use-after-free was found in the way the console subsystem was using ioctls KDGKBSENT and KDSKBSENT. A local user could use th...

4.1CVSS6.3AI score0.00019EPSS

Exploits1References3