CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2026/06/06 12:43 p.m.•10 views

CVE-2026-25657

Ericsson Packet Core Gateway PCG versions prior to 1.30 contain an Improper Handling of Syntactically Invalid Structure CWE-228 vulnerability where an attacker continuously sending a specially crafted message can cause service degradation. The impact continues as long the attack persists but the...

7.1CVSS5.4AI score0.00019EPSS

RedhatCVE•added 2026/06/05 7:48 p.m.•8 views

CVE-2026-9471

A vulnerability was detected in yashpokharna2555 StudentManagementSystem cb2f558ddf8d19396de0f92abf2d224d46a0a203. This impacts an unknown function of the file /student.php. Performing a manipulation of the argument FIRSTNAME results in cross site scripting. The attack can be initiated remotely...

5.1CVSS4.1AI score0.00031EPSS

RedhatCVE•added 2026/06/05 7:39 p.m.•5 views

CVE-2026-7398

A weakness has been identified in florensiawidjaja BioinfoMCP up to 7ada7918b9e515604d3c0ae264d3a9af10bf6e54. This vulnerability affects the function Upload of the file bioinfomcpplatform/app.py of the component Upload Endpoint. This manipulation of the argument Name causes path traversal. The...

7.5CVSS6.8AI score0.00089EPSS

RedhatCVE•added 2026/06/05 7:25 p.m.•7 views

CVE-2026-44972

GuardDog is a CLI tool to identify malicious PyPI packages. From 2.6.0 to 2.9.0, GuardDog includes attacker-controlled filenames, file locations, messages, and code snippets in its default human-readable output without escaping terminal control characters. A malicious package can therefore inject...

5CVSS5.5AI score0.00013EPSS

HackRead•added 2026/06/05 7:14 p.m.•11 views

Miasma Malware Hits 32 Red Hat Packages via Compromised GitHub Account

32 Red Hat npm packages compromised by Miasma malware expose cloud tokens, CI/CD secrets and developer credentials in supply chain attack...

5.5AI score

GithubExploit•added 2026/06/05 6:34 p.m.•52 views

Dirty-cow-exploit

System Documentation Architecture - Frontend: React 19...

7.2CVSS6AI score0.93929EPSS

Exploits80

Qualys Blog•added 2026/06/05 12:30 p.m.•12 views

Advancing Cybersecurity in the Age of Frontier AI: Qualys Steps into Project Glasswing

The cybersecurity industry has spent much of the last two years debating how attackers might use AI. That debate matters, but it misses a larger point: defenders now have an opportunity to change the economics of cyber risk. For me, the question is not whether AI will influence cybersecurity. It...

5.6AI score

Cvelist•added 2026/06/05 11:3 a.m.•41 views

CVE-2026-25657 Ericsson Packet Core Gateway (PCG) - Improper Handling of Syntactically Invalid Structure Vulnerability

7.1CVSS0.00019EPSS

ATTACKERKB•added 2026/06/05 11:3 a.m.•5 views

CVE-2026-25657

7.1CVSS5.4AI score0.00019EPSS

Exploits0References2

Vulnrichment•added 2026/06/05 11:3 a.m.•6 views

CVE-2026-25657 Ericsson Packet Core Gateway (PCG) - Improper Handling of Syntactically Invalid Structure Vulnerability

7.1CVSS5.4AI score0.00019EPSS

GithubExploit•added 2026/06/04 8:54 p.m.•51 views

exploit-labs

exploit-labs Companion code for the Windows-security blog at...

5.9AI score

GithubExploit•added 2026/06/04 7:39 p.m.•47 views

exploit-validator

$repo Production-grade offensive security tool for Purpose...

Wallarm Lab•added 2026/06/04 1:30 p.m.•13 views

Introducing the Wallarm AI Control Platform: One closed loop for AI security and API security.

TL;DR - AI deployment has outpaced AI governance. Most enterprises running AI on AWS cannot answer four basic security questions about what's running, what it's doing,how to stop it, and how to prove it's under control. - The Wallarm AI Control Platform closes this gap: one platform for Discover,...

Microsoft Secure•added 2026/06/03 4:45 a.m.•16 views

Preinstall to persistence: Inside the Red Hat npm Miasma credential-stealing campaign

In this article 1. Attack chain overview 2. Mitigation and protection guidance 3. Learn more Microsoft Threat Intelligence identified a large-scale npm supply chain attack affecting 32 maliciously modified packages across more than 90 versions under the @redhat-cloud-services npm scope. The...

5.9AI score

The Hacker News•added 2026/06/02 10:30 a.m.•15 views

How Leading Organizations Are Turning EDR Into Operational Resilience

Most organizations now recognize that endpoint protection alone is no longer sufficient. That's why adoption of endpoint detection and response EDR has accelerated rapidly in recent years. Organizations understand that modern attacks move faster, evade traditional prevention controls, and require...

5.9AI score

Hive Pro Threat Advisories•added 2026/06/02 10:6 a.m.•13 views

Zafran vs Hive Pro: CTEM Platform Comparison

Persistent exposure backlogs do not shrink when teams chase every critical finding. Buyers need a CTEM platform that shows which risks demand action right now. Evaluate Uni5 Xposure for a threat-informed CTEM program. Zafran vs Hive Pro compares two CTEM platforms designed to focus security teams...

Packet Storm News•added 2026/06/02 12:0 a.m.•7 views

FlowGuard: Flow Matching for Identity-Independent Detection of Data-Free Model Stealing Attacks on Energy System Intrusion Detection Systems

Artificial Intelligence AI-based Intrusion Detection Systems IDS deployed in energy infrastructure are vulnerable to model theft attacks, which allow adversaries to create evasive traffic offline. Current defences against model extraction rely either on identity-bound query monitoring, which is...