Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

219118 matches found

NVD
NVDadded 2026/06/05 11:16 a.m.6 views

CVE-2026-21030

Improper access control in MediaTek Audio HAL prior to SMR Jun-2026 Release 1 allows local attackers to trigger privileged functions...

7.8CVSS0.00094EPSS
Exploits0References1
CVE
CVEadded 2026/06/05 10:15 a.m.16 views

CVE-2026-21030

CVE-2026-21030 describes an improper access control issue in MediaTek Audio HAL prior to the SMR Jun-2026 Release 1, enabling local attackers to trigger privileged functions. The affected component is MediaTek Audio HAL; root cause is improper access control, with impact described as privileged a...

7.8CVSS5.5AI score0.00094EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2026/06/05 10:15 a.m.6 views

CVE-2026-21030

Improper access control in MediaTek Audio HAL prior to SMR Jun-2026 Release 1 allows local attackers to trigger privileged functions...

6.4CVSS5.4AI score0.00094EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/06/05 10:15 a.m.39 views

CVE-2026-21030

Improper access control in MediaTek Audio HAL prior to SMR Jun-2026 Release 1 allows local attackers to trigger privileged functions...

6.4CVSS0.00094EPSS
Exploits0References1
EUVD
EUVDadded 2026/06/05 10:15 a.m.7 views

EUVD-2026-34802

Improper access control in MediaTek Audio HAL prior to SMR Jun-2026 Release 1 allows local attackers to trigger privileged functions...

7.8CVSS5.4AI score0.00094EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/06/05 10:15 a.m.5 views

CVE-2026-21030

Improper access control in MediaTek Audio HAL prior to SMR Jun-2026 Release 1 allows local attackers to trigger privileged functions...

6.4CVSS5.5AI score0.00094EPSS
Exploits0References2
CVE
CVEadded 2026/06/05 10:15 a.m.14 views

CVE-2026-21028

Technical details about CVE-2026-21028 are not publicly available in the provided documents. Monitor for updates from Samsung and security advisories.

5.5CVSS5.5AI score0.00093EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2026/06/05 10:15 a.m.37 views

CVE-2026-21028

Improper access control in AuditLogService prior to SMR Jun-2026 Release 1 allows local attackers to access sensitive information...

5.1CVSS0.00093EPSS
Exploits0References1
EUVD
EUVDadded 2026/06/05 10:15 a.m.7 views

EUVD-2026-34800

Improper access control in AuditLogService prior to SMR Jun-2026 Release 1 allows local attackers to access sensitive information...

5.5CVSS5.4AI score0.00093EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/06/05 10:15 a.m.4 views

CVE-2026-21028

Improper access control in AuditLogService prior to SMR Jun-2026 Release 1 allows local attackers to access sensitive information...

5.1CVSS5.5AI score0.00093EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/06/05 10:15 a.m.7 views

CVE-2026-21028

Improper access control in AuditLogService prior to SMR Jun-2026 Release 1 allows local attackers to access sensitive information...

5.1CVSS5.4AI score0.00093EPSS
Exploits0References1
NVD
NVDadded 2026/06/05 9:16 a.m.11 views

CVE-2026-6274

Improper Authentication, Missing authentication for critical function, Weak Authentication vulnerability in DTS Electronics Industry and Trade Ltd. Co. Redline WR3200 allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Redline WR3200: from 7.1.3 before 7.1.8...

9.8CVSS0.00371EPSS
Exploits0References2
Patchstack
Patchstackadded 2026/06/05 9:10 a.m.7 views

WordPress User Registration Stripe plugin <= 1.3.12 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by 0xd4rk5id3 in WordPress Plugin User Registration Stripe versions = 1.3.12...

8.2CVSS5.4AI score0.00291EPSS
Exploits0Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/06/05 9:1 a.m.5 views

CVE-2026-6274

Improper Authentication, Missing authentication for critical function, Weak Authentication vulnerability in DTS Electronics Industry and Trade Ltd. Co. Redline WR3200 allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Redline WR3200: from 7.1.3 before 7.1.8...

9.8CVSS5.5AI score0.00371EPSS
Exploits0References2Affected Software1
EUVD
EUVDadded 2026/06/05 9:1 a.m.9 views

EUVD-2026-34793

Improper Authentication, Missing authentication for critical function, Weak Authentication vulnerability in DTS Electronics Industry and Trade Ltd. Co. Redline WR3200 allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Redline WR3200: from 7.1.3 before 7.1.8...

9.8CVSS5.5AI score0.00371EPSS
Exploits0References1
Snyk
Snykadded 2026/06/05 7:45 a.m.5 views

Insufficient Granularity of Access Control

Overview org.keycloak:keycloak-services is an open source identity and access management solution for modern applications and services. Affected versions of this package are vulnerable to Insufficient Granularity of Access Control in the getMembers methods that serve the group members endpoint. A...

5.1CVSS5.4AI score0.00318EPSS
Exploits0References2
Snyk
Snykadded 2026/06/05 7:45 a.m.4 views

Insufficient Granularity of Access Control

Overview org.keycloak:keycloak-server-spi-private is an open source identity and access management solution for modern applications and services. Affected versions of this package are vulnerable to Insufficient Granularity of Access Control in the getMembers methods that serve the group members...

5.1CVSS5.4AI score0.00318EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2026/06/05 6:14 a.m.12 views

CVE-2026-4035

A flaw was found in MLflow. This vulnerability allows an attacker to exfiltrate sensitive server-side environment credentials. It occurs because the AI Gateway secrets can resolve environment variables, which are then sent to an attacker-controlled endpoint. This could lead to unauthorized access...

9.1CVSS5.6AI score0.00315EPSS
Exploits1References5
OSV
OSVadded 2026/06/05 5:43 a.m.5 views

BIT-KAFKA-2026-41115 Apache Kafka: Improper Authorization in CONSUMER_GROUP_DESCRIBE API

An improper authorization vulnerability has been identified in Apache Kafka. The implementation of the CONSUMERGROUPDESCRIBE 69 API validates the DESCRIBE operation on the GROUP resource instead of the READ operation that documented in the official kafka documentation and the KIP-848. This...

4.3CVSS5.4AI score0.00454EPSS
Exploits0References3
NVD
NVDadded 2026/06/05 2:17 a.m.6 views

CVE-2026-11326

OpenAI Atlas before 1.2025.288.15 exposed privileged browser APIs to web content on .openai.com origins. A cross-site scripting vulnerability in forum.openai.com could be used to access these functions, allowing access to browser history information and the ability to open or close tabs. OpenAI...

6CVSS0.00214EPSS
Exploits0References1
Rows per page
Query Builder