Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9705 matches found

Vulnrichment
Vulnrichmentadded 2026/05/21 8:14 a.m.5 views

CVE-2026-7837 TOCTOU with root privilege in ad_flush

A time-of-check time-of-use TOCTOU condition in the adflush function in Netatalk 3.0.0 through 4.4.2 involves root-privileged file operations, which may allow a remote attacker to cause limited data modification under specific race conditions...

3.7CVSS5.8AI score0.00047EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/05/21 8:14 a.m.31 views

CVE-2026-7837 TOCTOU with root privilege in ad_flush

A time-of-check time-of-use TOCTOU condition in the adflush function in Netatalk 3.0.0 through 4.4.2 involves root-privileged file operations, which may allow a remote attacker to cause limited data modification under specific race conditions...

3.7CVSS0.00047EPSS
Exploits0References1
EUVD
EUVDadded 2026/05/21 8:14 a.m.3 views

EUVD-2026-31245

A time-of-check time-of-use TOCTOU condition in the adflush function in Netatalk 3.0.0 through 4.4.2 involves root-privileged file operations, which may allow a remote attacker to cause limited data modification under specific race conditions...

3.7CVSS5.8AI score0.00047EPSS
Exploits0References1
CVE
CVEadded 2026/05/21 8:14 a.m.9 views

CVE-2026-7837

CVE-2026-7837 is a TOCTOU vulnerability in Netatalk 3.0.0 through 4.4.2 affecting the ad_flush function. The issue involves root-privileged file operations and could allow a remote attacker to cause limited data modification under specific race conditions. The NVD entry documents a Network attack...

3.7CVSS5.8AI score0.00047EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/05/21 8:14 a.m.3 views

CVE-2026-7837

A time-of-check time-of-use TOCTOU condition in the adflush function in Netatalk 3.0.0 through 4.4.2 involves root-privileged file operations, which may allow a remote attacker to cause limited data modification under specific race conditions...

3.7CVSS5.8AI score0.00047EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/05/21 7:35 a.m.1 views

CVE-2026-7836

An incorrect calculation in the hextoint macro in Netatalk 2.0.0 through 4.4.2 due to improper uppercase character handling allows a remote authenticated attacker to cause limited data modification via crafted hexadecimal input...

3.1CVSS5.8AI score0.00044EPSS
Exploits0References2Affected Software1
AlpineLinux
AlpineLinuxadded 2026/05/21 7:35 a.m.3 views

CVE-2026-7836

An incorrect calculation in the hextoint macro in Netatalk 2.0.0 through 4.4.2 due to improper uppercase character handling allows a remote authenticated attacker to cause limited data modification via crafted hexadecimal input...

3.1CVSS5.8AI score0.00044EPSS
Exploits0
ATTACKERKB
ATTACKERKBadded 2026/05/21 7:34 a.m.4 views

CVE-2026-44069

An integer underflow in the volxlate function in Netatalk 3.0.0 through 4.4.2 allows a local privileged user to obtain limited information, modify limited data, or cause a minor service disruption via crafted volume translation input...

3.9CVSS5.8AI score0.00015EPSS
Exploits0References2Affected Software1
AlpineLinux
AlpineLinuxadded 2026/05/21 7:34 a.m.3 views

CVE-2026-44069

An integer underflow in the volxlate function in Netatalk 3.0.0 through 4.4.2 allows a local privileged user to obtain limited information, modify limited data, or cause a minor service disruption via crafted volume translation input...

3.9CVSS5.8AI score0.00015EPSS
Exploits0
Vulnrichment
Vulnrichmentadded 2026/05/21 7:34 a.m.3 views

CVE-2026-44069 Integer underflow in volxlate

An integer underflow in the volxlate function in Netatalk 3.0.0 through 4.4.2 allows a local privileged user to obtain limited information, modify limited data, or cause a minor service disruption via crafted volume translation input...

3.9CVSS5.8AI score0.00015EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/05/21 7:34 a.m.3 views

CVE-2026-44065

An off-by-two error in lpwrite in papd in Netatalk 2.0.0 through 4.4.2 allows an adjacent network attacker to modify limited data or cause a minor service disruption via crafted print data...

4.2CVSS5.8AI score0.00018EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/05/21 7:34 a.m.1 views

CVE-2026-44063 LDAP filter injection

An LDAP injection vulnerability in Netatalk 2.1.0 through 4.4.2 allows a remote authenticated attacker to manipulate LDAP queries and obtain limited information or modify LDAP entries via crafted filter input...

4.2CVSS5.8AI score0.00043EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/05/21 7:34 a.m.4 views

CVE-2026-44059 Non-reentrant privilege toggle

A race condition in the privilege toggle mechanism in Netatalk 2.2.5 through 4.4.2 allows a local attacker to obtain limited information, modify limited data, or cause a minor service disruption...

4.5CVSS5.8AI score0.00013EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/05/21 7:34 a.m.3 views

CVE-2026-44059

A race condition in the privilege toggle mechanism in Netatalk 2.2.5 through 4.4.2 allows a local attacker to obtain limited information, modify limited data, or cause a minor service disruption...

4.5CVSS5.8AI score0.00013EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/05/21 7:34 a.m.3 views

CVE-2026-44056 Stack buffer overflow in desktop.c

A stack-based buffer overflow in desktop.c in Netatalk 1.3 through 4.2.2 allows a remote authenticated attacker to cause a denial of service, obtain limited information, or modify limited data...

6.4CVSS6.1AI score0.00102EPSS
Exploits0References1
AlpineLinux
AlpineLinuxadded 2026/05/21 7:34 a.m.3 views

CVE-2026-44056

A stack-based buffer overflow in desktop.c in Netatalk 1.3 through 4.2.2 allows a remote authenticated attacker to cause a denial of service, obtain limited information, or modify limited data...

6.4CVSS6.1AI score0.00102EPSS
Exploits0
ATTACKERKB
ATTACKERKBadded 2026/05/21 7:34 a.m.2 views

CVE-2026-44056

A stack-based buffer overflow in desktop.c in Netatalk 1.3 through 4.2.2 allows a remote authenticated attacker to cause a denial of service, obtain limited information, or modify limited data...

6.4CVSS6.1AI score0.00102EPSS
Exploits0References2Affected Software1
AlpineLinux
AlpineLinuxadded 2026/05/21 7:33 a.m.9 views

CVE-2026-44047

An SQL injection vulnerability in the MySQL CNID backend in Netatalk 3.1.0 through 4.4.2 allows a remote authenticated attacker to obtain unauthorized access to data, modify data, or cause a denial of service...

8.8CVSS5.9AI score0.00032EPSS
Exploits0
ATTACKERKB
ATTACKERKBadded 2026/05/21 7:33 a.m.4 views

CVE-2026-44047

An SQL injection vulnerability in the MySQL CNID backend in Netatalk 3.1.0 through 4.4.2 allows a remote authenticated attacker to obtain unauthorized access to data, modify data, or cause a denial of service...

8.8CVSS5.9AI score0.00032EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologiesadded 2026/05/21 12:0 a.m.5 views

PT-2026-42431

Name of the Vulnerable Software and Affected Versions Netatalk versions 2.0.0 through 4.4.2 Description An incorrect calculation in the hextoint macro occurs due to improper handling of uppercase characters. This allows a remote authenticated attacker to cause limited data modification by providi...

3.1CVSS5.8AI score0.00044EPSS
Exploits0References2
Rows per page
Query Builder