Lucene search
+L

5446 matches found

RedhatCVE
RedhatCVE
added 2026/03/28 11:10 p.m.4 views

CVE-2026-32187

Microsoft Edge Chromium-based Defense in Depth Vulnerability...

4.2CVSS5.8AI score0.00041EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/03/27 10:22 p.m.22 views

AWS SDK for .NET: Improper escaping of special characters in CloudFront policy document construction

Summary This notification is related to the CloudFront signing utilities in the AWS SDK for .NET, which are used to generate Amazon CloudFront signed URLs and signed cookies. A defense-in-depth enhancement has been implemented to improve handling of special characters, such as double quotes and...

5.8AI score
Exploits0References2Affected Software2
EUVD
EUVD
added 2026/03/27 9:31 p.m.4 views

EUVD-2026-16813

Microsoft Edge Chromium-based Defense in Depth Vulnerability...

4.2CVSS5.8AI score0.00041EPSS
Exploits0References2
NVD
NVD
added 2026/03/27 9:17 p.m.7 views

CVE-2026-32187

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

0.00041EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2026/03/27 8:43 p.m.143 views

AWS SDK for Java 2.0: Improper Handling of Special Characters in CloudFront Signing Utilities

Summary This notification is related to the CloudFront signing utilities in the AWS SDK for Java v2, which are used to generate Amazon CloudFront signed URLs and signed cookies. A defense-in-depth enhancement has been implemented to improve handling of special characters, such as double quotes an...

5.8AI score
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/27 8:42 p.m.2 views

CVE-2026-32187

...

5.8AI score0.00041EPSS
Exploits0
Cvelist
Cvelist
added 2026/03/27 8:42 p.m.26 views

CVE-2026-32187

...

0.00041EPSS
Exploits0
CVE
CVE
added 2026/03/27 8:42 p.m.29 views

CVE-2026-32187

CVE-2026-32187 entry rejected/not used; this CVE ID is not an active vulnerability.

5.8AI score0.00041EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/03/27 8:42 p.m.2 views

CVE-2026-32187

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

5.7AI score0.00041EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2026/03/27 2:0 p.m.6 views

Microsoft Edge (Chromium-based) Defense in Depth Vulnerability - Rejected

...

5.8AI score0.00041EPSS
Exploits0
GitLab Advisory Database
GitLab Advisory Database
added 2026/03/27 12:0 a.m.10 views

AWS SDK for .NET: Improper escaping of special characters in CloudFront policy document construction

This notification is related to the CloudFront signing utilities in the AWS SDK for .NET, which are used to generate Amazon CloudFront signed URLs and signed cookies. A defense-in-depth enhancement has been implemented to improve handling of special characters, such as double quotes and...

5.7AI score
Exploits0References3Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2026/03/27 12:0 a.m.7 views

AWS SDK for .NET: Improper escaping of special characters in CloudFront policy document construction

This notification is related to the CloudFront signing utilities in the AWS SDK for .NET, which are used to generate Amazon CloudFront signed URLs and signed cookies. A defense-in-depth enhancement has been implemented to improve handling of special characters, such as double quotes and...

5.7AI score
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/03/26 3:19 p.m.6 views

CVE-2025-69783

A local attacker can bypass OpenEDR's 2.5.1.0 self-defense mechanism by renaming a malicious executable to match a trusted process name e.g., csrss.exe, edrsvc.exe, edrcon.exe. This allows unauthorized interaction with the OpenEDR kernel driver, granting access to privileged functionality such as...

7.8CVSS5.8AI score0.00157EPSS
Exploits1References1
Wired Threat Level
Wired Threat Level
added 2026/03/26 10:0 a.m.30 views

Anduril Wants to Own the Future of War Tech. Mishaps, Delays, and Challenges Abound

From drones to missiles to submarines, the $30.5 billion defense startup wants to transform how the tools of war are made. It’s not all going as planned...

5.8AI score
Exploits0
Circl
Circl
added 2026/03/26 3:0 a.m.4 views

CVE-2026-20112

creationtimestamp| type| source ---|---|--- 2026-03-26 03:00:10+00:00| seen|...

4.8CVSS5.8AI score0.00194EPSS
Exploits0References1
Circl
Circl
added 2026/03/26 3:0 a.m.5 views

CVE-2026-20104

creationtimestamp| type| source ---|---|--- 2026-03-26 03:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/cisco-ios-xe-multiple-vulnerabilities20260326 2026-03-26 03:00:10+00:00| seen|...

6.1CVSS5.8AI score0.00162EPSS
Exploits0References4
Trend Micro Simply Security
Trend Micro Simply Security
added 2026/03/26 12:0 a.m.4 views

Pawn Storm Campaign Deploys PRISMEX, Targets Government and Critical Infrastructure Entities

This blog discusses the steganography, cloud abuse, and email-based backdoors used against the Ukrainian defense supply chain in the latest Pawn Storm campaign that TrendAI™ Research observed and analyzed...

5.8AI score
Exploits0
EUVD
EUVD
added 2026/03/25 6:31 p.m.8 views

EUVD-2026-15428

A vulnerability in the Internet Key Exchange version 2 IKEv2 feature of Cisco IOS Software, Cisco IOS XE Software, Cisco Secure Firewall Adaptive Security Appliance ASA Software, and Cisco Secure Firewall Threat Defense FTD Software could allow an unauthenticated, remote attacker to trigger a...

8.6CVSS5.8AI score0.00354EPSS
Exploits0References2
Imperva Blog
Imperva Blog
added 2026/03/24 11:11 a.m.6 views

API Security for AI Agents: Why Protection Has Never Been More Important.

For years, a lot of risky APIs survived simply because they were hard to find. They weren’t documented. Only a handful of engineers knew the endpoints. And if an attacker wanted to abuse them, they had to spend real time reverse‑engineering traffic and guessing how things worked. That “security b...

5.9AI score
Exploits0
ICS
ICS
added 2026/03/24 6:0 a.m.18 views

Grassroots DICOM (GDCM)

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to send a specially crafted file, and when parsed, could result in a denial-of-service condition. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of...

8.7CVSS5.7AI score0.00358EPSS
Exploits0References13
Rows per page
Query Builder