CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9003 matches found

NVD•added 2026/05/04 6:16 p.m.•4 views

CVE-2026-42085

OpenC3 COSMOS provides the functionality needed to send commands to and receive data from one or more embedded systems. Prior to versions 6.10.5 and 7.0.0-rc3, OpenC3 COSMOS contains a design flaw in the savetoolconfig function that allows saving tool configuration files at arbitrary locations...

4.3CVSS0.00049EPSS

Exploits0References5

UbuntuCve•added 2026/04/23 1:16 p.m.•1 views

CVE-2025-66286

An API design flaw in WebKitGTK and WPE WebKit allows untrusted web content to unexpectedly perform IP connections, DNS lookups, and HTTP requests. Applications expect to use the WebPage::send-request signal handler to approve or reject all network requests. However, certain types of HTTP request...

4.7CVSS5.8AI score0.00033EPSS

Exploits0References1

RedhatCVE•added 2026/04/23 12:33 p.m.•2 views

CVE-2025-66286

4.7CVSS5.8AI score0.00033EPSS

Exploits0References4

EUVD•added 2026/03/31 9:31 p.m.•1 views

EUVD-2026-17585

The MS27102A Remote Spectrum Monitor is vulnerable to an authentication bypass that allows unauthorized users to access and manipulate its management interface. Because the device provides no mechanism to enable or configure authentication, the issue is inherent to its design rather than a...

9.3CVSS5.9AI score0.00076EPSS

Exploits0References2

Cvelist•added 2026/03/31 6:40 p.m.•19 views

CVE-2026-3356 Missing Authentication for Critical Function vulnerability in Anritsu Remote Spectrum Monitor

9.3CVSS0.00076EPSS

Exploits0References1

CVE•added 2026/03/31 6:40 p.m.•6 views

CVE-2026-3356

The CVE-2026-3356 entry concerns the MS27102A Remote Spectrum Monitor, a device that exposes an authentication bypass vulnerability. The providedConnected documents (Red Hat, ENISA EUVD, NVD/NVD-related, CISA ICS advisory, AttackersKB, CVE listing, and PT-Security) consistently describe a flaw in...

9.3CVSS5.9AI score0.00076EPSS

Exploits0References1

NVD•added 2026/03/31 2:16 p.m.•1 views

CVE-2026-30310

In its design for automatic terminal command execution, Sixth offers two options: Execute safe commands and Execute all commands. The description for the former states that commands determined by the model to be safe will be automatically executed, whereas if the model judges a command to be...

9.8CVSS0.00093EPSS

Exploits0References2

CNNVD•added 2026/03/31 12:0 a.m.•3 views

Sixth 安全漏洞

Sixth is an artificial intelligence code assistant developed by the Nigerian company Sixth. There is a security vulnerability in Sixth, which stems from its design, making it susceptible to prompt injection attacks, potentially leading to arbitrary command execution...

9.8CVSS6AI score0.00093EPSS

Exploits0References2

CNVD•added 2025/12/29 12:0 a.m.•0 views

NVIDIA Isaac Launchable Arbitrary Code Execution Vulnerability

NVIDIA Isaac Launchable is a one-click deployment GPU development environment designed to simplify the AI development process and accelerate experimentation and deployment. NVIDIA Isaac Launchable suffers from a security vulnerability that stems from improper design and can be exploited by remote...

9.8CVSS6AI score0.00047EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2011-2100

Malware in sbrugna...

9.3CVSS6.2AI score0.06056EPSS

Exploits0References6

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2019-6171

Malware in sbrugna...

6.1CVSS6.3AI score0.0024EPSS

Exploits1References2