Lucene search
K

8456 matches found

CVE
CVE
added 2026/05/27 12:42 p.m.15 views

CVE-2026-35090

CVE-2026-35090 describes an authentication bypass in Slican telephone exchanges, allowing an unauthenticated attacker to remotely manage the control panel by dialing a specific caller ID. The issue enables bypass of admin authentication and full access to the service protocol and configuration pa...

9.3CVSS5.9AI score0.00625EPSS
Exploits0References1
CVE
CVE
added 2026/05/27 12:42 p.m.15 views

CVE-2026-35089

Slican telephone exchanges expose admin credentials because the secure key is generated predictably from exchange properties without authentication. CVE-2026-35089 (and CVE-2026-35087) describe an unauthenticated path to deduce the secure key and gain admin access. Remediations (per affected entr...

8.7CVSS5.8AI score0.00589EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/27 12:42 p.m.39 views

CVE-2026-35089 Use of Weak Credentials in Slican telephone exchanges

In Slican telephone exchanges secure key is generated in a predictable manner using properties of the telephone exchange which can be obtained without authentication. An unauthenticated attacker can deduce the secure key and obtain admin credentials. This issue was fixed in versions below: - IPx...

8.7CVSS0.00589EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/27 12:42 p.m.9 views

CVE-2026-35089 Use of Weak Credentials in Slican telephone exchanges

In Slican telephone exchanges secure key is generated in a predictable manner using properties of the telephone exchange which can be obtained without authentication. An unauthenticated attacker can deduce the secure key and obtain admin credentials. This issue was fixed in versions below: - IPx...

8.7CVSS5.8AI score0.00589EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/27 12:42 p.m.7 views

CVE-2026-35087 Authentication Bypass in Slican telephone exchanges

Slican telephone exchanges allow administrative protocol authentication bypass. An attacker can bypass the need to enter login credentials by executing the appropriate command. This issue was fixed in versions below: - NCP: version 1.24.0250 - IPx series: version 6.61.0040 - CCT-1668: version...

9.3CVSS5.8AI score0.00662EPSS
Exploits0References1
CVE
CVE
added 2026/05/27 12:42 p.m.22 views

CVE-2026-35087

CVE-2026-35087 affects Slican telephone exchanges. Affected components include NCP (fixed in 1.24.0250), IPx series (6.61.0040), CCT-1668 (6.56.0430), MAC-6400 (6.56.0430), and CXS-0424 (6.30.0510). The root issue is an administrative protocol authentication bypass, enabling an attacker to bypass...

9.3CVSS5.8AI score0.00662EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/27 12:42 p.m.40 views

CVE-2026-35087 Authentication Bypass in Slican telephone exchanges

Slican telephone exchanges allow administrative protocol authentication bypass. An attacker can bypass the need to enter login credentials by executing the appropriate command. This issue was fixed in versions below: - NCP: version 1.24.0250 - IPx series: version 6.61.0040 - CCT-1668: version...

9.3CVSS0.00662EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/27 12:39 p.m.13 views

CVE-2026-45838

A flaw was found in the Linux kernel. Specifically, within the Berkeley Packet Filter BPF component, an error in the cgroupstoragegetnextkey function's end-of-list detection mechanism can cause the system to read from an invalid memory location. This incorrect handling may lead to internal map...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References4
CVE
CVE
added 2026/05/27 12:18 p.m.21 views

CVE-2026-45985

CVE-2026-45985 affects the Linux kernel/ext4: during within-EOF direct I/O and writeback with dioread_nolock, unwritten extents could be converted incorrectly when splitting before submitting I/O, potentially exposing stale data. Root cause: EXT4_GET_BLOCKS_CONVERT was set during ext4_split_conve...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2026/05/27 12:18 p.m.39 views

CVE-2026-45984 gfs2: Fix use-after-free in iomap inline data write path

In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix use-after-free in iomap inline data write path The inline data buffer head dibh is being released prematurely in gfs2iomapbegin via releasemetapath while iomap-inlinedata still points to dibh-bdata. This causes a...

7.8CVSS0.00238EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/05/27 12:18 p.m.36 views

CVE-2026-45974 btrfs: fix invalid leaf access in btrfs_quota_enable() if ref key not found

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix invalid leaf access in btrfsquotaenable if ref key not found If btrfssearchslotforread returns 1, it means we did not find any key greater than or equals to the key we asked for, meaning we have reached the end of the...

0.00128EPSS
Exploits0References8
CVE
CVE
added 2026/05/27 12:17 p.m.21 views

CVE-2026-45924

Summary: CVE-2026-45924 affects ksmbd in the Linux kernel. The vulnerability arises because ksmbd_vfs_kern_path_end_removing() is not called on certain error paths, leaving inode locks and references unbalanced after a prior ksmbd_vfs_kern_path_start_removing(). This can cause potential deadlocks...

5.5CVSS5.8AI score0.0012EPSS
Exploits0References7Affected Software1
NVD
NVD
added 2026/05/27 11:16 a.m.18 views

CVE-2026-45843

In the Linux kernel, the following vulnerability has been resolved: slip: bound decode reads against the compressed packet length slhcuncompress parses a VJ-compressed TCP header by advancing a pointer through the packet via decode and pull16. Neither helper bounds-checks against isize, and decod...

8.2CVSS0.00278EPSS
Exploits0References8
NVD
NVD
added 2026/05/27 11:16 a.m.12 views

CVE-2026-45838

In the Linux kernel, the following vulnerability has been resolved: bpf: fix end-of-list detection in cgroupstoragegetnextkey listnextentry never returns NULL -- when the current element is the last entry it wraps to the list head via containerof. The subsequent NULL check is therefore dead code...

5.5CVSS0.00114EPSS
Exploits0References8
OSV
OSV
added 2026/05/27 11:16 a.m.3 views

UBUNTU-CVE-2026-45838

In the Linux kernel, the following vulnerability has been resolved: bpf: fix end-of-list detection in cgroupstoragegetnextkey listnextentry never returns NULL -- when the current element is the last entry it wraps to the list head via containerof. The subsequent NULL check is therefore dead code...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/27 9:24 a.m.37 views

CVE-2026-45843 slip: bound decode() reads against the compressed packet length

In the Linux kernel, the following vulnerability has been resolved: slip: bound decode reads against the compressed packet length slhcuncompress parses a VJ-compressed TCP header by advancing a pointer through the packet via decode and pull16. Neither helper bounds-checks against isize, and decod...

8.2CVSS0.00278EPSS
Exploits0References8
EUVD
EUVD
added 2026/05/27 9:24 a.m.23 views

EUVD-2026-32169

In the Linux kernel, the following vulnerability has been resolved: slip: bound decode reads against the compressed packet length slhcuncompress parses a VJ-compressed TCP header by advancing a pointer through the packet via decode and pull16. Neither helper bounds-checks against isize, and decod...

5.8AI score0.00278EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/27 9:24 a.m.7 views

CVE-2026-45843

In the Linux kernel, the following vulnerability has been resolved: slip: bound decode reads against the compressed packet length slhcuncompress parses a VJ-compressed TCP header by advancing a pointer through the packet via decode and pull16. Neither helper bounds-checks against isize, and decod...

5.8AI score0.00278EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2026/05/27 9:24 a.m.31 views

CVE-2026-45838

CVE-2026-45838 – Linux kernel : The vulnerability arises in BPF handling for cgroup_storage_get_next_key, where list_next_entry() can wrap to the list head and a subsequent NULL check becomes dead code, causing get_next_key() to read storage->key from a bogus pointer and copy it to userspace. ...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References8Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/27 9:24 a.m.5 views

CVE-2026-45838

In the Linux kernel, the following vulnerability has been resolved: bpf: fix end-of-list detection in cgroupstoragegetnextkey listnextentry never returns NULL -- when the current element is the last entry it wraps to the list head via containerof. The subsequent NULL check is therefore dead code...

5.8AI score0.00114EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder