CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

ATTACKERKB•added yesterday•4 views

CVE-2026-4035

9.1CVSS7.6AI score0.00278EPSS

Exploits0References3

CVE•added yesterday•10 views

CVE-2026-4035

CVE-2026-4035 affects mlflow/mlflow versions before 3.11.0. The API for AI Gateway secrets allows the api_key field to contain $ENV_VAR references, which are resolved against the MLflow server environment at runtime. Attackers can exfiltrate server-side environment credentials (e.g., AWS_ACCESS_K...

9.1CVSS7.6AI score0.00278EPSS

RedhatCVE•added 2 days ago•5 views

CVE-2026-44709

pamusb provides hardware authentication for Linux using ordinary removable media. Prior to 0.8.7, pamusb-pinentry reads the PINENTRYFALLBACKAPP environment variable and executes it directly without any validation. Any process that can set environment variables before pamusb-pinentry is invoked ca...

7.8CVSS6AI score0.00023EPSS

Snyk•added 4 days ago•1 views

Malicious Package

Overview @cloudplatform-single-spa/svp-draas is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization an...

9.8CVSS5.9AI score

Snyk•added 4 days ago•1 views

Malicious Package

Overview @cloudplatform-single-spa/svp-gitaas is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization a...

9.8CVSS5.9AI score

Tenable Nessus•added 5 days ago•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-44463

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Zed is a code editor. Prior to 0.229.0, Zed's terminal tool permission system can be bypassed by prepending environment variable assignments to allowlisted...

Github Security Blog•added 6 days ago•18 views

Exploits1References2

PraisonAI call server exposes unauthenticated agent listing, invocation, and deletion when CALL_SERVER_TOKEN is unset

Summary PraisonAI's call server exposes a network-facing agent control API without authentication when CALLSERVERTOKEN is not configured. The affected component is the praisonai.api.agentinvoke router as mounted by praisonai.api.call. The authentication helper verifytoken fails open when...

5.8AI score

Exploits0References2Affected Software1

OSV•added last week•2 views

UBUNTU-CVE-2026-44461

Zed is a code editor. Prior to 0.227.1, Zed builds SSH/WSL remote commands as a shell command string that starts with exec env ..., but environment variable keys are inserted without shell quoting or validation. If an attacker can control an environment variable key for example via project termin...

8.6CVSS6.2AI score0.00018EPSS

Exploits1References3

CVE•added last week•6 views

CVE-2026-44463

Vulnerability summary: Zed code editor before 0.229.0 has a bypass in its terminal tool permission system. Attackers can prepend environment variable assignments to allowlisted commands (e.g., PAGER), hijacking program behavior to execute arbitrary code. Impact: potential remote code execution on...

Exploits1References1Affected Software1

Cvelist•added last week•22 views

CVE-2026-44463 Zed: Allowlist Bypass via Environment Variable Injection in Terminal Tool Permissions

Zed is a code editor. Prior to 0.229.0, Zed's terminal tool permission system can be bypassed by prepending environment variable assignments to allowlisted commands, hijacking program behavior e.g., PAGER to execute arbitrary code. This vulnerability is fixed in 0.229.0...

8.6CVSS0.00025EPSS

EUVD•added last week•4 views

EUVD-2026-32939

Vulnrichment•added last week•3 views

CVE-2026-44463 Zed: Allowlist Bypass via Environment Variable Injection in Terminal Tool Permissions

EUVD•added last week•5 views

EUVD-2026-32936

8.6CVSS6.2AI score0.00018EPSS

OSSF Malicious Packages•added 2026/05/28 12:0 a.m.•11 views

Malicious code in @cloudplatform-single-spa/enterprise (npm)

Part of a dependency confusion attack campaign targeting the @cloudplatform-single-spa and @mlspace npm scopes. The attacker npm user mr.4nd3r50n published 139 scoped packages at the inflated version 99.99.99, which resolves ahead of any private registry version via npm's default version...

5.8AI score

NVD•added 2026/05/27 9:16 p.m.•10 views

CVE-2026-44713

pamusb provides hardware authentication for Linux using ordinary removable media. Prior to 0.8.7, src/tmux.c reads the user's $TMUX environment variable, splits it on commas, and interpolates the socket-path component directly into a shell command passed to popen. Because the value is placed insi...

8.8CVSS0.00023EPSS

CVE•added 2026/05/27 8:20 p.m.•10 views

CVE-2026-44709

CVE-2026-44709 affects pam_usb: prior to version 0.8.7, the pamusb-pinentry component reads the PINENTRY_FALLBACK_APP environment variable and executes it directly without validation. Any process that can set environment variables before pamusb-pinentry runs can point PINENTRY_FALLBACK_APP to an ...

7.8CVSS6AI score0.00023EPSS

Vulnrichment•added 2026/05/27 8:20 p.m.•2 views

CVE-2026-44709 pam_usb: PINENTRY_FALLBACK_APP environment variable allows arbitrary command execution

7.8CVSS6AI score0.00023EPSS

Cvelist•added 2026/05/27 8:20 p.m.•35 views

CVE-2026-44709 pam_usb: PINENTRY_FALLBACK_APP environment variable allows arbitrary command execution

7.8CVSS0.00023EPSS