CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

196 matches found

CVE-2026-5416

Due to the improper neutralization of special elements used in a name parameter a low privileged remote attacker can exploit a command injection vulnerability in the Managed Ethernet Switch, resulting in full system compromise...

8.8CVSS0.00771EPSS

Exploits0References1

EUVD•added 3 days ago•6 views

EUVD-2026-37042

8.8CVSS5.5AI score0.00771EPSS

Exploits0References1

CVE•added 3 days ago•7 views

CVE-2026-5416

The CVE-2026-5416 entry describes a command injection in a Managed Ethernet Switch caused by improper neutralization of special elements in a name parameter. It results in full system compromise with network-based, low-privilege, no-user-interaction exploitation (per CVSS 4.0/3.1 vectors). Connec...

8.8CVSS5.4AI score0.00771EPSS

Exploits0References1

Cvelist•added 3 days ago•24 views

CVE-2026-5416 Command Injection via name parameter

8.8CVSS0.00771EPSS

Exploits0References1

Debian CVE•added 2026/05/08 2:22 p.m.•5 views

CVE-2026-43468

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix deadlock between devlink lock and esw-wq esw-workqueue executes eswfunctionschangedeventhandler - eswvfschangedeventhandler and acquires the devlink lock. .eswitchmodeset acquires devlink lock in devlinknlpredoit -...

5.5CVSS5.7AI score0.00091EPSS

Exploits0

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Networks: Ethernet: Device: am65-cpsw-nuss: Fixed the skb size by taking into account skbsharedinfo. While transitioning from netdevallocip Align to buildskb, memory for the “skbsharedinfo” member of an “skb” was not allocated...

5.5CVSS5.2AI score0.00134EPSS

Exploits0References2

CNNVD•added 2026/04/16 12:0 a.m.•6 views

Microchip IStaX 安全漏洞

Microchip IStaX is a Ethernet switch software development platform developed by Microchip Corporation in the United States. Versions of Microchip IStaX prior to version 2026.03 contained security vulnerabilities. These vulnerabilities were caused by the exposure of the cookie key for shared...

8.7CVSS5.8AI score0.00202EPSS

Exploits0References1

CNNVD•added 2026/03/16 12:0 a.m.•3 views

Hereta ETH-IMC408M 跨站脚本漏洞

The Hereta ETH-IMC408M is an Ethernet switch device produced by the Hereta company in the United States. Versions of Hereta ETH-IMC408M prior to 1.0.15 contained a cross-site scripting vulnerability. This vulnerability stemmed from improper cleaning of the Device Name field, which could lead to...

5.4CVSS5.6AI score0.00138EPSS

Exploits0References3

OSV•added 2026/02/14 5:15 p.m.•3 views

UBUNTU-CVE-2026-23175

In the Linux kernel, the following vulnerability has been resolved: net: cpsw: Execute ndosetrxmode callback in a work queue Commit 1767bb2d47b7 "ipv6: mcast: Don't hold RTNL for IPV6ADDMEMBERSHIP and MCASTJOINGROUP." removed the RTNL lock for IPV6ADDMEMBERSHIP and MCASTJOINGROUP operations...

7CVSS5.8AI score0.00108EPSS

Exploits0References5

CNNVD•added 2025/12/09 12:0 a.m.•0 views

Phoenix Contact FL SWITCH 安全漏洞

The PHOENIX CONTACT FL SWITCH is an industrial grade Ethernet switch from PHOENIX CONTACT, Germany. A security vulnerability exists in Phoenix Contact FL SWITCH versions prior to 3.50, which originates from an undocumented UART port and could result in gaining root access...

6.8CVSS6.7AI score0.00198EPSS

Exploits0References1

CNNVD•added 2025/12/09 12:0 a.m.•3 views

PHOENIX CONTACT FL SWITCH 跨站脚本漏洞

PHOENIX CONTACT FL SWITCH is an industrial-grade Ethernet switch from PHOENIX CONTACT, Germany. A cross-site scripting vulnerability exists in PHOENIX CONTACT FL SWITCH versions prior to 3.50, which originates from a cross-site scripting attack that could result in modification of device...

7.1CVSS6AI score0.08236EPSS

Exploits0References1

CNNVD•added 2025/12/09 12:0 a.m.•3 views

PHOENIX CONTACT FL SWITCH 跨站脚本漏洞

The PHOENIX CONTACT FL SWITCH is an industrial grade Ethernet switch from PHOENIX CONTACT, Germany. A cross-site scripting vulnerability exists in Phoenix Contact FL SWITCH versions prior to 3.50, which stems from a cross-site scripting attack that could result in modification of device...

7.1CVSS6AI score0.00548EPSS

Exploits0References1

AstraLinux•added 2025/11/01 10:54 a.m.•3 views

Astra Linux - уязвимость в linux-6.12

In the Linux kernel, the following vulnerability has been resolved: net: dsa: b53: do not enable EEE on bcm63xx BCM63xx internal switches do not support EEE, but provide multiple RGMII ports where external PHYs may be connected. If one of these PHYs are EEE capable, we may try to enable EEE for t...

5.5CVSS6.6AI score0.00154EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•17 views

EUVD-2020-8212

Malware in sbrugna...

6.1CVSS6.3AI score0.0068EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2006-6701

Malware in sbrugna...

7.5CVSS6.4AI score0.01201EPSS

Exploits0References2