Lucene search
K

833 matches found

NVD
NVD
added yesterday3 views

CVE-2026-57412

Missing Authorization vulnerability in Codemenschen Gift Vouchers gift-voucher allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Gift Vouchers: from n/a through = 4.6.9...

6.5CVSS0.00332EPSS
Exploits0References1
NVD
NVD
added last week9 views

CVE-2026-13199

EEPROM firmware on Raspberry Pi 5 and Compute Module 5 devices produced non-random KASLR and RNG seed values. This resulted in consistent kernel addresses across boots and devices, potentially making it easier to exploit other vulnerabilities. Additionally, the low-quality RNG seed may affect the...

5.1CVSS0.00114EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added last week7 views

CVE-2026-13199

EEPROM firmware on Raspberry Pi 5 and Compute Module 5 devices produced non-random KASLR and RNG seed values. This resulted in consistent kernel addresses across boots and devices, potentially making it easier to exploit other vulnerabilities. Additionally, the low-quality RNG seed may affect the...

5.1CVSS5.9AI score0.00114EPSS
Exploits0References3
CVE
CVE
added 2026/06/09 6:52 a.m.24 views

CVE-2026-41986

Technical details are not publicly available in the provided documents. Monitor for updates.

2.4CVSS5.4AI score0.0011EPSS
Exploits0References2
CVE
CVE
added 2026/06/09 3:47 a.m.32 views

CVE-2026-41975

CVE-2026-41975 concerns a permission management vulnerability in the network management module. The available data indicate a local attack vector with high attack complexity and requires user interaction, but privileges are reported as LOW. The projected impact includes both confidentiality and a...

6.3CVSS5.5AI score0.00067EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/05 7:42 p.m.9 views

CVE-2025-52613

HCL BigFix Service Management SM is affected by use of a vulnerable WSGI Server was identified. Deploying an outdated or insecure WSGI server may expose the application to known security weaknesses, potentially increasing the risk of exploitation and unauthorized access...

8.8CVSS5.5AI score0.00234EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:37 p.m.11 views

CVE-2026-41969

Permission control vulnerability in the projection module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...

6.2CVSS5.4AI score0.00096EPSS
Exploits0References1
Redos
Redos
added 2026/06/05 12:0 a.m.9 views

ROS-20260605-73-0012

The vulnerability in ImageMagick is related to insufficient control over resources during its existence. Exploiting this vulnerability can allow an attacker to cause a service failure...

7.5CVSS5.4AI score0.00301EPSS
Exploits0
CVE
CVE
added 2026/06/04 6:35 a.m.25 views

CVE-2026-49204

Technical details about CVE-2026-49204 are not publicly available in the provided documents; monitor for updates.

6.9CVSS5.8AI score0.00159EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/04 6:35 a.m.8 views

CVE-2026-49204 Hard-coded AWS Cognito Testing Accounts

Leftover debug modules contain fixed credentials for internal AWS Cognito test sandboxes, risking asset exploitation...

6.9CVSS5.8AI score0.00159EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/04 12:0 a.m.10 views

Acer M6E 安全漏洞

The Acer M6E is a portable 5G mobile hotspot device from Acer, a company based in Taiwan, China. The Acer M6E has a security vulnerability, which stems from the legacy debugging module containing fixed credentials from the AWS Cognito test sandbox. This vulnerability could potentially lead to...

6.9CVSS5.3AI score0.00159EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.8 views

BlenderMCP 安全漏洞

BlenderMCP is a 3D modeling control tool developed by ahujasid that connects Blender with AI. BlenderMCP has a security vulnerability, which stems from the operation of the Open function in the file src/blendermcp/server.py regarding the parameter inputimageurl, potentially leading to exploitatio...

5.3CVSS5.3AI score0.00248EPSS
Exploits0References8
NVD
NVD
added 2026/05/31 4:16 a.m.16 views

CVE-2026-10164

A vulnerability was found in Edimax BR-6478AC 1.23. Impacted is the function formUSBFolder of the file /goform/formUSBFolder of the component POST Request Handler. The manipulation of the argument ShareName/SelectName results in buffer overflow. The attack can be executed remotely. The exploit ha...

9CVSS0.00463EPSS
Exploits0References4
Redos
Redos
added 2026/05/29 12:0 a.m.15 views

ROS-20260529-73-0021

The vulnerability in opensearch relates to the use of a name with an incorrect link. Exploiting this vulnerability could allow a perpetrator to cause a service failure...

5.8AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/25 12:0 a.m.17 views

PT-2026-43127

Missing Authorization vulnerability in Nikki Blight QR Redirector allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects QR Redirector: from n/a through 2.0.3...

4.3CVSS5.8AI score0.002EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/25 12:0 a.m.10 views

Apache Syncope 安全漏洞

Apache Syncope is the United States Apache Apache Foundation's set of open source digital identity management system for use in enterprise environments. The system supports identity management, role configuration, and more. A security vulnerability exists in Apache Syncope versions 3.0 through...

4.9CVSS5.8AI score0.00436EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2026/05/25 12:0 a.m.4 views

The vulnerability of the minimatch library on the Node.js software platform, which allows a hacker to cause a service failure.

The vulnerability of the minimatch library on the Node.js software platform is related to its algorithmic complexity. Exploiting this vulnerability could allow a malicious actor to cause service failures...

7.8CVSS5.8AI score0.00517EPSS
Exploits1References7Affected Software28
NVD
NVD
added 2026/05/20 12:16 p.m.30 views

CVE-2025-31973

HCL BigFix Service Management SM is susceptible to a Configuration – 'Insecure Use of Base Image Version'. Using outdated or insecure base images may introduce known vulnerabilities, potentially increasing the risk of exploitation in the application environment...

9.8CVSS0.00178EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/20 11:25 a.m.11 views

EUVD-2025-209905

HCL BigFix Service Management SM is susceptible to a Configuration – 'Insecure Use of Base Image Version'. Using outdated or insecure base images may introduce known vulnerabilities, potentially increasing the risk of exploitation in the application environment...

9.8CVSS5.8AI score0.00178EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/19 12:30 p.m.10 views

CVE-2026-8975 Memory safety bugs fixed in Firefox ESR 115.36, Firefox ESR 140.11 and Firefox 151

Memory safety bugs present in Firefox ESR 115.35, Firefox ESR 140.10 and Firefox 150. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 151, Firefox...

6AI score0.00429EPSS
Exploits0References6
Rows per page
Query Builder