Lucene search
K

2211 matches found

EUVD
EUVD
added 2026/05/12 6:30 p.m.15 views

EUVD-2026-29690

External control of file name or path in Microsoft Edge Chromium-based allows an unauthorized attacker to disclose information over a network...

7.4CVSS5.8AI score0.00652EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/12 6:30 p.m.12 views

EUVD-2026-29678

External control of file name or path in Microsoft Office Word allows an unauthorized attacker to disclose information over a network...

4.3CVSS5.8AI score0.0062EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/12 6:30 p.m.12 views

EUVD-2026-29652

External control of file name or path in SQL Server allows an authorized attacker to execute code over a network...

8.8CVSS6AI score0.00555EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/12 6:30 p.m.8 views

EUVD-2026-29574

External control of file name or path in Azure Monitor Agent allows an authorized attacker to elevate privileges locally...

7.8CVSS5.8AI score0.00285EPSS
Exploits0References2
NVD
NVD
added 2026/05/12 6:17 p.m.19 views

CVE-2026-41107

External control of file name or path in Microsoft Edge Chromium-based allows an unauthorized attacker to disclose information over a network...

7.4CVSS0.00652EPSS
Exploits0References1
NVD
NVD
added 2026/05/12 6:17 p.m.10 views

CVE-2026-40421

Files or directories accessible to external parties in Microsoft Office Word allows an unauthorized attacker to disclose information locally...

4.3CVSS0.0062EPSS
Exploits0References1
NVD
NVD
added 2026/05/12 6:17 p.m.8 views

CVE-2026-41088

Access of resource using incompatible type 'type confusion' in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00319EPSS
Exploits0References1
NVD
NVD
added 2026/05/12 6:17 p.m.9 views

CVE-2026-32204

External control of file name or path in Azure Monitor Agent allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00285EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/12 4:59 p.m.13 views

CVE-2026-40370

External control of file name or path in SQL Server allows an authorized attacker to execute code over a network...

8.8CVSS6AI score0.00555EPSS
Exploits0References2Affected Software10
ATTACKERKB
ATTACKERKB
added 2026/05/12 4:59 p.m.6 views

CVE-2026-41107

External control of file name or path in Microsoft Edge Chromium-based allows an unauthorized attacker to disclose information over a network...

7.4CVSS5.8AI score0.00652EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/12 4:58 p.m.7 views

CVE-2026-41088

Access of resource using incompatible type 'type confusion' in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally...

7.8CVSS5.8AI score0.00319EPSS
Exploits0References2Affected Software10
EUVD
EUVD
added 2026/05/12 3:31 p.m.9 views

EUVD-2026-29487

External control of a file name in Ivanti Xtraction before version 2026.2 allows a remote authenticated attacker to read sensitive files and write arbitrary HTML files to a web directory, leading to information disclosure and possible client-side attacks...

9.6CVSS5.9AI score0.00869EPSS
Exploits0References2
NVD
NVD
added 2026/05/12 3:16 p.m.16 views

CVE-2026-8043

External control of a file name in Ivanti Xtraction before version 2026.2 allows a remote authenticated attacker to read sensitive files and write arbitrary HTML files to a web directory, leading to information disclosure and possible client-side attacks...

9.6CVSS0.00869EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/12 2:11 p.m.8 views

CVE-2026-8043

External control of a file name in Ivanti Xtraction before version 2026.2 allows a remote authenticated attacker to read sensitive files and write arbitrary HTML files to a web directory, leading to information disclosure and possible client-side attacks...

9.6CVSS5.9AI score0.00869EPSS
Exploits0References2
CVE
CVE
added 2026/05/12 2:11 p.m.30 views

CVE-2026-8043

Ivanti Xtraction is affected prior to version 2026.2 by CVE-2026-8043 due to external control of a file name. An authenticated remote attacker can read sensitive files and write arbitrary HTML files to a web directory, enabling information disclosure and potential client-side attacks. The vulnera...

9.6CVSS5.9AI score0.00869EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/12 2:11 p.m.9 views

CVE-2026-8043

External control of a file name in Ivanti Xtraction before version 2026.2 allows a remote authenticated attacker to read sensitive files and write arbitrary HTML files to a web directory, leading to information disclosure and possible client-side attacks...

9.6CVSS5.9AI score0.00869EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/12 2:11 p.m.31 views

CVE-2026-8043

External control of a file name in Ivanti Xtraction before version 2026.2 allows a remote authenticated attacker to read sensitive files and write arbitrary HTML files to a web directory, leading to information disclosure and possible client-side attacks...

9.6CVSS0.00869EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2026/05/12 2:0 p.m.12 views

SQL Server Remote Code Execution Vulnerability

External control of file name or path in SQL Server allows an authorized attacker to execute code over a network...

8.8CVSS6AI score0.00555EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/05/12 2:0 p.m.10 views

Microsoft Word Information Disclosure Vulnerability

Files or directories accessible to external parties in Microsoft Office Word allows an unauthorized attacker to disclose information locally...

4.3CVSS5.8AI score0.0062EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/05/12 2:0 p.m.9 views

Azure Monitor Agent Elevation of Privilege Vulnerability

External control of file name or path in Azure Monitor Agent allows an authorized attacker to elevate privileges locally...

7.8CVSS5.8AI score0.00285EPSS
Exploits0
Rows per page
Query Builder