Lucene search
K

2002 matches found

RedhatCVE
RedhatCVE
added 2026/03/27 10:51 p.m.10 views

CVE-2026-4346

The vulnerability affecting TL-WR850N v3 allows cleartext storage of administrative and Wi-Fi credentials in a region of the device’s flash memory while the serial interface remains enabled and protected by weak authentication. An attacker with physical access and the ability to connect to the...

6.8CVSS5.9AI score0.00124EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/27 6:27 p.m.4 views

CVE-2026-29180 Fleet's team maintainer can transfer hosts from any team via missing source team authorization

Fleet is open source device management software. Prior to 4.81.1, a broken access control vulnerability in Fleet's host transfer API allows a team maintainer to transfer hosts from any team into their own team, bypassing team isolation boundaries. Once transferred, the attacker gains full control...

7.1CVSS6AI score0.00315EPSS
Exploits0References1
OSV
OSV
added 2026/03/27 6:27 p.m.3 views

CVE-2026-29180 Fleet's team maintainer can transfer hosts from any team via missing source team authorization

Fleet is open source device management software. Prior to 4.81.1, a broken access control vulnerability in Fleet's host transfer API allows a team maintainer to transfer hosts from any team into their own team, bypassing team isolation boundaries. Once transferred, the attacker gains full control...

7.1CVSS6AI score0.00315EPSS
Exploits0References3
OSV
OSV
added 2026/03/27 12:51 a.m.4 views

MAL-2026-2248 Malicious code in shop-republik-ch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da3fe1a756db5b61e6883fb43ab2f27fd56333e302ad597c4bb9f1743b1f19b6 The package shop-republik-ch was found to contain malicious code. Source: ghsa-malware b68c5977e45306e58eda4d2345cb1ac0eba178c179064471f3327a30915e6d...

5.8AI score
Exploits0References1
CNNVD
CNNVD
added 2026/03/27 12:0 a.m.10 views

Fleet 安全漏洞

Fleet is Fleet Device Management open source a device management platform that supports a wide range of operating systems and devices to help IT and security teams with device management, vulnerability reporting, MDM and more. An access control error vulnerability exists in Fleet versions prior t...

8.8CVSS5.8AI score0.00315EPSS
Exploits0References2
NVD
NVD
added 2026/03/26 10:16 p.m.5 views

CVE-2026-4346

The vulnerability affecting TL-WR850N v3 allows cleartext storage of administrative and Wi-Fi credentials in a region of the device’s flash memory while the serial interface remains enabled and protected by weak authentication. An attacker with physical access and the ability to connect to the...

6.8CVSS0.00124EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/03/26 3:2 p.m.4 views

CVE-2026-32297

The Angeet ES3 KVM allows a remote, unauthenticated attacker to write arbitrary files, including configuration files or system binaries. Modified configuration files or system binaries could allow an attacker to take complete control of a vulnerable system...

9.3CVSS6.2AI score0.00527EPSS
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/03/26 12:52 a.m.8 views

Malicious code in validator-lut-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c9f447a3c02a6c7ea716862009fcf6853c8d52e05144fa78746cbdbfe3ef000 The package validator-lut-sdk was found to contain malicious code. Source: ghsa-malware...

5.8AI score
Exploits0References1
OSV
OSV
added 2026/03/26 12:52 a.m.4 views

MAL-2026-2216 Malicious code in @pumpfun-ipfs/sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 21604418f7961773b23e7b3544ca95874cba1432a87ae6d4127531e651133f78 The package @pumpfun-ipfs/sdk was found to contain malicious code. Source: ghsa-malware...

5.8AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/03/25 3:3 p.m.7 views

Malicious code in omaronsec (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7ff0bfae46cd199f9de68fa7a40d0f579cd8918783db054a2eb83c8cf047424f The package omaronsec was found to contain malicious code. Source: ghsa-malware 67e67c70590c02b44ced517d12ded441ebcd7e80617a6818d06ad836620910f6 Any...

5.8AI score
Exploits0References1
OSV
OSV
added 2026/03/25 3:5 a.m.10 views

MAL-2026-2166 Malicious code in @shennmine/baileys (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 117bf59d9266fc8bf77b63821d64778d3d9c7c57cd93c2c95a8b1718e879f14c The package @shennmine/baileys was found to contain malicious code. Source: ghsa-malware...

5.8AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/03/25 2:40 a.m.9 views

Malicious code in allergan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b647cee7f2efba83a3acb7f2a6216150570618d386d85a162caf08b4fabaeb1d The package allergan was found to contain malicious code. Source: ghsa-malware 39db4e96e2f99167f5914eb406fd2fe8d3adab2598b4872dbe5f0e228cad37e7 Any...

5.8AI score
Exploits0References1
OSV
OSV
added 2026/03/25 12:36 a.m.8 views

MAL-2026-2155 Malicious code in pino-pretty-log (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a2a9c035f47cbd6beb9e2f47299a689f13823a21eaef04fd6abfa9035dcb120e The package pino-pretty-log was found to contain malicious code. Source: ghsa-malware 5ddd0444ff8834bc42162fb1d88cf6d71f6044c2a636cde204484f654ce6589...

5.8AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/03/23 1:47 p.m.7 views

Malicious code in pulse-scroll-triggered-list-items (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5917623184677210f5a42bead660945379d7a3c1cabf055e011a2794a233d517 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.8AI score
Exploits0References1
CNNVD
CNNVD
added 2026/03/23 12:0 a.m.11 views

GeoVision GV Edge Recording Manager 安全漏洞

GeoVision GV Edge Recording Manager is a software developed by the Chinese company GeoVision, used for managing and monitoring video recording devices. Version 2.3.1 of GeoVision GV Edge Recording Manager contains a security vulnerability. This vulnerability stems from the execution of applicatio...

10CVSS5.9AI score0.00298EPSS
Exploits0References1
OSV
OSV
added 2026/03/22 6:26 p.m.9 views

MAL-2026-2073 Malicious code in @airtm/uuid-base32 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5843013e1c89122451c17ec535f73c4e36dc3596c32522dd9b03bbb68637c4f3 The package @airtm/uuid-base32 was found to contain malicious code. Source: ghsa-malware...

5.8AI score
Exploits0References4
OSV
OSV
added 2026/03/22 6:26 p.m.7 views

MAL-2026-2078 Malicious code in @emilgroup/task-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e4aef8ca2987206595d5c54a2df6265669bdb67ca99915bb763ac38f2d6a46d7 The package @emilgroup/task-sdk was found to contain malicious code. Source: ghsa-malware...

5.8AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/03/22 6:23 p.m.12 views

Malicious code in @emilgroup/setting-sdk-node (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd7001495cf0c7d9cbe60f2b406b90b4fc34d7a8fc8477c45780cefddf26e28b The package @emilgroup/setting-sdk-node was found to contain malicious code. Source: ghsa-malware...

5.8AI score
Exploits0References4
OSV
OSV
added 2026/03/22 6:14 p.m.5 views

MAL-2026-2054 Malicious code in @emilgroup/partner-portal-sdk-node (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 79a5c2bcdd0cc7a9c9c9a7b0ba777fad4241aa5fc60e34903bb138a44261c35b The package @emilgroup/partner-portal-sdk-node was found to contain malicious code. Source: ghsa-malware...

5.8AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/03/22 5:49 p.m.7 views

Malicious code in @emilgroup/auth-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b1a3b316a5288730ac37792c1fa0b0b17961a04a06250cb2c9a4d36acb3e117 The package @emilgroup/auth-sdk was found to contain malicious code. Source: ghsa-malware...

5.8AI score
Exploits0References4
Rows per page
Query Builder