CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

52 matches found

RedhatCVE•added 2026/06/05 7:47 p.m.•8 views

CVE-2026-6220

A vulnerability was identified in HummerRisk up to 1.5.0. This vulnerability affects the function ServerService.addServer of the file ServerService.java of the component Video File Download URL Handler. Such manipulation of the argument streamIp leads to server-side request forgery. It is possibl...

5.8CVSS5.2AI score0.00218EPSS

Exploits0References1

EUVD•added 2026/04/14 12:31 a.m.•4 views

EUVD-2026-22120

5.8CVSS5.5AI score0.00218EPSS

Exploits0References5

NVD•added 2026/04/13 10:16 p.m.•3 views

CVE-2026-6220

5.8CVSS0.00218EPSS

Exploits0References4

ATTACKERKB•added 2026/04/13 9:0 p.m.•2 views

CVE-2026-6220

5.8CVSS5.5AI score0.00218EPSS

Exploits0References4

CVE•added 2026/04/13 9:0 p.m.•8 views

CVE-2026-6220

HummerRisk up to 1.5.0 is affected in ServerService.addServer (ServerService.java, Video File Download URL Handler). Manipulating the argument streamIp enables server-side request forgery; remote exploitation is possible and a public exploit exists. Vendor was contacted but did not respond. No re...

5.8CVSS5.5AI score0.00218EPSS

Exploits0References4

Positive Technologies•added 2026/04/13 12:0 a.m.•4 views

PT-2026-32531

5.8CVSS5.5AI score0.00218EPSS

Exploits0References7

CNNVD•added 2026/04/13 12:0 a.m.•3 views

HummerCloud HummerRisk 代码问题漏洞

HummerCloud HummerRisk is an open-source cloud-native security platform developed by HummerCloud Technology in China. It addresses security and governance issues in cloud-native environments in a non-invasive manner. Its core capabilities include security governance for hybrid clouds and...

5.8CVSS5.8AI score0.00218EPSS

Exploits0References4

RedhatCVE•added 2026/02/25 4:7 a.m.•6 views

CVE-2026-3066

A flaw has been found in HummerRisk up to 1.5.0. This vulnerability affects the function fixedCommand of the file hummer-common/hummer-common-core/src/main/java/com/hummer/common/core/utils/PlatformUtils.java of the component Cloud Compliance Scanning. Executing a manipulation can lead to command...

8.8CVSS5.3AI score0.09143EPSS

Exploits1References1

RedhatCVE•added 2026/02/25 4:7 a.m.•9 views

CVE-2026-3064

A security vulnerability has been detected in HummerRisk up to 1.5.0. Affected by this issue is some unknown functionality of the file ResourceCreateService.java of the component Cloud Task Scheduler. Such manipulation of the argument regionId leads to command injection. The attack may be launche...

8.8CVSS5.2AI score0.14382EPSS

Exploits1References1

RedhatCVE•added 2026/02/25 4:6 a.m.•7 views

CVE-2026-3065

A vulnerability was detected in HummerRisk up to 1.5.0. This affects the function CommandUtils.commonExecCmdWithResult of the file CloudTaskService.java of the component Cloud Task Dry-run. Performing a manipulation of the argument fileName results in command injection. Remote exploitation of the...

8.8CVSS5.2AI score0.24104EPSS

Exploits1References1

OSV•added 2026/02/24 4:15 a.m.•3 views

CVE-2026-3067

A vulnerability has been found in HummerRisk up to 1.5.0. This issue affects the function extractTarGZ/extractZip of the file hummer-common/hummer-common-core/src/main/java/com/hummer/common/core/utils/CommandUtils.java of the component Archive Extraction. The manipulation leads to path traversal...

8.8CVSS5.1AI score

Exploits0References4

NVD•added 2026/02/24 4:15 a.m.•5 views

CVE-2026-3066

8.8CVSS0.09143EPSS

Exploits1References4