CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2 days ago•5 views

CVE-2026-48682

CVE-2026-48682 affects FastNetMon Community Edition up to 1.2.9. The IPv4 packet parser can perform an out-of-bounds read in src/simple_packet_parser_ng.cpp after validating the header length. Specifically, it advances the pointer by 4 * IHL without validating that IHL >= 5 (RFC 791 minimum) o...

5.9AI score0.00017EPSS

ATTACKERKB•added 2 days ago•3 views

CVE-2026-48682

5.9AI score0.00017EPSS

Hacker One•added 4 days ago•5 views

curl: curl/libcurl 8.20.0 NOPROXY bypass via uppercase-hex IPv4 aliases leaks off-proxy Basic credentials to the configured proxy

Summary: curl/libcurl 8.20.0 fails to enforce CURLOPTNOPROXY, --noproxy, and NOPROXY consistently for uppercase-hex IPv4 aliases such as 0X7f.1 on glibc-based systems that accept these legacy numeric IPv4 forms. When a canonical IP literal is excluded from proxying, curl sends the canonical form...

5.8AI score

Exploits0

NVD•added 5 days ago•8 views

CVE-2026-10124

A vulnerability was determined in Shibby Tomato up to 1.28. Affected is the function ripzebrareadipv4 of the file /usr/sbin/ripd of the component Zserv Handler. Executing a manipulation can lead to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been...

9CVSS0.00041EPSS

CVE•added 5 days ago•9 views

CVE-2026-10124

CVE-2026-10124 affects Shibby Tomato up to version 1.28. The vulnerability targets the function rip_zebra_read_ipv4 in /usr/sbin/ripd (Zserv Handler) and can cause a stack-based buffer overflow via remote impact. Public exploit has been disclosed. The project is superseded by FreshTomato and appl...

9CVSS7.7AI score0.00041EPSS

Cvelist•added 5 days ago•30 views

CVE-2026-10124 Shibby Tomato Zserv ripd rip_zebra_read_ipv4 stack-based overflow

9CVSS0.00041EPSS

Snyk•added 6 days ago•2 views

Server-side Request Forgery (SSRF)

Overview axios is a promise-based HTTP client for the browser and Node.js. Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via the shouldBypassProxy function. An attacker can access internal or metadata endpoints by crafting request URLs in IPv4-mapped IPv6...

8.6CVSS5.8AI score

Exploits0References2

SUSE Linux•added 6 days ago•6 views

Security update for perl-Net-CIDR-Lite

This update for perl-Net-CIDR-Lite fixes the following issues CVE-2026-45190: improper validation of trailing newlines or non-ASCII digits can lead to IP ACL bypass bsc1264710. CVE-2026-45191: extraneous leading zeros in CIDR mask values can lead to IP ACL bypass bsc1264709. CVE-2026-40198: missi...

7.5CVSS5.8AI score0.00064EPSS

Exploits0References14

Positive Technologies•added 6 days ago•3 views

PT-2026-45067

Summary CC-Tweaked's HTTP API http.request, http.websocket blocks requests to private network ranges to prevent server-side request forgery SSRF. This protection can be bypassed on IPv6-capable servers using NAT64 well-known prefix addresses 64:ff9b::/96. An attacker who can execute Lua code can...

7.1CVSS6AI score

GitLab Advisory Database•added 6 days ago•3 views

CC-Tweaked has an SSRF Protection Bypass with NAT64

CC-Tweaked's HTTP API http.request, http.websocket blocks requests to private network ranges to prevent server-side request forgery SSRF. This protection can be bypassed on IPv6-capable servers using NAT64 well-known prefix addresses 64:ff9b::/96. An attacker who can execute Lua code can reach an...

GitLab Advisory Database•added 6 days ago•6 views

CC-Tweaked has an SSRF Protection Bypass with NAT64

GitLab Advisory Database•added 6 days ago•5 views

CC-Tweaked has an SSRF Protection Bypass with NAT64

GitLab Advisory Database•added 6 days ago•7 views

CC-Tweaked has an SSRF Protection Bypass with NAT64