CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2026/05/28 8:32 p.m.•6 views

CVE-2026-9646 ScadaBR Unauthenticated Reflected Cross-Site Scripting

A reflected cross-site scripting issue exists in URL handling...

6.1CVSS5.6AI score0.00031EPSS

CNNVD•added 2026/03/25 12:0 a.m.•4 views

Apple macOS 安全漏洞

Apple macOS is a proprietary operating system developed by the American company Apple for Mac computers. Vulnerabilities exist in versions of Apple macOS such as Sequoia 15.7.5, Sonoma 14.8.5, and Tahoe 26.4. These vulnerabilities stem from improper handling of symbolic links, which may allow...

5.5CVSS5.8AI score0.00011EPSS

Exploits0References3

CNNVD•added 2026/03/25 12:0 a.m.•3 views

Apple多款产品安全漏洞

Apple iOS, among others, are products of the American company Apple. Apple iOS is an operating system developed for mobile devices. Apple macOS is a specialized operating system designed for Mac computers. Apple iPadOS is an operating system for iPad tablets. Several of Apple’s products have...

5.5CVSS5.8AI score0.00012EPSS

Exploits0References7

OSV•added 2026/03/14 8:49 a.m.•2 views

BIT-PYTHON-MIN-2025-13462 tarfile: Skip DIRTYPE normalization during GNU LONGNAME/LONGLINK handling

The "tarfile" module would still apply normalization of AREGTYPE \x00 blocks to DIRTYPE, even while processing a multi-block member such as GNUTYPELONGNAME or GNUTYPELONGLINK. This could result in a crafted tar archive being misinterpreted by the tarfile module compared to other implementations...

9.8CVSS5.8AI score0.0002EPSS

Exploits0References7

NVD•added 2026/03/11 10:16 p.m.•0 views

CVE-2026-32117

The grafanacubism-panel plugin allows use of cubism.js in Grafana. In 0.1.2 and earlier, the panel's zoom-link handler passes a dashboard-editor-supplied URL directly to window.location.assign / window.open with no scheme validation. An attacker with dashboard Editor privileges can set the link t...

7.6CVSS0.00016EPSS

RedhatCVE•added 2026/03/07 1:44 a.m.•2 views

CVE-2026-28721

Local privilege escalation due to improper soft link handling. The following products are affected: Acronis Cyber Protect 17 Windows before build 41186...

7.3CVSS7.1AI score0.00007EPSS

EUVD•added 2026/03/06 12:31 a.m.•1 views

EUVD-2026-9956

Local privilege escalation due to improper soft link handling. The following products are affected: Acronis Cyber Protect 17 Windows before build 41186...

EUVD•added 2026/03/06 12:31 a.m.•2 views

EUVD-2026-9957

Local privilege escalation due to improper soft link handling. The following products are affected: Acronis Cyber Protect 17 Windows before build 41186...

OSV•added 2026/03/06 12:16 a.m.•2 views

CVE-2026-28721

Local privilege escalation due to improper soft link handling. The following products are affected: Acronis Cyber Protect 17 Windows before build 41186...

7.3CVSS5.8AI score0.00007EPSS

OSV•added 2026/03/06 12:16 a.m.•2 views

CVE-2026-28722

Local privilege escalation due to improper soft link handling. The following products are affected: Acronis Cyber Protect 17 Windows before build 41186...

7.3CVSS5.8AI score0.00007EPSS

NVD•added 2026/03/06 12:16 a.m.•3 views

CVE-2026-28721

Local privilege escalation due to improper soft link handling. The following products are affected: Acronis Cyber Protect 17 Windows before build 41186...

NVD•added 2026/03/06 12:16 a.m.•3 views

CVE-2026-28722

Local privilege escalation due to improper soft link handling. The following products are affected: Acronis Cyber Protect 17 Windows before build 41186...

ATTACKERKB•added 2026/03/05 11:55 p.m.•3 views

CVE-2026-28722

Local privilege escalation due to improper soft link handling. The following products are affected: Acronis Cyber Protect 17 Windows before build 41186...

CVE•added 2026/03/05 11:55 p.m.•6 views

CVE-2026-28722

CVE-2026-28722 : Local privilege escalation in Acronis Cyber Protect 17 (Windows) prior to build 41186 due to improper soft link handling . Affected component/condition: local context with low privileges required and user interaction. CVSSv3.0 metrics indicate a high impact (C/H, I/H, A/H) with L...

Exploits0References1Affected Software1

Cvelist•added 2026/03/05 11:55 p.m.•24 views

CVE-2026-28722

Local privilege escalation due to improper soft link handling. The following products are affected: Acronis Cyber Protect 17 Windows before build 41186...

Cvelist•added 2026/03/05 11:55 p.m.•29 views

CVE-2026-28721

Local privilege escalation due to improper soft link handling. The following products are affected: Acronis Cyber Protect 17 Windows before build 41186...

ATTACKERKB•added 2026/03/05 11:55 p.m.•2 views

CVE-2026-28721

Local privilege escalation due to improper soft link handling. The following products are affected: Acronis Cyber Protect 17 Windows before build 41186...

CVE•added 2026/03/05 11:55 p.m.•4 views

CVE-2026-28721

CVE-2026-28721 affects Acronis Cyber Protect 17 (Windows) before build 41186. It describes a local privilege escalation caused by improper soft link handling. Reported CVSSv3.0 metrics indicate a High impact with Local attack vector, Privileges Required: Low, User Interaction: Required, and high ...

Exploits0References1Affected Software1

Vulnrichment•added 2026/03/05 11:55 p.m.•1 views

CVE-2026-28721

Local privilege escalation due to improper soft link handling. The following products are affected: Acronis Cyber Protect 17 Windows before build 41186...

7.3CVSS5.8AI score0.00007EPSS