CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

EUVD•added 2026/04/16 6:31 p.m.•0 views

EUVD-2026-23272

A privilege escalation vulnerability in Microchip IStaX allows an authenticated low-privileged user to recover a shared per-device cookie secret from their own webstaxauth session cookie and forge a new cookie with administrative privileges.This issue affects IStaX before 2026.03...

8.7CVSS5.8AI score0.00054EPSS

Exploits0References2

NVD•added 2026/04/16 6:16 p.m.•1 views

CVE-2026-2336

8.7CVSS0.00054EPSS

Exploits0References1

Vulnrichment•added 2026/04/16 5:2 p.m.•1 views

CVE-2026-2336 Weak webstax_auth Cookie Authentication Allows Privilege Escalation

8.7CVSS5.8AI score0.00054EPSS

Exploits0References1

ATTACKERKB•added 2026/04/16 5:2 p.m.•0 views

CVE-2026-2336

8.7CVSS5.8AI score0.00054EPSS

Exploits0References2

Cvelist•added 2026/04/16 5:2 p.m.•25 views

CVE-2026-2336 Weak webstax_auth Cookie Authentication Allows Privilege Escalation

8.7CVSS0.00054EPSS

Exploits0References1

CVE•added 2026/04/16 5:2 p.m.•3 views

CVE-2026-2336

CVE-2026-2336 describes a privilege escalation in Microchip IStaX where an authenticated low-privilege user can extract the shared per-device cookie secret from their own webstax_auth session cookie and forge a new cookie with administrative privileges. Affected product: IStaX (before 2026.03). T...

8.7CVSS5.8AI score0.00054EPSS

Exploits0References1

Positive Technologies•added 2026/04/16 12:0 a.m.•2 views

PT-2026-33346

A privilege escalation vulnerability in Microchip IStaX allows an authenticated low-privileged user to recover a shared per-device cookie secret from their own webstax auth session cookie and forge a new cookie with administrative privileges.This issue affects IStaX before 2026.03...

8.7CVSS5.8AI score0.00054EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by