Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

197 matches found

GithubExploit
GithubExploitadded 2026/02/18 8:36 a.m.160 views

Exploit for CVE-2026-26221

📡 Hyland OnBase Timer Service Unauthenticated RCE Mohamm...

10CVSS7.1AI score0.01121EPSS
Exploits1
NVD
NVDadded 2026/02/13 9:16 p.m.11 views

CVE-2026-26333

Calero VeraSMART versions prior to 2022 R1 expose an unauthenticated .NET Remoting HTTP service on TCP port 8001. The service publishes default ObjectURIs including EndeavorServer.rem and RemoteFileReceiver.rem and permits the use of SOAP and binary formatters with TypeFilterLevel set to Full. An...

10CVSS0.00929EPSS
Exploits1References2
OSV
OSVadded 2026/02/13 9:16 p.m.7 views

CVE-2026-26333

Calero VeraSMART versions prior to 2022 R1 expose an unauthenticated .NET Remoting HTTP service on TCP port 8001. The service publishes default ObjectURIs including EndeavorServer.rem and RemoteFileReceiver.rem and permits the use of SOAP and binary formatters with TypeFilterLevel set to Full. An...

9.8CVSS6.6AI score0.00929EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2026/02/13 8:51 p.m.9 views

CVE-2026-26333 Calero VeraSMART < 2022 R1 .NET Remoting Arbitrary File Read Leading to ViewState RCE

Calero VeraSMART versions prior to 2022 R1 expose an unauthenticated .NET Remoting HTTP service on TCP port 8001. The service publishes default ObjectURIs including EndeavorServer.rem and RemoteFileReceiver.rem and permits the use of SOAP and binary formatters with TypeFilterLevel set to Full. An...

10CVSS6.6AI score0.00929EPSS
Exploits1References2
CVE
CVEadded 2026/02/13 8:51 p.m.19 views

CVE-2026-26333

The CVE describes an unauthenticated .NET Remoting HTTP service on TCP port 8001 in VeraSMART versions prior to 2022 R1. It exposes default ObjectURIs (e.g., EndeavorServer.rem, RemoteFileReceiver.rem) and allows SOAP/binary formatters with TypeFilterLevel set to Full. An unauthenticated attacker...

10CVSS6.6AI score0.00929EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/02/13 3:21 p.m.6 views

CVE-2026-26221 Hyland OnBase Timer Service Unauthenticated .NET Remoting RCE

Hyland OnBase contains an unauthenticated .NET Remoting exposure in the OnBase Workflow Timer Service Hyland.Core.Workflow.NTService.exe. An attacker who can reach the service can send crafted .NET Remoting requests to default HTTP channel endpoints on TCP/8900 e.g., TimerServiceAPI.rem and...

9.8CVSS6.2AI score0.01121EPSS
Exploits1References3
CVE
CVEadded 2026/02/13 3:21 p.m.22 views

CVE-2026-26221

Hyland OnBase exposes an unauthenticated .NET Remoting endpoint in the OnBase Workflow Timer Service (Hyland.Core.Workflow.NTService.exe) and reportedly affects the Workview Timer Service. An attacker who can reach TCP/8900 endpoints (e.g., TimerServiceAPI.rem, TimerServiceEvents.rem) via default...

9.8CVSS6.2AI score0.01121EPSS
Exploits1References3
RedhatCVE
RedhatCVEadded 2026/01/16 8:18 p.m.4 views

CVE-2026-23746

Entrust Instant Financial Issuance IFI On Premise software formerly referred to as CardWizard versions 5.x, prior to 6.10.5, and prior to 6.11.1 contain an insecure .NET Remoting exposure in the SmartCardController service DCG.SmartCardControllerService.exe. The service registers a TCP remoting...

9.3CVSS7.9AI score0.00861EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/01/15 7:44 p.m.4 views

CVE-2026-23746

Entrust Instant Financial Issuance IFI On Premise software formerly referred to as CardWizard versions 5.x, prior to 6.10.5, and prior to 6.11.1 contain an insecure .NET Remoting exposure in the SmartCardController service DCG.SmartCardControllerService.exe. The service registers a TCP remoting...

9.3CVSS6.5AI score0.00861EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVEadded 2025/12/11 4:3 p.m.3 views

CVE-2025-34395

Barracuda Service Center, as implemented in the RMM solution, in versions prior to 2025.1.1, exposes a .NET Remoting service in which an unauthenticated attacker can invoke a method vulnerable to path traversal to read arbitrary files. This vulnerability can be escalated to remote code execution ...

8.7CVSS8.1AI score0.00634EPSS
Exploits0References1
EUVD
EUVDadded 2025/12/10 6:30 p.m.4 views

EUVD-2025-202434

Barracuda Service Center, as implemented in the RMM solution, in versions prior to 2025.1.1, exposes a .NET Remoting service in which an unauthenticated attacker can invoke a method vulnerable to path traversal to read arbitrary files. This vulnerability can be escalated to remote code execution ...

8.7CVSS7.6AI score0.00634EPSS
Exploits0References4
NVD
NVDadded 2025/12/10 4:16 p.m.4 views

CVE-2025-34394

Barracuda Service Center, as implemented in the RMM solution, in versions prior to 2025.1.1, exposes a .NET Remoting service that is insufficiently protected against deserialization of arbitrary types. This can lead to remote code execution...

10CVSS0.00594EPSS
Exploits0References3
Cvelist
Cvelistadded 2025/12/10 3:45 p.m.29 views

CVE-2025-34394 Barracuda RMM < 2025.1.1 Service Center .NET Remoting Deserialization RCE

Barracuda Service Center, as implemented in the RMM solution, in versions prior to 2025.1.1, exposes a .NET Remoting service that is insufficiently protected against deserialization of arbitrary types. This can lead to remote code execution...

10CVSS0.00594EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2025/12/10 3:45 p.m.6 views

CVE-2025-34394 Barracuda RMM < 2025.1.1 Service Center .NET Remoting Deserialization RCE

Barracuda Service Center, as implemented in the RMM solution, in versions prior to 2025.1.1, exposes a .NET Remoting service that is insufficiently protected against deserialization of arbitrary types. This can lead to remote code execution...

10CVSS7.7AI score0.00594EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2025/12/10 12:0 a.m.4 views

PT-2025-50338

Name of the Vulnerable Software and Affected Versions Barracuda Service Center versions prior to 2025.1.1 Description The Barracuda Service Center, as part of the RMM solution, has a .NET Remoting service exposed that allows an unauthenticated attacker to invoke a method susceptible to path...

8.7CVSS8AI score0.00634EPSS
Exploits0References7
CVE
CVEadded 2025/12/09 6:11 p.m.14 views

CVE-2025-34414

Entrust Instant Financial Issuance (IFI) On Premise (CardWizard) versions 5.x, before 6.10.5 and before 6.11.1, contain an insecure .NET Remoting exposure in the Legacy Remoting Service enabled by default. The Legacy Remoting Service registers a TCP remoting channel with SOAP and binary formatter...

9.3CVSS8.2AI score0.00674EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.13 views

EUVD-2020-28107

Malware in sbrugna...

10CVSS9.2AI score0.05363EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2021-14214

Malware in sbrugna...

10CVSS9.1AI score0.03072EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-19879

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00405EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-14685

Malicious code in bioql PyPI...

7.8CVSS6.6AI score0.00258EPSS
Exploits1References2
Rows per page
Query Builder