Lucene search
+L

1570 matches found

redhatcve
redhatcve
added 2026/06/24 1:56 a.m.11 views

CVE-2026-56113

A flaw was found in dhcpcd. An unauthenticated attacker on the same network link can exploit this vulnerability by sending a specially crafted DHCPv6 RENEW reply. This can lead to a Denial of Service DoS, causing the dhcpcd daemon to crash due to a heap use-after-free vulnerability...

6.5CVSS5.8AI score0.00175EPSS
Exploits0References5
osv
osv
added 2026/06/23 5:24 p.m.3 views

CVE-2026-44726 Deno: TLS retry copies stale upgrade hook, risking plaintext traffic

Deno is a JavaScript, TypeScript, and WebAssembly runtime. From 2.0.0 until 2.7.8, a flaw in Deno's Node.js tls compatibility layer could cause a TLS client to transmit application data in plaintext after a connection retry. When autoSelectFamily was enabled and the first address-family attempt...

7.4CVSS6AI score0.00142EPSS
Exploits1References3
cve
cve
added 2026/06/22 12:46 p.m.18 views

CVE-2026-54100

CVE-2026-54100 affects the Windows Machine Config Operator (WMCO) used with Red Hat OpenShift Container Platform. The flaw is that WMCO establishes SSH connections to Windows worker nodes without verifying the remote host key, enabling an adjacent-network attacker who can intercept or redirect WM...

8.3CVSS5.9AI score0.00181EPSS
Exploits0References3Affected Software2
redhatcve
redhatcve
added 2026/06/22 12:46 p.m.9 views

CVE-2026-54100

A flaw was found in the Windows Machine Config Operator WMCO for Red Hat OpenShift Container Platform. WMCO establishes SSH connections to Windows worker nodes without verifying the remote server host key. An adjacent-network attacker who can intercept or redirect WMCO's SSH session can capture...

8.3CVSS5.9AI score0.00181EPSS
Exploits0References3
nvd
nvd
added 2026/06/17 1:20 p.m.11 views

CVE-2026-27868

An attacker with access via network to the Regesta Smart HD-PLC of the provider Teldat in this case, NO registration action is required who has the vulnerable software could obtain privilege information by using the command Version via the path: /upgrade/query.php?cmd=p+3&3Bversion resulting in a...

6.9CVSS0.00394EPSS
Exploits0References5
ptsecurity
ptsecurity
added 2026/06/17 12:0 a.m.22 views

PT-2026-50256

Name of the Vulnerable Software and Affected Versions Regesta Smart HD-PLC - TLDPH16D2 version 11.02.05.10.02 Description A network attacker can obtain privileged information without requiring registration. This information disclosure occurs by using the Version command through the endpoint...

6.9CVSS5.9AI score0.00394EPSS
Exploits0References9
redhat
redhat
added 2026/06/16 7:33 a.m.6 views

mysql: Optimizer unspecified vulnerability (CPU Apr 2026)

Oracle CPU describes the issue as following: Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows high privileged attacker with network...

4.9CVSS6.8AI score0.00323EPSS
Exploits0References6
redhat
redhat
added 2026/06/16 7:33 a.m.6 views

mysql: InnoDB unspecified vulnerability (CPU Apr 2026)

Oracle CPU describes the issue as following: Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows high privileged attacker with network access via...

4.9CVSS6.8AI score0.00323EPSS
Exploits0References6
ptsecurity
ptsecurity
added 2026/06/16 12:0 a.m.17 views

PT-2026-50039

Name of the Vulnerable Software and Affected Versions Oracle Complex Maintenance, Repair and Overhaul versions 12.2.3 through 12.2.15 Description An issue exists in the Internal Operations component of the Oracle Complex Maintenance, Repair and Overhaul product of Oracle E-Business Suite. A low...

7.5CVSS5.9AI score0.00311EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2026/06/16 12:0 a.m.21 views

PT-2026-49894

Name of the Vulnerable Software and Affected Versions Oracle WebCenter Content version 12.2.1.4.0 Oracle WebCenter Content version 14.1.2.0.0 Description An issue exists in the Content Server component of the Oracle WebCenter Content product within Oracle Fusion Middleware. A low privileged...

9.9CVSS5.9AI score0.00411EPSS
Exploits0References5
ptsecurity
ptsecurity
added 2026/06/16 12:0 a.m.21 views

PT-2026-49854

Name of the Vulnerable Software and Affected Versions Oracle WebCenter Enterprise Capture version 12.2.1.4.0 Oracle WebCenter Enterprise Capture version 14.1.2.0.0 Description A flaw in the Client Bundle component of Oracle WebCenter Enterprise Capture allows a low privileged attacker with networ...

9.9CVSS5.7AI score0.00402EPSS
Exploits0References3
redhat
redhat
added 2026/06/15 7:54 a.m.11 views

mysql: Optimizer unspecified vulnerability (CPU Apr 2026)

Oracle CPU describes the issue as following: Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows low privileged attacker with network...

6.5CVSS6.9AI score0.00303EPSS
Exploits0References6
nvd
nvd
added 2026/06/12 4:17 a.m.13 views

CVE-2026-47368

A malicious actor with access to the network could exploit a Path Traversal vulnerability found in certain devices running UniFi OS to obtain data from such UniFi OS devices or instances...

8.6CVSS0.00355EPSS
Exploits0References1
nvd
nvd
added 2026/06/12 4:17 a.m.16 views

CVE-2026-47370

A malicious actor with access to the network and low privileges could exploit an Improper Input Validation vulnerability found in certain devices running UniFi OS to execute a Command Injection within such UniFi OS devices or instances...

9.9CVSS0.00834EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/12 2:27 a.m.9 views

CVE-2026-48610

Under certain network configurations, a malicious actor with access to network could exploit an Improper Access Control vulnerability found in certain devices running UniFi OS to make unauthorized changes to such UniFi OS devices...

8.1CVSS5.2AI score0.00264EPSS
Exploits0References1
cve
cve
added 2026/06/12 2:27 a.m.71 views

CVE-2026-47368

CVE-2026-47368 describes a path traversal vulnerability in certain UniFi OS devices. The issue could allow an attacker with network access to obtain data from UniFi OS devices or instances. The CVSS vector indicates a network, low complexity, no privileges required, with high confidentiality impa...

8.6CVSS5.4AI score0.00355EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/06/12 12:0 a.m.15 views

PT-2026-48825

Name of the Vulnerable Software and Affected Versions UniFi OS affected versions not specified Description Under certain network configurations, a malicious actor with network access can exploit improper access control to make unauthorized changes to devices running UniFi OS. Recommendations At t...

8.1CVSS6AI score0.00264EPSS
Exploits0References8
cvelist
cvelist
added 2026/06/11 8:48 p.m.38 views

CVE-2026-12012

Use after free in Network in Google Chrome prior to 149.0.7827.115 allowed an attacker in a privileged network position to potentially exploit heap corruption via malicious network traffic. Chromium security severity: High...

0.00225EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2026/06/10 8:59 p.m.12 views

CVE-2026-0270 Cortex XSOAR: Path Traversal Vulnerability

A path traversal vulnerability in Palo Alto Networks Cortex XSOAR engine software running on Linux allows an unauthenticated attacker on an adjacent network, with the ability to intercept and manipulate network response traffic via a man-in-the-middle MITM attack, to write arbitrary files to the...

7.5CVSS5.6AI score0.00199EPSS
Exploits0References2
redhat
redhat
added 2026/06/10 11:41 a.m.13 views

mysql: Optimizer unspecified vulnerability (CPU Apr 2026)

Oracle CPU describes the issue as following: Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows low privileged attacker with network...

6.5CVSS7.1AI score0.00303EPSS
Exploits0References6
Rows per page
Query Builder