Lucene search
K

216 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/12 12:0 a.m.9 views

Security Updates for Microsoft Word Products (May 2026)

The Microsoft Word Products are missing a security update. They are, therefore, affected by multiple vulnerabilities: - Access of resource using incompatible type 'type confusion' in Microsoft Office Word allows an unauthorized attacker to execute code locally. CVE-2026-40364 - Use after free in...

8.4CVSS6.8AI score0.04421EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/05/11 12:0 a.m.12 views

PT-2026-40243

Name of the Vulnerable Software and Affected Versions Microsoft Edge Chromium-based affected versions not specified Description External control of a file name or path allows an unauthorized attacker to disclose sensitive information over a network. Recommendations At the moment, there is no...

7.4CVSS5.8AI score0.00652EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/05/09 8:21 a.m.9 views

CVE-2026-42826

Exposure of sensitive information to an unauthorized actor in Azure DevOps allows an unauthorized attacker to disclose information over a network...

10CVSS5.8AI score0.0084EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/08 12:31 a.m.19 views

EUVD-2026-28445

Improper neutralization of special elements in M365 Copilot allows an unauthorized attacker to disclose information over a network...

7.5CVSS5.8AI score0.01135EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/08 12:31 a.m.9 views

EUVD-2026-28446

Improper neutralization of special elements in output used by a downstream component 'injection' in M365 Copilot allows an unauthorized attacker to disclose information over a network...

7.5CVSS5.8AI score0.00799EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/08 12:31 a.m.7 views

EUVD-2026-28450

Improper authorization in Microsoft Teams allows an authorized attacker to disclose information over a network...

9.6CVSS5.8AI score0.00719EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/07 8:59 p.m.8 views

CVE-2026-42826

Exposure of sensitive information to an unauthorized actor in Azure DevOps allows an unauthorized attacker to disclose information over a network...

10CVSS5.8AI score0.0084EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/07 8:58 p.m.9 views

CVE-2026-33823

Improper authorization in Microsoft Teams allows an authorized attacker to disclose information over a network...

9.6CVSS5.8AI score0.00719EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/07 8:58 p.m.5 views

CVE-2026-26129

Improper neutralization of special elements in M365 Copilot allows an unauthorized attacker to disclose information over a network...

7.5CVSS5.8AI score0.01135EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2026/05/07 2:0 p.m.10 views

M365 Copilot Information Disclosure Vulnerability

Improper neutralization of special elements used in a command 'command injection' in M365 Copilot allows an unauthorized attacker to disclose information over a network...

7.5CVSS5.8AI score0.00799EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/07 12:0 a.m.20 views

PT-2026-38587

Name of the Vulnerable Software and Affected Versions Azure DevOps affected versions not specified Description Exposure of sensitive information in Azure DevOps allows an unauthorized actor to disclose information over a network. Recommendations At the moment, there is no information about a newe...

10CVSS5.8AI score0.0084EPSS
Exploits0References17
OSV
OSV
added 2026/04/17 9:15 a.m.5 views

OPENSUSE-SU-2026:20586-1 Security update for roundcubemail

This update for roundcubemail fixes the following issues: Changes in roundcubemail: - update to 1.6.15 This is a security update to the stable version 1.6 of Roundcube Webmail. It provides fixes to some regressions introduced in the previous release as well a recently reported security...

7.5CVSS5.9AI score0.00475EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/04/15 7:24 p.m.8 views

CVE-2026-32151

Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized attacker to disclose information over a network...

6.5CVSS5.7AI score0.00747EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/14 6:30 p.m.4 views

EUVD-2026-22536

Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized attacker to disclose information over a network...

6.5CVSS5.7AI score0.00747EPSS
Exploits0References2
NVD
NVD
added 2026/04/14 6:17 p.m.5 views

CVE-2026-32151

Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized attacker to disclose information over a network...

6.5CVSS0.00747EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/14 4:58 p.m.7 views

CVE-2026-32151

Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized attacker to disclose information over a network...

6.5CVSS5.7AI score0.00747EPSS
Exploits0References2Affected Software21
Positive Technologies
Positive Technologies
added 2026/04/14 12:0 a.m.5 views

PT-2026-32821

CVE-2026-32151 Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized attacker to disclose information over a network. https://t.co/O48PBwBtPo...

6.5CVSS6.2AI score0.00747EPSS
Exploits0References3
NVD
NVD
added 2026/04/03 12:16 a.m.6 views

CVE-2026-32173

Improper authentication in Azure SRE Agent allows an unauthorized attacker to disclose information over a network...

8.6CVSS0.00909EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2026/04/02 2:0 p.m.4 views

Azure SRE Agent Information Disclosure Vulnerability

Improper authentication in Azure SRE Agent allows an unauthorized attacker to disclose information over a network...

8.6CVSS5.8AI score0.00909EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/28 12:0 a.m.3 views

Fedora 43 : roundcubemail (2026-2decd38070)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-2decd38070 advisory. Version 1.6.14 Fix Postgres connection using IPv6 address 10104 Security: Fix pre-auth arbitrary file write via unsafe deserialization in redis/memcache...

6.1AI score
Exploits0References1
Rows per page
Query Builder