Lucene search
K

1562 matches found

Positive Technologies
Positive Technologies
added 2026/06/17 12:0 a.m.19 views

PT-2026-50256

Name of the Vulnerable Software and Affected Versions Regesta Smart HD-PLC - TLDPH16D2 version 11.02.05.10.02 Description A network attacker can obtain privileged information without requiring registration. This information disclosure occurs by using the Version command through the endpoint...

6.9CVSS5.9AI score0.00394EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2026/06/16 7:33 a.m.5 views

mysql: InnoDB unspecified vulnerability (CPU Apr 2026)

Oracle CPU describes the issue as following: Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows high privileged attacker with network access via...

4.9CVSS6.8AI score0.00323EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/06/16 7:33 a.m.4 views

mysql: Optimizer unspecified vulnerability (CPU Apr 2026)

Oracle CPU describes the issue as following: Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows high privileged attacker with network...

4.9CVSS6.8AI score0.00323EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.18 views

PT-2026-49894

Name of the Vulnerable Software and Affected Versions Oracle WebCenter Content version 12.2.1.4.0 Oracle WebCenter Content version 14.1.2.0.0 Description An issue exists in the Content Server component of the Oracle WebCenter Content product within Oracle Fusion Middleware. A low privileged...

9.9CVSS5.9AI score0.00411EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.16 views

PT-2026-50039

Name of the Vulnerable Software and Affected Versions Oracle Complex Maintenance, Repair and Overhaul versions 12.2.3 through 12.2.15 Description An issue exists in the Internal Operations component of the Oracle Complex Maintenance, Repair and Overhaul product of Oracle E-Business Suite. A low...

7.5CVSS5.9AI score0.00311EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.17 views

PT-2026-49854

Name of the Vulnerable Software and Affected Versions Oracle WebCenter Enterprise Capture version 12.2.1.4.0 Oracle WebCenter Enterprise Capture version 14.1.2.0.0 Description A flaw in the Client Bundle component of Oracle WebCenter Enterprise Capture allows a low privileged attacker with networ...

9.9CVSS5.7AI score0.00402EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/06/15 7:54 a.m.10 views

mysql: Optimizer unspecified vulnerability (CPU Apr 2026)

Oracle CPU describes the issue as following: Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows low privileged attacker with network...

6.5CVSS6.9AI score0.00303EPSS
Exploits0References6
NVD
NVD
added 2026/06/12 4:17 a.m.16 views

CVE-2026-47370

A malicious actor with access to the network and low privileges could exploit an Improper Input Validation vulnerability found in certain devices running UniFi OS to execute a Command Injection within such UniFi OS devices or instances...

9.9CVSS0.00834EPSS
Exploits0References1
NVD
NVD
added 2026/06/12 4:17 a.m.13 views

CVE-2026-47368

A malicious actor with access to the network could exploit a Path Traversal vulnerability found in certain devices running UniFi OS to obtain data from such UniFi OS devices or instances...

8.6CVSS0.00355EPSS
Exploits0References1
CVE
CVE
added 2026/06/12 2:27 a.m.70 views

CVE-2026-47368

CVE-2026-47368 describes a path traversal vulnerability in certain UniFi OS devices. The issue could allow an attacker with network access to obtain data from UniFi OS devices or instances. The CVSS vector indicates a network, low complexity, no privileges required, with high confidentiality impa...

8.6CVSS5.4AI score0.00355EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/12 2:27 a.m.9 views

CVE-2026-48610

Under certain network configurations, a malicious actor with access to network could exploit an Improper Access Control vulnerability found in certain devices running UniFi OS to make unauthorized changes to such UniFi OS devices...

8.1CVSS5.2AI score0.00264EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/12 12:0 a.m.15 views

PT-2026-48825

Name of the Vulnerable Software and Affected Versions UniFi OS affected versions not specified Description Under certain network configurations, a malicious actor with network access can exploit improper access control to make unauthorized changes to devices running UniFi OS. Recommendations At t...

8.1CVSS6AI score0.00264EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/06/11 8:48 p.m.36 views

CVE-2026-12012

Use after free in Network in Google Chrome prior to 149.0.7827.115 allowed an attacker in a privileged network position to potentially exploit heap corruption via malicious network traffic. Chromium security severity: High...

0.00225EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/10 8:59 p.m.11 views

CVE-2026-0270 Cortex XSOAR: Path Traversal Vulnerability

A path traversal vulnerability in Palo Alto Networks Cortex XSOAR engine software running on Linux allows an unauthenticated attacker on an adjacent network, with the ability to intercept and manipulate network response traffic via a man-in-the-middle MITM attack, to write arbitrary files to the...

7.5CVSS5.6AI score0.00156EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/06/10 11:41 a.m.11 views

mysql: Optimizer unspecified vulnerability (CPU Apr 2026)

Oracle CPU describes the issue as following: Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows low privileged attacker with network...

6.5CVSS7.1AI score0.00303EPSS
Exploits0References6
EUVD
EUVD
added 2026/06/09 5:6 p.m.11 views

EUVD-2026-35599

Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network...

7.5CVSS6AI score0.00397EPSS
Exploits0References1
CVE
CVE
added 2026/06/09 5:4 p.m.89 views

CVE-2026-45501

CVE-2026-45501 concerns Microsoft Exchange Server. The issue is improper neutralization of input during web page generation, i.e., a cross-site scripting vulnerability that can allow an unauthorized attacker to perform spoofing over a network. CVSS 3.1 base score 6.5 (Medium): attack vector Netwo...

6.5CVSS6.6AI score0.00308EPSS
Exploits0References1Affected Software2
Microsoft CVE
Microsoft CVE
added 2026/06/09 2:0 p.m.12 views

Nuance PowerScribe Remote Code Execution Vulnerability

Deserialization of untrusted data in Nuance PowerScribe allows an unauthorized attacker to execute code over a network...

9.8CVSS5.7AI score0.01914EPSS
Exploits0
VulnCheck KEV
VulnCheck KEV
added 2026/06/09 12:0 a.m.53 views

VulnCheck KEV: CVE-2026-34910

A malicious actor with access to the network could exploit an Improper Input Validation vulnerability found in UniFi OS devices to execute a Command Injection...

10CVSS5.6AI score0.78555EPSS
In wildExploits2References4
RedhatCVE
RedhatCVE
added 2026/06/05 7:46 p.m.12 views

CVE-2026-42503

gopls by default communicates via pipe. However, -port and -listen flags are supported as means of debugging. If -listen is given a value without an explicit host e.g. :8080, or -port is used, gopls will listen on 0.0.0.0. As a result, users might inadvertently cause gopls to bind 0.0.0.0. This c...

8.8CVSS5.7AI score0.00223EPSS
Exploits0References1
Rows per page
Query Builder