Lucene search
+L

1798 matches found

CVE
CVE
added yesterday4 views

CVE-2024-32386

CVE-2024-32386 affects Kerlink Wirnet iStation 868 KerOS v.4.3.3_20200803132042, with a directory traversal vulnerability that allows an adjacent attacker to obtain sensitive information through the SNMP update mechanism. The CVSSv3.1 base score is 7.3 (HIGH) with attack vector ADJACENT, low atta...

7.3CVSS6.1AI score
Exploits0References2
CVE
CVE
added 3 days ago7 views

CVE-2026-50496

CVE-2026-50496 is an out-of-bounds read vulnerability in Windows Network Policy Server SNMP that allows an unauthenticated attacker to disclose information over the network. Affects the SNMP component of Windows NPS; impact is information disclosure with a CVSS v3.1 base score of 7.5 (Network att...

7.5CVSS6.1AI score0.01149EPSS
Exploits0References1
CVE
CVE
added 3 days ago7 views

CVE-2026-50470

CVE-2026-50470 describes an out-of-bounds read in Windows Network Policy Server SNMP that could let an unauthenticated attacker disclose information over the network. The vulnerability affects the NPS SNMP handling and has a CVSS v3.1 base score of 7.5 (High) with network attack vector, low attac...

7.5CVSS6.1AI score0.00754EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 3 days ago8 views

Windows Network Policy Server SNMP Information Disclosure Vulnerability

Out-of-bounds read in Windows Network Policy Server SNMP allows an unauthorized attacker to disclose information over a network...

7.5CVSS6.1AI score0.00754EPSS
Exploits0
Cvelist
Cvelist
added 2026/07/09 9:2 p.m.35 views

CVE-2026-33799 Junos OS and Junos OS Evolved: Receipt of a specific SNMPv3 request results in memory leak and eventual snmpd crash

An Out-of-bounds Write vulnerability in the SNMP daemon snmpd of Juniper Networks Junos OS and Junos OS Evolved allows an authenticated network-based attacker sending specific valid SNMPv3 queries to trigger a memory leak. Over time, continuous receipt of these queries will result in snmpd proces...

5.3CVSS0.00368EPSS
Exploits0References1
CVE
CVE
added 2026/07/09 9:2 p.m.60 views

CVE-2026-33799

CVE-2026-33799 describes an Out-of-bounds Write in the SNMP daemon (snmpd) of Juniper Networks Junos OS and Junos OS Evolved. An authenticated remote attacker can send specific valid SNMPv3 queries to trigger a memory leak, causing snmpd memory exhaustion over time, a resulting process crash, and...

5.3CVSS6AI score0.00368EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2026/07/01 5:16 p.m.8 views

CVE-2026-13211

The genucenter web interface before version 8.0p11 unnecessarily exposes sensitive SNMP authentication and encryption keys in its HTTP responses to users with the “Service” or “Admin” role...

4.3CVSS0.00139EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/07/01 3:46 p.m.36 views

CVE-2026-13211 Genucenter Disclosure of SNMP Credentials

The genucenter web interface before version 8.0p11 unnecessarily exposes sensitive SNMP authentication and encryption keys in its HTTP responses to users with the “Service” or “Admin” role...

4.3CVSS0.00139EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/07/01 3:46 p.m.6 views

CVE-2026-13211

The genucenter web interface before version 8.0p11 unnecessarily exposes sensitive SNMP authentication and encryption keys in its HTTP responses to users with the “Service” or “Admin” role...

4.3CVSS5.8AI score0.00139EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 3:46 p.m.15 views

CVE-2026-13211

CVE-2026-13211 affects the Genucenter web interface prior to version 8.0p11, where SNMP authentication and encryption keys are exposed in HTTP responses to users with Service or Admin roles. This disclosure creates a confidentiality risk (SNMP credentials exposed); the documentation does not spec...

4.3CVSS5.8AI score0.00139EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/29 8:21 p.m.6 views

CVE-2026-34594

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.471, an authenticated command injection vulnerability in the Destination Network Management functionality allows users with destination management permissions to execute arbitra...

8.8CVSS6.6AI score0.01092EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/29 8:21 p.m.26 views

CVE-2026-34594

CVE-2026-34594 — Coolify Affected product: Coolify (open-source self-hosted platform for managing servers, apps, and databases). Vulnerability: In the Destination Network Management functionality, the network parameter is passed directly to shell commands without proper sanitization. This authent...

8.8CVSS6.6AI score0.01092EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/29 8:21 p.m.49 views

CVE-2026-34594 Coolify: Authenticated Remote Code Execution via Command Injection in Destination Network Management

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.471, an authenticated command injection vulnerability in the Destination Network Management functionality allows users with destination management permissions to execute arbitra...

8.8CVSS0.01092EPSS
Exploits0References1
OSV
OSV
added 2026/06/29 8:21 p.m.3 views

CVE-2026-34594 Coolify: Authenticated Remote Code Execution via Command Injection in Destination Network Management

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.471, an authenticated command injection vulnerability in the Destination Network Management functionality allows users with destination management permissions to execute arbitra...

8.8CVSS6.8AI score0.01092EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/29 12:0 a.m.12 views

PT-2026-53737

Name of the Vulnerable Software and Affected Versions Coolify versions prior to 4.0.0-beta.471 Description An authenticated command injection issue exists in the Destination Network Management functionality. Users with destination management permissions can execute arbitrary commands as root on...

8.8CVSS6.8AI score0.01092EPSS
Exploits0References4
Arista
Arista
added 2026/06/23 12:0 a.m.11 views

Security Advisory 0143

Security Advisory 0143 PDF Date: June 23, 2026 Revision | Date | Changes ---|---|--- 1.0 | Jun 23, 2026 | Initial release Description All of the CVEs covered in this advisory apply to affected platforms running Arista EOS with the Streaming Telemetry Agent aka TerminAttr enabled. This issue...

5.9AI score
Exploits0Affected Software1
OSV
OSV
added 2026/06/15 12:12 p.m.10 views

USN-8405-2 cups regression

USN-8405-1 fixed vulnerabilities in CUPS. The update introduced a regression that cause CUPS to crash when parsing certain large printer PPD files. This update fixes the problem. Original advisory details: Ariel Silver discovered that CUPS incorrectly handled username comparisons during...

6.3AI score
Exploits0References2
CVE
CVE
added 2026/06/15 12:0 a.m.27 views

CVE-2026-39006

CVE-2026-39006 concerns SNMP4J-Agent 3.8.3 where a remote attacker can execute arbitrary code via the snmp4jCfgStoragePath component. Documented impact is critical (CVSS v3.1: 9.8) with network discovery and no user interaction required; exploitation status is not provided in the supplied sources...

9.8CVSS6AI score0.00515EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.14 views

PT-2026-49299

Name of the Vulnerable Software and Affected Versions SNMP4J-Agent version 3.8.3 Description A remote attacker can execute arbitrary code through the snmp4jCfgStoragePath component. Recommendations At the moment, there is no information about a newer version that contains a fix for this...

9.8CVSS5.7AI score0.00515EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/06/10 8:59 a.m.10 views

CVE-2026-41975

Permission management vulnerability in the network management module. Impact: Successful exploitation of this vulnerability may affect service integrity...

6.3CVSS5.4AI score0.00067EPSS
Exploits0References1
Rows per page
Query Builder