Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2376 matches found

UbuntuCve
UbuntuCveadded 2026/05/27 12:0 a.m.8 views

CVE-2026-45929

ovpn: fix possible use-after-free in ovpnnetxmit...

7.8CVSS5.8AI score0.00157EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/05/27 12:0 a.m.14 views

PT-2026-43785

In the Linux kernel, the following vulnerability has been resolved: ovpn: tcp - don't deref NULL sk socket member after tcp close When deleting a peer in case of keepalive expiration, the peer is removed from the OpenVPN hashtable and is temporary inserted in a "release list" for further...

5.9AI score0.00213EPSS
Exploits0References4
CNNVD
CNNVDadded 2026/05/27 12:0 a.m.8 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the OpenVPN TCP transmission process. When the socket is closed in the user space, the...

5.7AI score0.00213EPSS
Exploits0References3
UbuntuCve
UbuntuCveadded 2026/05/27 12:0 a.m.10 views

CVE-2026-45918

ovpn: tcp - dont deref NULL sksocket member after tcpclose...

5.8AI score0.00213EPSS
Exploits0References2
NVD
NVDadded 2026/05/26 6:16 p.m.13 views

CVE-2026-9560

Privilege escalation via background service of OpenVPN Connect 3.5.1 through 3.8.1 on macOS allows attackers to execute arbitrary commands with elevated privileges via local IPC channel...

9.4CVSS0.00574EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/05/26 5:39 p.m.6 views

CVE-2026-9560

Privilege escalation via background service of OpenVPN Connect 3.5.1 through 3.8.1 on macOS allows attackers to execute arbitrary commands with elevated privileges via local IPC channel...

9.4CVSS6.1AI score0.00574EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2026/05/26 5:39 p.m.23 views

CVE-2026-9560

Summary: CVE-2026-9560 affects OpenVPN Connect for macOS (versions 3.5.1–3.8.1). Affected component is the background service that can escalate privileges via a local IPC channel, allowing an attacker to execute arbitrary commands with elevated privileges. The CVSS metrics indicate a high-impact,...

9.4CVSS6.1AI score0.00574EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2026/05/26 5:39 p.m.37 views

CVE-2026-9560

Privilege escalation via background service of OpenVPN Connect 3.5.1 through 3.8.1 on macOS allows attackers to execute arbitrary commands with elevated privileges via local IPC channel...

9.4CVSS0.00574EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/05/26 5:39 p.m.8 views

CVE-2026-9560

Privilege escalation via background service of OpenVPN Connect 3.5.1 through 3.8.1 on macOS allows attackers to execute arbitrary commands with elevated privileges via local IPC channel...

9.4CVSS6.1AI score0.00574EPSS
Exploits0References1
EUVD
EUVDadded 2026/05/26 5:39 p.m.12 views

EUVD-2026-31941

Privilege escalation via background service of OpenVPN Connect 3.5.1 through 3.8.1 on macOS allows attackers to execute arbitrary commands with elevated privileges via local IPC channel...

9.4CVSS6.1AI score0.00574EPSS
Exploits0References1
CNNVD
CNNVDadded 2026/05/26 12:0 a.m.8 views

OpenVPN Connect 安全漏洞

OpenVPN Connect is a VPN Virtual Private Network client application developed by OpenVPN Inc. Versions 3.5.1 to 3.8.1 of OpenVPN Connect have security vulnerabilities. These vulnerabilities stem from an issue with permissions in the background service on macOS, which may allow attackers to execut...

9.4CVSS6.1AI score0.00574EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/05/26 12:0 a.m.7 views

PT-2026-43371

Name of the Vulnerable Software and Affected Versions OpenVPN Connect versions 3.5.1 through 3.8.1 Description A privilege escalation issue exists in the background service of OpenVPN Connect on macOS. This allows attackers to execute arbitrary commands with elevated privileges by utilizing a loc...

9.4CVSS6.1AI score0.00574EPSS
Exploits0References13
NVD
NVDadded 2026/05/25 1:16 p.m.10 views

CVE-2026-9454

A flaw has been found in Totolink A8000RU 7.1cu.643b20200521. This vulnerability affects the function setOpenVpnCertGenerationCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Executing a manipulation of the argument servername can lead to os command injection. The...

10CVSS0.01909EPSS
Exploits0References5
NVD
NVDadded 2026/05/25 1:16 p.m.12 views

CVE-2026-9455

A vulnerability has been found in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function UploadOpenVpnCert of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. The manipulation of the argument FileName leads to os command injection. Remote exploitation of the...

10CVSS0.01909EPSS
Exploits0References5
CVE
CVEadded 2026/05/25 12:0 p.m.17 views

CVE-2026-9456

CVE-2026-9456 affects Totolink A8000RU Web Management Interface, specifically the function setOpenVpnCfg in the file /cgi-bin/cstecgi.cgi . The vulnerability is an os command injection and can be exploited remotely through that function. The entry lists the impacted product/version as Totolink A8...

10CVSS7AI score0.01909EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/05/25 12:0 p.m.10 views

CVE-2026-9456

A vulnerability was found in Totolink A8000RU 7.1cu.643b20200521. Impacted is the function setOpenVpnCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. The manipulation of the argument enabled results in os command injection. The attack can be executed remotely. The...

10CVSS7AI score0.01909EPSS
Exploits0References5Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/05/25 11:45 a.m.7 views

CVE-2026-9455

A vulnerability has been found in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function UploadOpenVpnCert of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. The manipulation of the argument FileName leads to os command injection. Remote exploitation of the...

10CVSS6.9AI score0.01909EPSS
Exploits0References5Affected Software1
Cvelist
Cvelistadded 2026/05/25 11:45 a.m.34 views

CVE-2026-9455 Totolink A8000RU Web Management cstecgi.cgi UploadOpenVpnCert os command injection

A vulnerability has been found in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function UploadOpenVpnCert of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. The manipulation of the argument FileName leads to os command injection. Remote exploitation of the...

10CVSS0.01909EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2026/05/25 11:45 a.m.10 views

CVE-2026-9455 Totolink A8000RU Web Management cstecgi.cgi UploadOpenVpnCert os command injection

A vulnerability has been found in Totolink A8000RU 7.1cu.643b20200521. This issue affects the function UploadOpenVpnCert of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. The manipulation of the argument FileName leads to os command injection. Remote exploitation of the...

10CVSS6.9AI score0.01909EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2026/05/22 12:0 a.m.14 views

Debian dsa-6289 : openvpn - security update

The remote Debian 12 / 13 host has a package installed that is affected by multiple vulnerabilities as referenced in the dsa-6289 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6289-1 [email protected]...

6.9CVSS5.6AI score0.00317EPSS
Exploits0References7
Rows per page
Query Builder