CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 6 days ago•9 views

EUVD-2026-38119

6CVSS5.9AI score0.00251EPSS

CVE•added 6 days ago•17 views

CVE-2026-56276

Flowise (Flowise) before 3.1.2 has a mass-assignment vulnerability in PUT /api/v1/user that lets an authenticated user modify the credential field without validation. The attacker can bypass password-change verification and session invalidation by supplying a crafted password hash, enabling persi...

6CVSS5.9AI score0.00251EPSS

Positive Technologies•added 6 days ago•11 views

PT-2026-51151

Name of the Vulnerable Software and Affected Versions Flowise versions prior to 3.1.2 Description A mass assignment issue exists in the 'PUT /api/v1/user' endpoint. This allows authenticated users to modify the credential field without proper validation. By providing a crafted password hash, an...

6CVSS5.9AI score0.00251EPSS

Exploits0References9

AstraLinux•added 2026/06/19 11:10 a.m.•4 views

Astra Linux – Vulnerability in sudo

In Sudo version 1.8.29, the fact that a user has been blocked for example, by using the “!” character in the shadow file instead of a password hash was not taken into consideration. This allows an attacker who has access to a Runas ALL sudoer account to impersonate any blocked user. NOTE: The...

7.5CVSS6.7AI score0.0339EPSS

EUVD•added 2026/06/18 6:30 p.m.•10 views

EUVD-2026-37929

setupBpmLogs follows symlink for bpm.log open and chown — container-to-host privilege escalation via /etc/shadow. A compromised process inside a bpm container can cause root to chown an arbitrary host file to vcap and append bpm JSON log lines to it. The chown alone lets the attacker take ownersh...

6.9CVSS5.4AI score0.00125EPSS

SUSE CVE•added 2026/06/12 2:32 a.m.•9 views

SUSE CVE-2026-11789

A flaw was found in 389 Directory Server. The SMD5 password storage plugin performs unsigned integer underflow when computing salt length from a crafted password hash shorter than 16 bytes, causing a buffer over-read that crashes the LDAP server during authentication...

6.5CVSS5.7AI score0.00335EPSS

Exploits0References4

NVD•added 2026/06/11 8:16 p.m.•16 views

CVE-2026-49973

Hermes WebUI before version 0.51.358 contains an improper access control vulnerability that allows unauthenticated remote attackers to hijack initial setup by submitting the setpassword parameter to the settings API endpoint without any network origin restriction. Attackers on any reachable netwo...

9.4CVSS0.00543EPSS

Vulnrichment•added 2026/06/11 7:4 p.m.•7 views

CVE-2026-49973 Hermes WebUI < 0.51.358 Unauthenticated Password Takeover via /api/settings

9.4CVSS5.5AI score0.00543EPSS

Cvelist•added 2026/06/11 7:4 p.m.•24 views

CVE-2026-49973 Hermes WebUI < 0.51.358 Unauthenticated Password Takeover via /api/settings

9.4CVSS0.00543EPSS

Positive Technologies•added 2026/06/11 12:0 a.m.•11 views

PT-2026-48730

Name of the Vulnerable Software and Affected Versions Hermes WebUI versions prior to 0.51.358 Description Improper access control allows unauthenticated remote attackers to hijack the initial setup process. By sending a POST request to the settings API endpoint without network origin restrictions...

9.4CVSS5.5AI score0.00543EPSS

Exploits0References9

NVD•added 2026/06/09 2:16 p.m.•12 views

CVE-2026-11790

A flaw was found in 389 Directory Server. The PBKDF2-SHA256 password storage plugin does not enforce an upper bound on the iteration count extracted from stored password hashes. A privileged attacker who can modify a user's password hash can cause excessive CPU consumption during authentication,...

4.9CVSS0.00345EPSS

Exploits0References3

OSV•added 2026/06/09 2:16 p.m.•8 views

UBUNTU-CVE-2026-11790

4.9CVSS5.2AI score0.00345EPSS

CVE•added 2026/06/09 1:9 p.m.•32 views

CVE-2026-11790

The CVE-2026-11790 entry describes a vulnerability in 389 Directory Server’s PBKDF2-SHA256 password storage plugin where there is no upper bound on the iteration count extracted from stored password hashes. A privileged attacker who can modify a user’s password hash can trigger excessive CPU usag...

4.9CVSS5.4AI score0.00345EPSS

Exploits0References3Affected Software3

Positive Technologies•added 2026/06/09 12:0 a.m.•10 views

PT-2026-47780

4.9CVSS5.4AI score0.00345EPSS

Exploits0References4

Tenable Nessus•added 2026/06/09 12:0 a.m.•15 views

Linux Distros Unpatched Vulnerability : CVE-2026-11790

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in 389 Directory Server. The PBKDF2-SHA256 password storage plugin does not enforce an upper bound on the iteration count extracted from stored...

4.9CVSS5.4AI score0.00345EPSS

Exploits0References4

RedhatCVE•added 2026/06/05 7:50 p.m.•9 views

CVE-2026-34527

Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, SbieIniServer::HashPassword converts a SHA-1 digest to hexadecimal incorrectly. The high nibble of each byte is shifted right by 8 instead of 4, which always produces zero for an 8-bit...

5.3CVSS5.3AI score0.00091EPSS

RedhatCVE•added 2026/06/05 7:40 p.m.•8 views

CVE-2026-43875

WWBN AVideo is an open source video platform. In versions up to and including 29.0, plugin/MobileManager/oauth2.php completes an OAuth login by sending an HTTP 302 Location: oauth2Success.php?user== where is the victim's stored password hash md5hash"whirlpool", sha1password read directly from the...

6.8CVSS5.4AI score0.00285EPSS

RedhatCVE•added 2026/06/05 7:37 p.m.•13 views

CVE-2026-3867

An improper ownership management vulnerability has been identified in Moxa’s Secure Router. Because of improper ownership management, a low-privileged authenticated user may access a configuration file containing the hashed password of the administrative account. Successful exploitation of this...

6CVSS5.4AI score0.0024EPSS