CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

203 matches found

CVE-2026-35079 Arbitrary file delete vulnerability in method ugw-restore

The ugw-restore method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input...

8.1CVSS0.00117EPSS

Exploits0References1

Tenable Nessus•added 2026/01/16 12:0 a.m.•5 views

MiracleLinux 7 : gvfs-1.36.2-3.el7 (AXSA:2019-4036:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2019-4036:01 advisory. gvfs: Incorrect authorization in admin backend allows privileged users to read and modify arbitrary files without prompting for password CVE-2019-3827 Tenabl...

7CVSS7AI score0.00061EPSS

Exploits0References2

RedhatCVE•added 2026/01/09 10:50 a.m.•7 views

CVE-2022-37889

There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba Networks AP management protocol UDP port 8211. Successful exploitation of these vulnerabilities result...

9.8CVSS9AI score0.01152EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 10:42 a.m.•8 views

CVE-2022-26074

Incomplete cleanup in a firmware subsystem for IntelR SPS before versions SPSE304.08.04.330.0 and SPSE304.01.04.530.0 may allow a privileged user to potentially enable denial of service via local access...

4.4CVSS6.6AI score0.0014EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:24 a.m.•8 views

CVE-2023-40368

IBM Storage Protect 8.1.0.0 through 8.1.19.0 could allow a privileged user to obtain sensitive information from the administrative command line client. IBM X-Force ID: 263456...

4.4CVSS5.9AI score0.00019EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:20 a.m.•6 views

CVE-2021-33079

Protection mechanism failure in firmware for some IntelR SSD DC Products may allow a privileged user to potentially enable information disclosure via local access...

4.4CVSS6.2AI score0.00058EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:15 a.m.•4 views

CVE-2022-38714

IBM DataStage on Cloud Pak for Data 4.0.6 to 4.5.2 stores sensitive credential information that can be read by a privileged user. IBM X-Force ID: 235060...

4.9CVSS5.8AI score0.00044EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:58 a.m.•4 views

CVE-2023-45625

Multiple authenticated command injection vulnerabilities exist in the command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system...

7.2CVSS7.9AI score0.00073EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:42 a.m.•9 views

CVE-2022-37898

Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities results in the ability to execute arbitrary commands as a privileged user on the underlying operating system...

7.2CVSS8.1AI score0.01909EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:42 a.m.•8 views

CVE-2022-37901

7.2CVSS8.1AI score0.01909EPSS

Exploits0References1

CNNVD•added 2025/10/14 12:0 a.m.•3 views

Hewlett Packard Enterprise ArubaOS 安全漏洞

Hewlett Packard Enterprise ArubaOS HPE ArubaOS is a networked wireless operating system from Hewlett Packard Enterprise USA. A security vulnerability exists in Hewlett Packard Enterprise ArubaOS that originates from an authenticated command injection in the CLI binary, which could lead to the...

7.2CVSS7.5AI score0.00061EPSS

Exploits0References2