Lucene search
K

2718 matches found

Cvelist
Cvelist
added 2026/06/17 5:19 p.m.19 views

CVE-2026-3894 Out-of-bounds Read vulnerability in RTI Connext Professional (Core Libraries) allows Overread Buffers.

Out-of-bounds Read vulnerability in RTI Connext Professional Core Libraries allows Overread Buffers.This issue affects Connext Professional: from 7.4.0 before 7.7.0, from 7.0.0 before 7.3.1.3, from 6.1.0 before 6.1., from 6.0.0 before 6.0., from 5.3.0 before 5.3., from 5.0.0 before 5.2...

9.2CVSS0.002EPSS
Exploits0References1
CVE
CVE
added 2026/06/17 5:19 p.m.18 views

CVE-2026-2675

RTI Connext Professional (Security Plugins) is affected by CVE-2026-2675: Missing Authentication for a Critical Function. Affected Connext Professional versions include 5.3.* before 5.3., 6.0. before 6.0., 6.1. before 6.1.*, 7.0.0 before 7.3.1.3, and 7.4.0 before 7.7.0. The CVSS 4.0 base score is...

6.5CVSS5.2AI score0.00212EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/06/17 5:19 p.m.42 views

CVE-2026-2675 Missing Authentication for Critical Function vulnerability in RTI Connext Professional (Security Plugins) allows Fake the Source of Data.

Missing Authentication for Critical Function vulnerability in RTI Connext Professional Security Plugins allows Fake the Source of Data.This issue affects Connext Professional: from 7.4.0 before 7.7.0, from 7.0.0 before 7.3.1.3, from 6.1.0 before 6.1., from 6.0.0 before 6.0., from 5.3.0 before 5.3...

6CVSS0.00212EPSS
Exploits0References1
CVE
CVE
added 2026/06/17 5:17 p.m.15 views

CVE-2026-2467

Technical details (affected products, versions, root cause, impact, or remediation) are not publicly provided in the supplied documents; monitor for updates.

9.2CVSS5.2AI score0.00189EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/17 12:0 a.m.15 views

PT-2026-50504

Name of the Vulnerable Software and Affected Versions RTI Connext Professional versions 6.1.0 through 6.1.x RTI Connext Professional versions 7.0.0 through 7.3.1.2 RTI Connext Professional versions 7.4.0 through 7.6.x Description An out-of-bounds write issue exists within the Queueing Service, Co...

8.1CVSS6.2AI score0.0018EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/06/17 12:0 a.m.14 views

PT-2026-50503

Name of the Vulnerable Software and Affected Versions Connext Professional versions 7.4.0 through 7.6.x Connext Professional versions 7.0.0 through 7.3.1.2 Connext Professional versions 6.1.0 through 6.1.x Connext Professional versions 6.0.0 through 6.0.x Connext Professional versions 5.3.0 throu...

9.2CVSS6.3AI score0.00189EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/06/17 12:0 a.m.16 views

PT-2026-50514

Name of the Vulnerable Software and Affected Versions RTI Connext Professional Web Integration Service versions 6.1.2 through 6.1.x RTI Connext Professional Web Integration Service versions 7.0.0 through 7.3.1.2 RTI Connext Professional Web Integration Service versions 7.4.0 through 7.x Descripti...

8.8CVSS6.2AI score0.00251EPSS
Exploits0References6
OSV
OSV
added 2026/06/04 5:38 p.m.9 views

GHSA-WQCR-7RF3-F64M Singluarity: Incorrect path matching for 'limit container paths' directive

Impact The limit container paths directive in singularity.conf is intended to allow a system administrator limit the paths from which containers can be run, under setuid mode. Due to incorrect matching of a path string, sibling directories with similar names may incorrectly be allowed. For exampl...

4.8CVSS5.8AI score0.0001EPSS
Exploits0References5
NVD
NVD
added 2026/05/28 5:16 a.m.20 views

CVE-2026-9241

The FOX – Currency Switcher Professional for WooCommerce plugin for WordPress is vulnerable to Authorization Bypass Through User-Controlled Key in all versions up to and including 1.4.6. This is due to the getvalue function in classes/fixed/fixeduserrole.php trusting the attacker-controlled...

4.3CVSS0.00213EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/28 3:27 a.m.34 views

CVE-2026-9241 FOX – Currency Switcher Professional for WooCommerce <= 1.4.6 - Authenticated (Subscriber+) Authorization Bypass via User-Controlled Key to 'wooc_order_user_roles' Parameter

The FOX – Currency Switcher Professional for WooCommerce plugin for WordPress is vulnerable to Authorization Bypass Through User-Controlled Key in all versions up to and including 1.4.6. This is due to the getvalue function in classes/fixed/fixeduserrole.php trusting the attacker-controlled...

4.3CVSS0.00213EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/05/28 3:27 a.m.9 views

CVE-2026-9241 FOX – Currency Switcher Professional for WooCommerce <= 1.4.6 - Authenticated (Subscriber+) Authorization Bypass via User-Controlled Key to 'wooc_order_user_roles' Parameter

The FOX – Currency Switcher Professional for WooCommerce plugin for WordPress is vulnerable to Authorization Bypass Through User-Controlled Key in all versions up to and including 1.4.6. This is due to the getvalue function in classes/fixed/fixeduserrole.php trusting the attacker-controlled...

4.3CVSS5.7AI score0.00213EPSS
Exploits0References5
GithubExploit
GithubExploit
added 2026/05/21 6:13 p.m.120 views

Exploit for CVE-2025-39247

CVE-2025-39247 - Target: HikCentral Professional HCMP, c...

8.6CVSS6.2AI score0.00511EPSS
Exploits1
GithubExploit
GithubExploit
added 2026/05/15 10:32 a.m.82 views

shadow-pentest

🖤 Shadow Pentest Framework v1.0 Automated CVE Discovery & E...

10CVSS5.8AI score0.99999EPSS
Exploits352
CNNVD
CNNVD
added 2026/05/15 12:0 a.m.10 views

AMD多款产品 缓冲区错误漏洞

AMD Radeon is a set of device driver and utility software packages developed by American semiconductor company AMD for Advanced Micro Devices’ graphics cards and GPUs. Several AMD products have a buffer error vulnerability, which stems from insufficient parameter cleaning. This vulnerability may...

4.6CVSS6AI score0.00112EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/11 8:26 p.m.9 views

CVE-2026-1749

There is an Access Control Vulnerability in some HikCentral Professional versions. This could allow an unauthenticated user to obtain the admin permission...

6.8CVSS5.8AI score0.00282EPSS
Exploits0References1
NVD
NVD
added 2026/05/09 9:16 a.m.20 views

CVE-2026-1749

There is an Access Control Vulnerability in some HikCentral Professional versions. This could allow an unauthenticated user to obtain the admin permission...

6.8CVSS0.00282EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/09 8:27 a.m.44 views

CVE-2026-1749

There is an Access Control Vulnerability in some HikCentral Professional versions. This could allow an unauthenticated user to obtain the admin permission...

6.8CVSS0.00282EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/09 8:27 a.m.10 views

CVE-2026-1749

There is an Access Control Vulnerability in some HikCentral Professional versions. This could allow an unauthenticated user to obtain the admin permission...

6.8CVSS5.8AI score0.00282EPSS
Exploits0References2
CVE
CVE
added 2026/05/09 8:27 a.m.22 views

CVE-2026-1749

CVE-2026-1749 affects HikCentral Professional (some versions) with an Access Control vulnerability that could allow an unauthenticated user to obtain admin permissions. The NVD/Hikvision disclosures indicate the issue stems from inadequate access control, enabling elevated privileges and compromi...

6.8CVSS5.8AI score0.00282EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/09 8:27 a.m.18 views

EUVD-2026-28905

There is an Access Control Vulnerability in some HikCentral Professional versions. This could allow an unauthenticated user to obtain the admin permission...

6.8CVSS5.8AI score0.00282EPSS
Exploits0References1
Rows per page
Query Builder