Lucene search
K

1968 matches found

UbuntuCve
UbuntuCve
added 2026/02/26 9:28 p.m.4 views

CVE-2026-22205

SPIP versions prior to 4.4.10 contain an authentication bypass vulnerability caused by PHP type juggling that allows unauthenticated attackers to access protected information. Attackers can exploit loose type comparisons in authentication logic to bypass login verification and retrieve sensitive...

8.7CVSS5.9AI score0.00468EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/02/26 8:18 p.m.3 views

CVE-2026-22205

SPIP versions prior to 4.4.10 contain an authentication bypass vulnerability caused by PHP type juggling that allows unauthenticated attackers to access protected information. Attackers can exploit loose type comparisons in authentication logic to bypass login verification and retrieve sensitive...

8.7CVSS5.8AI score0.00468EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/02/26 8:18 p.m.5 views

CVE-2026-22205

SPIP versions prior to 4.4.10 contain an authentication bypass vulnerability caused by PHP type juggling that allows unauthenticated attackers to access protected information. Attackers can exploit loose type comparisons in authentication logic to bypass login verification and retrieve sensitive...

8.7CVSS5.3AI score0.00468EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/02/13 1:31 a.m.9 views

CVE-2026-20623

A permissions issue was addressed by removing the vulnerable code. This issue is fixed in macOS Tahoe 26.3. An app may be able to access protected user data...

5.5CVSS5.5AI score0.00127EPSS
Exploits0References1
OSV
OSV
added 2026/02/11 11:16 p.m.4 views

CVE-2026-20630

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Tahoe 26.3. An app may be able to access protected user data...

5.5CVSS5.8AI score0.00118EPSS
Exploits0References1
OSV
OSV
added 2026/02/11 11:16 p.m.5 views

CVE-2026-20623

A permissions issue was addressed by removing the vulnerable code. This issue is fixed in macOS Tahoe 26.3. An app may be able to access protected user data...

5.5CVSS5.7AI score0.00127EPSS
Exploits0References1
NVD
NVD
added 2026/02/11 11:16 p.m.6 views

CVE-2026-20623

A permissions issue was addressed by removing the vulnerable code. This issue is fixed in macOS Tahoe 26.3. An app may be able to access protected user data...

5.5CVSS0.00127EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/11 10:59 p.m.12 views

CVE-2026-20648

A privacy issue was addressed by moving sensitive data to a protected location. This issue is fixed in macOS Tahoe 26.3. A malicious app may be able to access notifications from other iCloud devices...

5.5CVSS5.4AI score0.00127EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/11 10:58 p.m.4 views

CVE-2026-20623

A permissions issue was addressed by removing the vulnerable code. This issue is fixed in macOS Tahoe 26.3. An app may be able to access protected user data...

5.5AI score0.00127EPSS
Exploits0References1
EUVD
EUVD
added 2026/02/11 10:58 p.m.6 views

EUVD-2026-5925

A permissions issue was addressed by removing the vulnerable code. This issue is fixed in macOS Tahoe 26.3. An app may be able to access protected user data...

5.5CVSS5.5AI score0.00127EPSS
Exploits0References1
Redos
Redos
added 2026/02/11 12:0 a.m.5 views

ROS-20260211-73-0008

A vulnerability in the miinwayrestart function of the Linux kernel is related to incorrect input data validation. Exploitation of the vulnerability may allow an intruder to gain unauthorized access to protected information...

5.5CVSS5.5AI score0.00154EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/01/29 12:0 a.m.3 views

PT-2026-8220

Name of the Vulnerable Software and Affected Versions Grafana affected versions not specified Description The Grafana monitoring and observation platform contains a flaw due to insufficient access control within a correlation function. Remote attackers may be able to gain unauthorized access to...

3.6CVSS5.8AI score0.00204EPSS
Exploits0References8
Redos
Redos
added 2026/01/29 12:0 a.m.5 views

ROS-20260129-73-0013

A vulnerability in the OBEX protocol implementation of the Bluetooth protocol stack for Linux BlueZ is related to reading outside the valid range. Exploitation of the vulnerability could allow a remote attacker to gain access to protected information...

5.7CVSS5.9AI score0.00949EPSS
Exploits0
Redos
Redos
added 2026/01/29 12:0 a.m.6 views

ROS-20260129-73-0047

Vulnerability in nextcloud related to authorization bypass through the use of a user-controlled key. Exploitation of the vulnerability could allow a remote attacker to gain unauthorized access to protected information...

4.3CVSS5.9AI score0.00238EPSS
Exploits0
EUVD
EUVD
added 2026/01/28 9:31 p.m.6 views

EUVD-2023-25645

Access of Memory Location After End of Buffer vulnerability in TIGERF trustlet prior to SMR Apr-2023 Release 1 allows local attackers to access protected data...

7.9CVSS5.9AI score0.00133EPSS
Exploits0References2
Redos
Redos
added 2026/01/28 12:0 a.m.5 views

ROS-20260128-73-0025

A vulnerability in the Linux operating system kernel is related to a pointer dereferencing bug. Exploitation of the vulnerability could allow an attacker acting remotely to affect the availability of protected information...

5.5CVSS5.9AI score0.00183EPSS
Exploits0
Redos
Redos
added 2026/01/22 12:0 a.m.7 views

ROS-20260122-73-0002

Vulnerability in openstack-ironic-python-agent related to a flaw in the authorization procedure. Exploitation of the vulnerability may allow a remote attacker to gain unauthorized access to protected information...

4.3CVSS5.6AI score0.00545EPSS
Exploits0
CVE
CVE
added 2026/01/17 7:27 a.m.22 views

CVE-2025-12129

CVE-2025-12129 affects the CubeWP – All-in-One Dynamic Content Framework WordPress plugin (versions up to and including 1.1.27). Unauthenticated attackers can exfiltrate data from password-protected, private, or draft posts via the REST endpoints /cubewp-posts/v1/query-new and /cubewp-posts/v1/qu...

5.3CVSS5.8AI score0.00219EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/09 10:15 a.m.8 views

CVE-2019-2119

In multiple functions of keystoreservice.cpp, there is a possible Information Disclosure due to improper locking. This could lead to local information disclosure of protected data with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android...

5.5CVSS6.2AI score0.00115EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:30 a.m.7 views

CVE-2023-29103

A vulnerability has been identified in SIMATIC Cloud Connect 7 CC712 All versions = V2.0 = V2.0 V2.1, SIMATIC Cloud Connect 7 CC716 All versions V2.1. The affected device uses a hard-coded password to protect the diagnostic files. This could allow an authenticated attacker to access protected dat...

4.3CVSS6.6AI score0.00387EPSS
Exploits0References1
Rows per page
Query Builder