CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1162 matches found

CVE-2026-10174

Summary of CVE-2026-10174 (Aider-AI Aider 0.86.3): Affected is an unknown function in the file aider/args.py of the Pre-commit Hook Handler. Manipulation of the argument git-commit-verify leads to protection mechanism failure. The vulnerability may be exploitable remotely, with exploitation infor...

6.5CVSS6.3AI score0.00061EPSS

Exploits0References6

Snyk•added 2026/05/29 6:8 p.m.•5 views

Protection Mechanism Failure

Overview org.webjars.npm:vm2 is a sandbox that can run untrusted code with whitelisted Node's built-in modules. Affected versions of this package are vulnerable to Protection Mechanism Failure through the NodeVM builtin wildcard expansion in lib/builtin.js. An attacker can load Node’s private...

9.3CVSS5.9AI score

Exploits0References2

Vulnrichment•added 2026/05/21 1:4 p.m.•4 views

CVE-2026-45206

An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to escalate privileges on affected installations. This is similar to CVE-2026-45207 but exists in a different process protection communication mechanism. Please note: an attacker must first obtain the abilit...

7.8CVSS6AI score0.00008EPSS

Exploits0References1

Positive Technologies•added 2026/05/21 12:0 a.m.•6 views

PT-2026-42469

Name of the Vulnerable Software and Affected Versions Apex One/SEP agent affected versions not specified Description An origin validation error in the process protection mechanism allows a local attacker to escalate privileges. To exploit this issue, the attacker must first have the ability to...

7.8CVSS7.1AI score0.00008EPSS

Exploits0References5

IBM Security Bulletins•added 2026/05/18 5:2 a.m.•10 views

Security Bulletin: Multiple vulnerabilities may affect IBM® SDK, Java™ Technology Edition for IBM Content Collector for SAP Applications

Summary Multiple Vulnerabilities were disclosed as part of the Oracle April 2026 Critical Patch Update. Vulnerability Details CVEID:CVE-2026-22016 DESCRIPTION: Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE...

7.5CVSS7.2AI score0.00154EPSS

Exploits0Affected Software2

Positive Technologies•added 2026/05/13 12:0 a.m.•8 views

PT-2026-40759

Name of the Vulnerable Software and Affected Versions Zoom Workplace for iOS versions prior to 7.0.0 Description A protection mechanism failure allows an authenticated user with physical access to the device to conduct a disclosure of information. Recommendations Update to version 7.0.0 or later...

4.3CVSS5.8AI score0.00019EPSS

Exploits0References4

Positive Technologies•added 2026/05/12 12:0 a.m.•5 views

PT-2026-41382

Уязвимость компонента BitLocker операционных систем Windows связана с нарушением механизма защиты данных. Эксплуатация уязвимости может позволить нарушителю получить несанкционированный доступ к защищаемой информации...

7.2CVSS5.8AI score

Exploits0References2

GithubExploit•added 2026/05/09 2:50 p.m.•65 views

Exploit for Protection Mechanism Failure in Microsoft

No d...

8.8CVSS6AI score0.04964EPSS

Exploits3

AstraLinux•added 2026/05/03 11:59 p.m.•1 views

Astra Linux - уязвимость в edk2

EDK2 contains a vulnerability in the BIOS, where an attacker can cause a “Protection Mechanism Failure” through local access. Successful exploitation of this vulnerability will lead to the execution of arbitrary code, compromising Confidentiality, Integrity, and Availability...

7CVSS6.5AI score0.00082EPSS

Exploits0References2

GithubExploit•added 2026/04/30 5:34 p.m.•63 views

Exploit for Protection Mechanism Failure in Microsoft

Exploit bash python3 CVE-2026-32202.py -h usage: CVE-2026-3...

8.8CVSS6.1AI score0.56822EPSS

Exploits5

CISA•added 2026/04/28 12:0 p.m.•4 views

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2024-1708link is external ConnectWise ScreenConnect Path Traversal Vulnerability CVE-2026-32202link is external Microsoft Windows Protection Mechanism Failure...

8.4CVSS8.7AI score0.8624EPSS

In wildExploits8References7

CISA KEV Catalog•added 2026/04/28 12:0 a.m.•4 views

Microsoft Windows Protection Mechanism Failure Vulnerability

Microsoft Windows Shell contains a protection mechanism failure vulnerability that allows an unauthorized attacker to perform spoofing over a network...

4.3CVSS5.5AI score0.56822EPSS

In wildExploits3

Snyk•added 2026/04/24 4:20 a.m.•7 views

Protection Mechanism Failure

Overview Affected versions of this package are vulnerable to Protection Mechanism Failure in the defmodule, defmethod, or defclass methods due to insufficient deserialization guards. An attacker can achieve arbitrary code execution by supplying crafted input to Marshal.load in a Ruby application...

9.2CVSS6.3AI score0.00048EPSS

Exploits0References2

RedhatCVE•added 2026/04/15 7:24 p.m.•0 views

CVE-2026-32202

Protection mechanism failure in Windows Shell allows an unauthorized attacker to perform spoofing over a network...

4.3CVSS5.8AI score0.56822EPSS

Exploits3References1

RedhatCVE•added 2026/04/15 7:23 p.m.•4 views

CVE-2026-32225

Protection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a security feature over a network...

8.8CVSS6.2AI score0.00094EPSS

Exploits0References1

Snyk•added 2026/04/14 8:2 p.m.•1 views

Protection Mechanism Failure

Overview Affected versions of this package are vulnerable to Protection Mechanism Failure in the collect process. An attacker can gain unauthorized access to restricted template functionality by leveraging insufficient sandbox restrictions when authenticated with backend access and template editi...

6.9CVSS5.7AI score0.00018EPSS

Exploits2References3