Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CVE
CVEadded 2026/06/09 11:49 p.m.32 views

CVE-2026-41728

Spring Data REST is affected by CVE-2026-41728 due to its JSON Patch (application/json-patch+json) handling not applying the write-access filter to intermediate path segments when resolving multi-segment JSON Pointers. Affected versions include Spring Data REST 3.7.0–3.7.19; 4.3.0–4.3.16; 4.4.0–4...

7.5CVSS5.5AI score0.00306EPSS
Exploits0References1Affected Software1
Spring Security Advisories
Spring Security Advisoriesadded 2026/06/09 12:0 a.m.6 views

CVE-2026-41728: Spring Data REST JSON Patch bypasses Jackson read-only property protection on nested objects and collections

Spring Data REST's JSON Patch application/json-patch+json implementation does not apply the write-access filter to intermediate path segments when resolving a multi-segment JSON Pointer. Affected applications are those whose domain model includes an embeddable object, collection, or map property...

7.5CVSS5.8AI score0.00306EPSS
Exploits0References1Affected Software1
CNNVD
CNNVDadded 2026/06/04 12:0 a.m.6 views

GNCC GP5 安全漏洞

GNCC GP5 is a 2K indoor security camera produced by GNCC Corporation. The GNCC GP5 v7.1.76 version contains a security vulnerability. This vulnerability stems from a lack of runtime integrity checks, which may allow physical proximity attackers to bypass the file system’s read-only protection and...

4.6CVSS5.2AI score0.00158EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2023/08/02 12:0 a.m.14 views

Moxa Industrial Managed Switch Improper Privilege Management (CVE-2015-6464)

The administrative web interface on Moxa EDS-405A and EDS-408A switches with firmware before 3.6 allows remote authenticated users to bypass a read-only protection mechanism by using Firefox with a web- developer plugin. This plugin only works with Tenable.ot. Please visit...

8.5CVSS5.5AI score0.02004EPSS
Exploits0References3
The Hacker News
The Hacker Newsadded 2018/07/11 11:38 a.m.140 views

Two New Spectre-Class CPU Flaws Discovered—Intel Pays $100K Bounty

Intel has paid out a $100,000 bug bounty for new processor vulnerabilities that are related to Spectre variant one CVE-2017-5753. The new Spectre-class variants are tracked as Spectre 1.1 CVE-2018-3693 and Spectre 1.2, of which Spectre 1.1 described as a bounds-check bypass store attack has been...

5.6CVSS3.3AI score0.93838EPSS
Exploits12
NVD
NVDadded 2015/09/11 4:59 p.m.14 views

CVE-2015-6464

The administrative web interface on Moxa EDS-405A and EDS-408A switches with firmware before 3.6 allows remote authenticated users to bypass a read-only protection mechanism by using Firefox with a web-developer plugin...

8.5CVSS6.3AI score0.02004EPSS
Exploits0References2
Cvelist
Cvelistadded 2015/09/11 4:0 p.m.24 views

CVE-2015-6464

The administrative web interface on Moxa EDS-405A and EDS-408A switches with firmware before 3.6 allows remote authenticated users to bypass a read-only protection mechanism by using Firefox with a web-developer plugin...

6.3AI score0.02004EPSS
Exploits0References2
Rows per page
Query Builder