Lucene search
K

688 matches found

ATTACKERKB
ATTACKERKB
added 2026/04/07 4:30 p.m.4 views

CVE-2026-4631

Cockpit's remote login feature passes user-supplied hostnames and usernames from the web interface to the SSH client without validation or sanitization. An attacker with network access to the Cockpit web service can craft a single HTTP request to the login endpoint that injects malicious SSH...

9.8CVSS6.4AI score0.142EPSS
Exploits4References8
Debian CVE
Debian CVE
added 2026/04/07 4:30 p.m.10 views

CVE-2026-4631

Cockpit's remote login feature passes user-supplied hostnames and usernames from the web interface to the SSH client without validation or sanitization. An attacker with network access to the Cockpit web service can craft a single HTTP request to the login endpoint that injects malicious SSH...

9.8CVSS6.2AI score0.142EPSS
Exploits4
CNNVD
CNNVD
added 2026/04/07 12:0 a.m.10 views

Cockpit 操作系统命令注入漏洞

Cockpit is an interactive server management interface developed by Cockpit OpenSource. Cockpit has a vulnerability related to operating system command injection. This vulnerability arises from the remote login feature, which transmits the user-provided host name and username to the SSH client...

9.8CVSS6AI score0.142EPSS
Exploits4References3
CVE
CVE
added 2026/03/27 9:27 p.m.17 views

CVE-2026-4990

Chatwoot

7.5CVSS6.6AI score0.0035EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/03/23 12:7 p.m.2 views

CVE-2026-31847

Hidden functionality in the /goform/setSysTools endpoint in Nexxt Solutions Nebula 300+ firmware through version 12.01.01.37 allows remote enablement of a Telnet service. By sending a crafted POST request with parameters such as telnetManageEn=true and telnetPwd, an authenticated attacker can...

8.5CVSS5.9AI score0.00424EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/23 12:0 a.m.7 views

PT-2026-30912

Name of the Vulnerable Software and Affected Versions Cockpit versions prior to 360 Description The remote login feature in Cockpit fails to validate or sanitize user-supplied hostnames and usernames passed from the web interface to the SSH client. An attacker with network access to the web servi...

10CVSS7AI score0.142EPSS
Exploits4References50
Fedora
Fedora
added 2026/03/22 12:18 a.m.5 views

[SECURITY] Fedora 44 Update: openssh-10.2p1-6.fc44

SSH Secure SHell is a program for logging into and executing commands on a remote machine. SSH is intended to replace rlogin and rsh, and to provide secure encrypted communications between two untrusted hosts over an insecure network. X11 connections and arbitrary TCP/IP ports can also be forward...

8.2CVSS6.9AI score0.0218EPSS
Exploits0
Fedora
Fedora
added 2026/03/21 1:11 a.m.8 views

[SECURITY] Fedora 42 Update: openssh-9.9p1-13.fc42

SSH Secure SHell is a program for logging into and executing commands on a remote machine. SSH is intended to replace rlogin and rsh, and to provide secure encrypted communications between two untrusted hosts over an insecure network. X11 connections and arbitrary TCP/IP ports can also be forward...

8.2CVSS6.9AI score0.0218EPSS
Exploits0
Cvelist
Cvelist
added 2026/03/18 7:34 a.m.27 views

CVE-2026-22320 Stack-Based Buffer Overflow in TFTP File-Transfer Command Handling over CLI

A stack-based buffer overflow in the CLI's TFTP file‑transfer command handling allows a low-privileged attacker with Telnet/SSH access to trigger memory corruption by supplying unexpected or oversized filename input. Exploitation results in the corruption of the internal buffer, causing the CLI a...

6.5CVSS0.00317EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/18 12:0 a.m.9 views

Phoenix Contact多款产品 安全漏洞

PHOENIX CONTACT FL SWITCH and PHOENIX CONTACT FL NAT are products of the German company PHOENIX CONTACT. PHOENIX CONTACT FL SWITCH is an industrial-grade Ethernet switch. PHOENIX CONTACT FL NAT is a series of industrial security gateways. Several products from Phoenix Contact have security...

5.3CVSS6.1AI score0.00366EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/17 3:20 p.m.3 views

CVE-2026-23759

Perle IOLAN STS/SCS terminal server models with firmware versions prior to 6.0 allow authenticated OS command injection via the restricted shell accessed over Telnet or SSH. The shell 'ps' command does not perform proper argument sanitization and passes user-supplied parameters into an 'sh -c'...

8.6CVSS6.1AI score0.01509EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/03/16 11:2 a.m.3 views

CVE-2026-4235 itsourcecode Online Enrollment System login.php sql injection

A weakness has been identified in itsourcecode Online Enrollment System 1.0. This issue affects some unknown processing of the file /sms/login.php. This manipulation of the argument useremail causes sql injection. The attack is possible to be carried out remotely. The exploit has been made...

7.5CVSS5.7AI score0.00254EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/03/05 7:31 p.m.5 views

CVE-2026-20009

A vulnerability in the implementation of the proprietary SSH stack with SSH key-based authentication in Cisco Secure Firewall Adaptive Security Appliance ASA Software could allow an unauthenticated, remote attacker to log in to a Cisco Secure Firewall ASA device and execute commands as a specific...

5.3CVSS6.1AI score0.00381EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/04 6:31 p.m.7 views

EUVD-2026-9429

A vulnerability in the implementation of the proprietary SSH stack with SSH key-based authentication in Cisco Secure Firewall Adaptive Security Appliance ASA Software could allow an unauthenticated, remote attacker to log in to a Cisco Secure Firewall ASA device and execute commands as a specific...

5.3CVSS6.1AI score0.00381EPSS
Exploits0References2
NVD
NVD
added 2026/03/04 6:16 p.m.5 views

CVE-2026-20009

A vulnerability in the implementation of the proprietary SSH stack with SSH key-based authentication in Cisco Secure Firewall Adaptive Security Appliance ASA Software could allow an unauthenticated, remote attacker to log in to a Cisco Secure Firewall ASA device and execute commands as a specific...

5.3CVSS0.00381EPSS
Exploits0References1
Cisco
Cisco
added 2026/03/04 4:0 p.m.8 views

Cisco Secure Firewall Adaptive Security Appliance Software SSH Partial Private Key Authentication Bypass Vulnerability

A vulnerability in the implementation of the proprietary SSH stack with SSH key-based authentication in Cisco Secure Firewall Adaptive Security Appliance ASA Software could allow an unauthenticated, remote attacker to log in to a Cisco Secure Firewall ASA device and execute commands as a specific...

5.3CVSS6.1AI score0.00381EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/04 7:49 a.m.4 views

CVE-2026-28778 Hardcoded FTP Credentials and LPE(via Insecure Permissions) for `xd` Local Account on IDC SFX2100

International Datacasting Corporation IDC SFX Series SuperFlex Satellite Receiver contains undocumented, hardcoded/insecure credentials for the xd user account. A remote unauthenticated attacker can log in via FTP using these credentials. Because the xd user has write permissions to their home...

7.9CVSS6.5AI score0.00849EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/02/27 12:0 a.m.10 views

SODOLA SL902-SWTGW124AS 安全漏洞

SODOLA SL902-SWTGW124AS is an industrial switch manufactured by the Spanish company SODOLA. Versions of SODOLA SL902-SWTGW124AS prior to version 200.1.20 contain security vulnerabilities. These vulnerabilities stem from authentication bypass vulnerabilities, which may allow remote attackers to...

6.9CVSS5.8AI score0.00328EPSS
Exploits0References3
CISA KEV Catalog
CISA KEV Catalog
added 2026/02/25 12:0 a.m.14 views

Cisco Catalyst SD-WAN Controller and Manager Authentication Bypass Vulnerability

Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, and Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, contain an authentication bypass vulnerability could allow an unauthenticated, remote attacker to bypass authentication and obtain administrative privileges on an affected system...

10CVSS5.8AI score0.57793EPSS
In wildExploits10
Cvelist
Cvelist
added 2026/02/17 4:30 p.m.36 views

CVE-2026-23647 Glory RBG-100 Recycler System Hard-coded OS Credentials

Glory RBG-100 recycler systems using the ISPK-08 software component contain hard-coded operating system credentials that allow remote authentication to the underlying Linux system. Multiple local user accounts, including accounts with administrative privileges, were found to have fixed, embedded...

9.8CVSS0.00579EPSS
Exploits0References2
Rows per page
Query Builder