CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added last week•5 views

CVE-2026-46778

10CVSS0.0045EPSS

NCSC•added last week•7 views

Vulnerabilities in Oracle Fusion Middleware products

Oracle has identified several vulnerabilities in various products within the Oracle Fusion Middleware suite, including WebLogic Server, WebCenter Content, WebCenter Sites, WebCenter Portal, WebCenter Enterprise Capture, Identity Manager, Identity Manager Connector, Access Manager, Coherence,...

10CVSS5.9AI score0.00552EPSS

Positive Technologies•added 2026/06/16 12:0 a.m.•8 views

PT-2026-49914

Name of the Vulnerable Software and Affected Versions Oracle WebCenter Enterprise Capture versions 12.2.1.4.0 Oracle WebCenter Enterprise Capture versions 14.1.2.0.0 Description An issue in the Client Bundle component of Oracle WebCenter Enterprise Capture allows an unauthenticated attacker with...

10CVSS5.3AI score0.00473EPSS

Positive Technologies•added 2026/06/16 12:0 a.m.•11 views

PT-2026-49908

Name of the Vulnerable Software and Affected Versions Oracle Unified Directory version 12.2.1.4.0 Oracle Unified Directory version 14.1.2.1.0 Description An issue exists in the OUD Core component of the Oracle Unified Directory product of Oracle Fusion Middleware. An unauthenticated attacker with...

9.8CVSS5.8AI score0.00508EPSS

CVE•added 2026/06/10 12:39 p.m.•36 views

CVE-2026-52751

Affected software : Ghidra before 12.1. Vulnerability : Unsafe deserialization in client-side Shared-Project RMI connection code enables unauthenticated remote code execution when a crafted ghidra:// project file is opened via File → Open Project. The attack deserializes untrusted objects using a...

8.8CVSS6.3AI score0.00564EPSS

Exploits1References3Affected Software1

RedhatCVE•added 2026/06/05 7:41 p.m.•8 views

CVE-2025-7389

A vulnerability in the AdminServer component of OpenEdge on all supported platforms grants its authenticated users OS-level access to the server through the adopted authority of the AdminServer process itself. The delegated authority of the AdminServer could allow its users the ability to read...

8.2CVSS5.7AI score0.00326EPSS

RedhatCVE•added 2026/05/11 8:27 p.m.•6 views

CVE-2026-8217

A security flaw has been discovered in Industrial Application Software IAS Canias ERP 8.03. Impacted is the function Runtime.getRuntime.exec of the component RMI Interface. Performing a manipulation of the argument troiaCode results in os command injection. The attack may be initiated remotely. T...

6.5CVSS6.3AI score0.01201EPSS

RedhatCVE•added 2026/05/11 8:27 p.m.•6 views

CVE-2026-8241

A vulnerability has been found in Industrial Application Software IAS Canias ERP 8.03. The affected element is the function iasGetServerInfoEvent of the component RMI Interface. Such manipulation leads to improper authorization. The attack can be executed remotely. The exploit has been disclosed ...

EUVD•added 2026/05/10 9:31 a.m.•10 views

EUVD-2026-28989

NVD•added 2026/05/10 9:16 a.m.•13 views

CVE-2026-8241

6.9CVSS0.00292EPSS

Cvelist•added 2026/05/10 9:15 a.m.•38 views

CVE-2026-8244 Industrial Application Software IAS Canias ERP Login RMI improper authentication

A vulnerability was identified in Industrial Application Software IAS Canias ERP 8.03. This impacts an unknown function of the component Login RMI Interface. The manipulation of the argument clientVersion leads to improper authentication. It is possible to initiate the attack remotely. The exploi...

6.9CVSS0.00403EPSS

CVE•added 2026/05/10 9:15 a.m.•13 views

CVE-2026-8244

CVE-2026-8244 affects Industrial Application Software IAS Canias ERP 8.03, specifically the Login RMI Interface. The vulnerability arises from manipulation of the clientVersion argument, leading to improper authentication. Attacks can be initiated remotely, and exploits are publicly available. Th...

6.9CVSS5.8AI score0.00403EPSS

Cvelist•added 2026/05/10 8:15 a.m.•37 views

CVE-2026-8242 Industrial Application Software IAS Canias ERP Login RMI doAction response discrepancy

A vulnerability was found in Industrial Application Software IAS Canias ERP 8.03. The impacted element is the function doAction of the component Login RMI Interface. Performing a manipulation results in observable response discrepancy. The attack is possible to be carried out remotely. A high...

6.3CVSS0.00289EPSS

Cvelist•added 2026/05/10 7:45 a.m.•41 views

CVE-2026-8241 Industrial Application Software IAS Canias ERP RMI iasGetServerInfoEvent improper authorization

6.9CVSS0.00292EPSS

Vulnrichment•added 2026/05/10 7:45 a.m.•9 views

CVE-2026-8241 Industrial Application Software IAS Canias ERP RMI iasGetServerInfoEvent improper authorization

CVE•added 2026/05/10 7:45 a.m.•12 views

CVE-2026-8241

The CVE-2026-8241 entry concerns Industrial Application Software IAS Canias ERP 8.03, where the RMI Interface’s iasGetServerInfoEvent function allows improper authorization. The vulnerability is exploitable remotely and has had public disclosure. Connected data indicates a NETWORK-accessible issu...

EUVD•added 2026/05/10 3:33 a.m.•10 views

EUVD-2026-28951

A vulnerability was determined in Industrial Application Software IAS Canias ERP 8.03. This vulnerability affects the function iasRequestFileEvent of the component RMI Interface. This manipulation of the argument mstrSourceFileName causes path traversal. The attack can be initiated remotely. The...

6.9CVSS5.8AI score0.0055EPSS