Lucene search
K

2084 matches found

NVD
NVD
added 2026/05/12 2:16 a.m.18 views

CVE-2026-45391

A command injection vulnerability in Cribl Edge for Linux versions 3.2.0 through 4.17.0 allows a local unprivileged user to execute arbitrary commands in the context of the Cribl Edge service account...

9.8CVSS0.00889EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/12 1:6 a.m.8 views

CVE-2026-45393

A vulnerability chain in Cribl Edge for Windows before 4.17.1 allows a local authenticated user to escalate privileges to NT AUTHORITY\SYSTEM. Incorrect default permissions on the Windows installer's authentication directory CWE-276 expose a cryptographic secret used for JWT signing and...

9.8CVSS5.8AI score0.00221EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/12 1:6 a.m.44 views

CVE-2026-45393 Local privilege escalation to SYSTEM in Cribl Edge for Windows

A vulnerability chain in Cribl Edge for Windows before 4.17.1 allows a local authenticated user to escalate privileges to NT AUTHORITY\SYSTEM. Incorrect default permissions on the Windows installer's authentication directory CWE-276 expose a cryptographic secret used for JWT signing and...

8.5CVSS0.00221EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/12 1:6 a.m.9 views

CVE-2026-45393 Local privilege escalation to SYSTEM in Cribl Edge for Windows

A vulnerability chain in Cribl Edge for Windows before 4.17.1 allows a local authenticated user to escalate privileges to NT AUTHORITY\SYSTEM. Incorrect default permissions on the Windows installer's authentication directory CWE-276 expose a cryptographic secret used for JWT signing and...

8.5CVSS5.8AI score0.00221EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/12 1:6 a.m.6 views

CVE-2026-45392 DOM-based XSS in Cribl Stream

DOM-based cross-site scripting XSS in Cribl Stream before 4.17.1 allows a remote attacker to execute arbitrary JavaScript in the browser of an authenticated user who is tricked into visiting a crafted URL and interacting with the page...

8.7CVSS5.9AI score0.00281EPSS
Exploits0References2
CVE
CVE
added 2026/05/12 1:6 a.m.20 views

CVE-2026-45392

Technical details about CVE-2026-45392 are not publicly available in the provided documents. Monitor for updates from official disclosures; no affected product/version, root cause, impact, or remediation information is provided here.

9.8CVSS5.9AI score0.00281EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/12 1:6 a.m.7 views

CVE-2026-45392

DOM-based cross-site scripting XSS in Cribl Stream before 4.17.1 allows a remote attacker to execute arbitrary JavaScript in the browser of an authenticated user who is tricked into visiting a crafted URL and interacting with the page...

9.8CVSS5.9AI score0.00281EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/12 1:6 a.m.7 views

CVE-2026-45391

A command injection vulnerability in Cribl Edge for Linux versions 3.2.0 through 4.17.0 allows a local unprivileged user to execute arbitrary commands in the context of the Cribl Edge service account...

9.8CVSS6.1AI score0.00889EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/12 1:6 a.m.8 views

CVE-2026-45391 Local privilege escalation in Cribl Edge for Linux

A command injection vulnerability in Cribl Edge for Linux versions 3.2.0 through 4.17.0 allows a local unprivileged user to execute arbitrary commands in the context of the Cribl Edge service account...

8.5CVSS6.1AI score0.00889EPSS
Exploits0References2
CVE
CVE
added 2026/05/12 1:6 a.m.16 views

CVE-2026-45391

Technical details about CVE-2026-45391 are not publicly available in the provided documents. Monitor for updates.

9.8CVSS6.1AI score0.00889EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/12 12:0 a.m.12 views

PT-2026-39915

Name of the Vulnerable Software and Affected Versions The product name cannot be determined. Description Details regarding this issue will be published at disclosure. Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability...

9.8CVSS5.8AI score0.00281EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/05/12 12:0 a.m.12 views

PT-2026-39914

Name of the Vulnerable Software and Affected Versions The product name cannot be determined. Description Details regarding this issue will be published at disclosure. Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability...

9.8CVSS5.8AI score0.00889EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/05/12 12:0 a.m.16 views

PT-2026-39916

Name of the Vulnerable Software and Affected Versions Apache HTTP Server affected versions not specified Description Details regarding this Server-Side Request Forgery SSRF issue will be published at disclosure. Recommendations At the moment, there is no information about a newer version that...

9.8CVSS5.8AI score0.00221EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/05/08 5:57 p.m.13 views

CVE-2025-71300

A flaw was found in the Linux kernel, specifically within the OP-TEE Open Portable Trusted Execution Environment integration with U-Boot. The U-Boot's OP-TEE logic automatically injects a reserved-memory node into the kernel device tree. However, a manually defined OP-TEE node in zynqmp.dtsi...

5.5CVSS5.8AI score0.00138EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/08 3:31 p.m.11 views

EUVD-2026-28631

In the Linux kernel, the following vulnerability has been resolved: arm64: dts: qcom: monaco: Reserve full Gunyah metadata region We observe spurious "Synchronous External Abort" exceptions ESR=0x96000010 and kernel crashes on Monaco-based platforms. These faults are caused by the kernel...

5.8AI score0.00335EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/08 3:31 p.m.10 views

EUVD-2025-209749

In the Linux kernel, the following vulnerability has been resolved: Revert "arm64: zynqmp: Add an OP-TEE node to the device tree" This reverts commit 06d22ed6b6635b17551f386b50bb5aaff9b75fbe. OP-TEE logic in U-Boot automatically injects a reserved-memory node along with optee firmware node to...

5.8AI score0.00138EPSS
Exploits0References5
NVD
NVD
added 2026/05/08 2:16 p.m.11 views

CVE-2026-43347

In the Linux kernel, the following vulnerability has been resolved: arm64: dts: qcom: monaco: Reserve full Gunyah metadata region We observe spurious "Synchronous External Abort" exceptions ESR=0x96000010 and kernel crashes on Monaco-based platforms. These faults are caused by the kernel...

7.5CVSS0.00335EPSS
Exploits0References3
NVD
NVD
added 2026/05/08 2:16 p.m.24 views

CVE-2025-71300

In the Linux kernel, the following vulnerability has been resolved: Revert "arm64: zynqmp: Add an OP-TEE node to the device tree" This reverts commit 06d22ed6b6635b17551f386b50bb5aaff9b75fbe. OP-TEE logic in U-Boot automatically injects a reserved-memory node along with optee firmware node to...

5.5CVSS0.00138EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/05/08 2:16 p.m.8 views

CVE-2025-71300

In the Linux kernel, the following vulnerability has been resolved: Revert "arm64: zynqmp: Add an OP-TEE node to the device tree" This reverts commit 06d22ed6b6635b17551f386b50bb5aaff9b75fbe. OP-TEE logic in U-Boot automatically injects a reserved-memory node along with optee firmware node to...

5.5CVSS5.8AI score0.00138EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2026/05/08 2:16 p.m.7 views

CVE-2026-43347

In the Linux kernel, the following vulnerability has been resolved: arm64: dts: qcom: monaco: Reserve full Gunyah metadata region We observe spurious "Synchronous External Abort" exceptions ESR=0x96000010 and kernel crashes on Monaco-based platforms. These faults are caused by the kernel...

7.5CVSS5.8AI score0.00335EPSS
Exploits0References5
Rows per page
Query Builder