CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Nuclei•added 17 hours ago•84 views

Cisco IOS XE WLC - Arbitrary File Upload

A vulnerability in the Out-of-Band Access Point AP Image Download feature of Cisco IOS XE Software for Wireless LAN Controllers WLCs could allow an unauthenticated, remote attacker to upload arbitrary files to an affected system.This vulnerability is due to the presence of a hard-coded JSON Web...

10CVSS7.4AI score0.04623EPSS

Exploits1References2

Tenable Nessus•added 23 hours ago•1 views

Fedora 43 : dovecot (2026-693373747f)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-693373747f advisory. CVE-2026-27851: lib-var-expand: Safe filter marks all following pipelines safe. CVE-2026-33603: auth: CRAM-SHA--PLUS channel binding could be faked...

9.1CVSS5.8AI score0.0003EPSS

Exploits1References7

EUVD•added yesterday•3 views

EUVD-2026-33968

A remote buffer overflow vulnerability exists in the /cgi-bin/dido/setdo.cgi endpoint of the admin interface of Vivotek FD8136 cameras running firmware version FD8136-VVTK-0300a. This flaw allows an authenticated attacker to execute arbitrary code as root on the device...

6.4AI score

CNNVD•added 2 days ago•2 views

CodexBar security vulnerabilities

CodexBar is an AI programming service usage monitoring tool developed by Peter Steinberger. Versions of CodexBar prior to 0.32.0 contained a security vulnerability. This vulnerability stemmed from a race condition in the handling of temporary files during CLI installation, which could allow local...

7.5CVSS6.1AI score0.00058EPSS

Exploits0References4

RedhatCVE•added 4 days ago•6 views

CVE-2026-44713

pamusb provides hardware authentication for Linux using ordinary removable media. Prior to 0.8.7, src/tmux.c reads the user's $TMUX environment variable, splits it on commas, and interpolates the socket-path component directly into a shell command passed to popen. Because the value is placed insi...

8.8CVSS5.9AI score0.00023EPSS

ATTACKERKB•added 5 days ago•5 views

CVE-2026-45633

Dokploy is a free, self-hostable Platform as a Service PaaS. In 0.26.6 and earlier, Dokploy contains a command injection vulnerability in the /docker-container-logs WebSocket endpoint. The tail and since parameters are not validated and are directly concatenated into shell commands, allowing...

Exploits0References2Affected Software1

CVE•added 5 days ago•8 views

CVE-2026-45633

CVE-2026-45633 : Dokploy (PaaS) v0.26.6 and earlier suffers a command injection in the /docker-container-logs WebSocket endpoint. The tail and since parameters are not validated and are directly concatenated into shell commands, enabling authenticated users to execute arbitrary commands with root...

EUVD•added 5 days ago•6 views

EUVD-2026-33353

Positive Technologies•added 5 days ago•5 views

PT-2026-44937

Snyk•added 6 days ago•2 views

Incorrect Default Permissions

Overview Affected versions of this package are vulnerable to Incorrect Default Permissions due to insecure default permissions that grant regular users elevated privileges. An attacker can gain unauthorized access to host files and execute code with root-level privileges by leveraging authenticat...

9.4CVSS6AI score0.0005EPSS

NVD•added 6 days ago•11 views

CVE-2026-49238

An issue was discovered in Canonical Multipass before version 1.16.3. The host-side SFTP server component sshfsserver, which executes with root privileges on the host, contains a path containment bypass vulnerability within its validatepath function in src/sshfsmount/sftpserver.cpp. The function...

8.4CVSS0.00022EPSS

Exploits1References1

NVD•added 6 days ago•12 views

CVE-2026-49237

An issue was discovered in Canonical Multipass for macOS before version 1.16.3 due to an incomplete fix for CVE-2025-5199. While the patch in version 1.16.0 updated the ownership of the multipassd daemon binary to root:wheel, five co-located binaries multipass, qemu-img, qemu-system-aarch64,...

7.8CVSS0.0001EPSS

Exploits1References1

ATTACKERKB•added 6 days ago•5 views

CVE-2026-49237

7.8CVSS6AI score0.00044EPSS

Exploits2References2

Cvelist•added 6 days ago•28 views

CVE-2026-49238 SFTP Server VM Escape in Canonical Multipass

8.4CVSS0.00022EPSS

Exploits1References1

ATTACKERKB•added 6 days ago•6 views

CVE-2026-49238

8.4CVSS6AI score0.00022EPSS

Exploits1References2

RedhatCVE•added 6 days ago•9 views

CVE-2025-43306

A logic issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. A malicious app may be able to gain root privileges...

7.8CVSS5.8AI score0.00005EPSS

RedhatCVE•added 6 days ago•6 views

CVE-2025-46284

A race condition was addressed with additional validation. This issue is fixed in macOS Sequoia 15.7, macOS Tahoe 26. An app may be able to gain root privileges...

7CVSS5.8AI score0.00005EPSS

Vulnrichment•added 6 days ago•5 views

CVE-2026-38707

A command injection vulnerability exists in the IPSec VPN feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IR315 firmware V1.0.118, IR615 firmware V1.0.118, and earlier versions. Attackers can exploit this vulnerability to obtain ROOT privileges on remote target device...

5.8AI score0.00173EPSS

Cvelist•added 6 days ago•21 views

CVE-2026-38702

A command injection vulnerability exists in the Admin Access feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IR315 firmware V1.0.118, IR615 firmware V1.0.118, and earlier versions. Attackers can exploit this vulnerability to obtain ROOT privileges on remote target...

0.00173EPSS