Lucene search
K

6304 matches found

redhatcve
redhatcve
added 2026/06/05 7:35 p.m.10 views

CVE-2026-32964

SD-330AC and AMC Manager provided by silex technology, Inc. contain an improper neutralization of CRLF sequences 'CRLF Injection' vulnerability. Processing some crafted configuration data may lead to arbitrary entries injected to the system configuration...

6.9CVSS7.2AI score0.00277EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:35 p.m.10 views

CVE-2026-32962

SD-330AC and AMC Manager provided by silex technology, Inc. contain a missing authentication for critical function issue. The device configuration may be altered without authentication...

6.9CVSS7.1AI score0.00274EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:35 p.m.11 views

CVE-2026-32957

SD-330AC and AMC Manager provided by silex technology, Inc. contain a missing authentication for critical function issue on firmware maintenance. Arbitrary file may be uploaded on the device without authentication...

6.9CVSS7.2AI score0.00274EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:29 p.m.19 views

CVE-2026-20209

A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an authenticated, remote attacker with read-only permissions to elevate their privileges from low to high and perform actions as a high-privileged user. This vulnerability exists because sensitive...

5.4CVSS5.5AI score0.00194EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:25 p.m.12 views

CVE-2026-0244

An improper certificate validation vulnerability in the Palo Alto Networks Prisma SD-WAN ION enables man-in-the-middle MitM attacker to impersonate the controller...

7.7CVSS5.5AI score0.00107EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:20 p.m.11 views

CVE-2026-32956

SD-330AC and AMC Manager provided by silex technology, Inc. contain a heap-based buffer overflow vulnerability in processing the redirect URLs. Arbitrary code may be executed on the device...

9.8CVSS7.5AI score0.00522EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:20 p.m.11 views

CVE-2026-32959

SD-330AC and AMC Manager provided by silex technology, Inc. contain an issue with a use of a broken or risky cryptographic algorithm. Information in the traffic may be retrieved via man-in-the-middle attack...

8.2CVSS7.1AI score0.00209EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:20 p.m.9 views

CVE-2026-32955

SD-330AC and AMC Manager provided by silex technology, Inc. contain a stack-based buffer overflow vulnerability in processing the redirect URLs. Arbitrary code may be executed on the device...

8.8CVSS7.6AI score0.00624EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:20 p.m.10 views

CVE-2026-32965

Initialization of a resource with an insecure default vulnerability exists in SD-330AC and AMC Manager provided by silex technology, Inc. When the affected device is connected to the network with the initial factory-default configuration, the device can be configured with the null string password...

8.7CVSS7.1AI score0.00346EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:15 p.m.11 views

CVE-2026-20224

A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an unauthenticated, remote attacker to read arbitrary files that are stored in an affected system. The attacker does not need to have valid user credentials. This vulnerability is due to improper...

8.6CVSS5.7AI score0.00696EPSS
Exploits0References1
ncsc
ncsc
added 2026/06/05 9:38 a.m.13 views

Kwetsbaarheid verholpen in Cisco SD-WAN Manager

Cisco has identified a vulnerability in SD-WAN Manager, previously known as SD-WAN vManage. A malicious individual could exploit this vulnerability by uploading a specially crafted file to the affected system and thereby elevating their privileges to root user status. Cisco indicates that active...

7.8CVSS5.5AI score0.25323EPSS
Exploits2References1
vulncheck_kev
vulncheck_kev
added 2026/06/05 12:0 a.m.22 views

VulnCheck KEV: CVE-2026-20245

A vulnerability in the CLI of Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, and Cisco Catalyst SD-WAN Validator, formerly SD-WAN vBond, could allow an authenticated, local attacker to execute arbitrary commands as root by supplyi...

7.8CVSS6.3AI score0.25323EPSS
In wildExploits2References5
cisco
cisco
added 2026/06/04 10:27 p.m.93 views

Cisco Catalyst SD-WAN Controller, Catalyst SD-WAN Manager, and Catalyst SD-WAN Validator Authenticated Privilege Escalation Vulnerability

A vulnerability in the CLI of Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, and Cisco Catalyst SD-WAN Validator, formerly SD-WAN vBond, could allow an authenticated, local attacker to execute arbitrary commands as root by supplyi...

7.8CVSS5.9AI score
Exploits0References1
ptsecurity
ptsecurity
added 2026/06/04 12:0 a.m.24 views

PT-2026-46400

Name of the Vulnerable Software and Affected Versions Cisco Catalyst SD-WAN Controller affected versions not specified Cisco Catalyst SD-WAN Manager affected versions not specified Cisco Catalyst SD-WAN Validator affected versions not specified Description A vulnerability in the CLI and web...

7.8CVSS7.3AI score0.25323EPSS
Exploits2References249
cnnvd
cnnvd
added 2026/06/04 12:0 a.m.8 views

Cisco Catalyst SD-WAN Manager 安全漏洞

Cisco Catalyst SD-WAN Manager is a highly customizable dashboard provided by Cisco. It simplifies and automates the deployment, configuration, management, and operation of Cisco SD-WAN. There is a security vulnerability present in Cisco Catalyst SD-WAN Manager, which stems from insufficient user...

7.8CVSS6.3AI score0.25323EPSS
Exploits2References2
nvd
nvd
added 2026/05/27 2:17 p.m.11 views

CVE-2026-45997

In the Linux kernel, the following vulnerability has been resolved: scsi: sd: fix missing putdisk when deviceadd&diskdev fails If deviceadd&sdkp-diskdev fails, putdevice runs scsidiskrelease, which frees the scsidisk but leaves the gendisk referenced. The deviceadddisk error path in sdprobe calls...

5.5CVSS0.00123EPSS
Exploits0References6
osv
osv
added 2026/05/27 2:17 p.m.17 views

UBUNTU-CVE-2026-45997

In the Linux kernel, the following vulnerability has been resolved: scsi: sd: fix missing putdisk when deviceadd&diskdev fails If deviceadd&sdkp-diskdev fails, putdevice runs scsidiskrelease, which frees the scsidisk but leaves the gendisk referenced. The deviceadddisk error path in sdprobe calls...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References7
cvelist
cvelist
added 2026/05/27 12:55 p.m.43 views

CVE-2026-45997 scsi: sd: fix missing put_disk() when device_add(&disk_dev) fails

In the Linux kernel, the following vulnerability has been resolved: scsi: sd: fix missing putdisk when deviceadd&diskdev fails If deviceadd&sdkp-diskdev fails, putdevice runs scsidiskrelease, which frees the scsidisk but leaves the gendisk referenced. The deviceadddisk error path in sdprobe calls...

0.00123EPSS
Exploits0References6
ptsecurity
ptsecurity
added 2026/05/27 12:0 a.m.15 views

PT-2026-43864

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A reference-count leak occurs in the SCSI subsystem. When the device add&disk dev function fails, put device triggers scsi disk release, which frees the scsi disk but fails to release th...

5.5CVSS5.8AI score0.00123EPSS
Exploits0
ubuntucve
ubuntucve
added 2026/05/27 12:0 a.m.9 views

CVE-2026-45997

scsi: sd: fix missing putdisk when deviceadd&diskdev fails...

5.8AI score0.00123EPSS
Exploits0References2
Rows per page
Query Builder