Lucene search
K

27022 matches found

ATTACKERKB
ATTACKERKB
added 2026/03/12 3:9 p.m.5 views

CVE-2026-21670

A vulnerability allowing a low-privileged user to extract saved SSH credentials...

7.7CVSS5.8AI score0.00401EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/03/12 2:22 p.m.4 views

EUVD-2026-11377

Copyparty ftp/sftp: Sharing a single file did not fully restrict source-folder access...

2.3CVSS5.8AI score0.00274EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/03/12 2:22 p.m.8 views

Copyparty ftp/sftp: Sharing a single file did not fully restrict source-folder access

There was a missing permission-check in the shares feature the shr global-option. This vulnerability only applies in the following scenario: The shares feature is used for the specific purpose of creating a share of just a single file inside a folder Either the FTP or SFTP server is enabled, and...

6.5CVSS5.8AI score0.00274EPSS
Exploits0References4Affected Software1
HackRead
HackRead
added 2026/03/12 11:47 a.m.12 views

Maintaining Security and Protecting Smart Home Devices from Hackers

Learn how to protect smart home devices from hackers. Strong passwords, updates and secure networks help keep cameras, sensors and data safe...

5.8AI score
Exploits0
ICS
ICS
added 2026/03/12 6:0 a.m.9 views

Inductive Automation Ignition Software

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to execute malicious code with OS application service account permissions that the authenticated, privileged application user did not intend on running. 2. RECOMMENDED PRACTICES CISA recommends users take...

6.8CVSS5.9AI score0.00345EPSS
Exploits0References13
Packet Storm News
Packet Storm News
added 2026/03/12 12:0 a.m.2 views

Security Considerations for Artificial Intelligence Agents

This article, a lightly adapted version of Perplexity's response to NIST/CAISI Request for Information 2025-0035, details our observations and recommendations concerning the security of frontier AI agents. These insights are informed by Perplexity's experience operating general-purpose agentic...

6AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/03/12 12:0 a.m.6 views

PT-2026-24956

Name of the Vulnerable Software and Affected Versions Veeam Backup and Replication affected versions not specified Description A flaw exists that could allow a low-privileged user to obtain saved SSH credentials. The issue involves the potential extraction of these credentials. Recommendations At...

7.7CVSS7.3AI score0.00401EPSS
Exploits0References5
Packet Storm News
Packet Storm News
added 2026/03/12 12:0 a.m.1 views

Systematic Security Analysis of the Iridium Satellite Radio Link

The Iridium Low Earth Orbit LEO satellite constellation remains a unique provider of global communications for critical industries, governments, and private users, serving over 2.5 million active subscribers despite recent market competition. In contrast to terrestrial wireless standards such as...

5.9AI score
Exploits0
EUVD
EUVD
added 2026/03/11 9:30 p.m.4 views

EUVD-2026-11408

FastGPT is an AI Agent building platform. In 4.14.7 and earlier, FastGPT's Python Sandbox fastgpt-sandbox includes guardrails intended to prevent file writes static detection + seccomp. These guardrails are bypassable by remapping stdout fd 1 to an arbitrary writable file descriptor using fcntl...

6.3CVSS5.9AI score0.00296EPSS
Exploits1References1
NVD
NVD
added 2026/03/11 9:16 p.m.4 views

CVE-2026-32108

Copyparty is a portable file server. Prior to 1.20.12, there was a missing permission-check in the shares feature the shr global-option. This vulnerability only applies when the shares feature is used for the specific purpose of creating a share of just a single file inside a folder or either the...

6.5CVSS0.00274EPSS
Exploits0References1
OSV
OSV
added 2026/03/11 9:16 p.m.9 views

PYSEC-2026-31

Copyparty is a portable file server. Prior to 1.20.12, there was a missing permission-check in the shares feature the shr global-option. This vulnerability only applies when the shares feature is used for the specific purpose of creating a share of just a single file inside a folder or either the...

6.5CVSS5.8AI score0.00274EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/11 8:14 p.m.4 views

CVE-2026-32108

Copyparty is a portable file server. Prior to 1.20.12, there was a missing permission-check in the shares feature the shr global-option. This vulnerability only applies when the shares feature is used for the specific purpose of creating a share of just a single file inside a folder or either the...

7.5CVSS5.8AI score0.00344EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/03/11 8:14 p.m.31 views

CVE-2026-32108 Copyparty ftp/sftp: Sharing a single file did not fully restrict source-folder access

Copyparty is a portable file server. Prior to 1.20.12, there was a missing permission-check in the shares feature the shr global-option. This vulnerability only applies when the shares feature is used for the specific purpose of creating a share of just a single file inside a folder or either the...

2.3CVSS0.00274EPSS
Exploits0References1
NVD
NVD
added 2026/03/11 5:16 p.m.5 views

CVE-2025-67035

An issue was discovered in Lantronix EDS5000 2.1.0.0R3. The SSH Client and SSH Server pages are affected by multiple OS injection vulnerabilities due to missing sanitization of input parameters. An attacker can inject arbitrary commands in delete actions of various objects, such as server keys,...

9.8CVSS0.00429EPSS
Exploits0References3
NVD
NVD
added 2026/03/11 5:16 p.m.3 views

CVE-2025-67034

An issue was discovered in Lantronix EDS5000 2.1.0.0R3. An authenticated attacker can inject OS commands into the "name" parameter when deleting SSL credentials through the management interface. Injected commands are executed with root privileges...

8.8CVSS0.00489EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2026/03/11 8:1 a.m.7 views

libssh SFTP Extension Name sftp.c sftp_extensions_get_data out-of-bounds

...

7.5CVSS6AI score0.00631EPSS
Exploits0
GithubExploit
GithubExploit
added 2026/03/11 1:30 a.m.400 views

Exploit for CVE-2026-20131

CVE-2026-20131 — Cisco Secure FMC Remote Code Execution Java...

10CVSS6.5AI score0.27551EPSS
Exploits4
Packet Storm News
Packet Storm News
added 2026/03/11 12:0 a.m.1 views

Security-By-Design for LLM-Based Code Generation: Leveraging Internal Representations for Concept-Driven Steering Mechanisms

Large Language Models LLMs show remarkable capabilities in understanding natural language and generating complex code. However, as practitioners adopt CodeLLMs for increasingly critical development tasks, research reveals that these models frequently generate functionally correct yet insecure cod...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/03/11 12:0 a.m.1 views

TOSSS: A CVE-Based Software Security Benchmark for Large Language Models

With their increasing capabilities, Large Language Models LLMs are now used across many industries. They have become useful tools for software engineers and support a wide range of development tasks. As LLMs are increasingly used in software development workflows, a critical question arises: are...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/03/11 12:0 a.m.7 views

MirrorDrift: Actuated Mirror-Based Attacks on LiDAR SLAM

LiDAR SLAM provides high-accuracy localization but is fragile to point-cloud corruption because scan matching assumes geometric consistency. Prior physical attacks on LiDAR SLAM largely rely on LiDAR spoofing via external signal injection, which requires sensor-specific timing knowledge and is...

5.7AI score
Exploits0
Rows per page
Query Builder