Lucene search
K

867 matches found

RedhatCVE
RedhatCVE
added 2026/03/27 2:26 p.m.5 views

CVE-2021-27232

The RTSPLive555.dll ActiveX control in Pelco Digital Sentry Server 7.18.72.11464 has a SetCameraConnectionParameter stack-based buffer overflow. This can be exploited by a remote attacker to potentially execute arbitrary attacker-supplied code. The victim would have to visit a malicious webpage...

8.8CVSS7.6AI score0.01738EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:6 p.m.4 views

CVE-2026-26004

Sentry is a developer-first error tracking and performance monitoring tool. Versions prior to 26.1.0 have a cross-organization Insecure Direct Object Reference IDOR vulnerability in Sentry's GroupEventJsonView endpoint. Version 26.1.0 patches the issue...

7.1CVSS5.8AI score0.00241EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2026/03/18 12:42 a.m.2 views

cbs-sentry-dingding (=1.0.24), cbs-sentry-qyweixin (=1.0.1) +47 more potentially affected by CVE-2026-26004 via sentry (=20.8.0)

sentry PYPI version =20.8.0 is affected by a known vulnerability. The following packages have a transitive dependency on sentry and may be impacted: - cbs-sentry-dingding =1.0.24 - cbs-sentry-qyweixin =1.0.1 - csnp =0.0.5, =1.0.0, =0.2.4, =1.0.0, =0.1.0, =0.4.0, =0.1.0, =0.2.0 and more Source cve...

7.1CVSS5.8AI score0.00241EPSS
Exploits1
NVD
NVD
added 2026/03/18 12:16 a.m.4 views

CVE-2026-26004

Sentry is a developer-first error tracking and performance monitoring tool. Versions prior to 26.1.0 have a cross-organization Insecure Direct Object Reference IDOR vulnerability in Sentry's GroupEventJsonView endpoint. Version 26.1.0 patches the issue...

7.1CVSS0.00241EPSS
Exploits1References3
CNNVD
CNNVD
added 2026/03/18 12:0 a.m.7 views

Sentry 安全漏洞

Sentry is an open-source error tracking and performance monitoring platform for developers. Versions of Sentry prior to 26.1.0 contained a security vulnerability, which stemmed from an insecure direct object reference in the GroupEventJsonView endpoint across organizations...

7.1CVSS5.8AI score0.00241EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/03/17 11:21 p.m.3 views

CVE-2026-26004

Sentry is a developer-first error tracking and performance monitoring tool. Versions prior to 26.1.0 have a cross-organization Insecure Direct Object Reference IDOR vulnerability in Sentry's GroupEventJsonView endpoint. Version 26.1.0 patches the issue...

7.1CVSS5.8AI score0.00241EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2026/03/17 11:21 p.m.36 views

CVE-2026-26004 Sentry allows unauthorized access to event data across organizational boundaries

Sentry is a developer-first error tracking and performance monitoring tool. Versions prior to 26.1.0 have a cross-organization Insecure Direct Object Reference IDOR vulnerability in Sentry's GroupEventJsonView endpoint. Version 26.1.0 patches the issue...

7.1CVSS0.00241EPSS
Exploits1References3
EUVD
EUVD
added 2026/03/17 11:21 p.m.3 views

EUVD-2026-12673

Sentry is a developer-first error tracking and performance monitoring tool. Versions prior to 26.1.0 have a cross-organization Insecure Direct Object Reference IDOR vulnerability in Sentry's GroupEventJsonView endpoint. Version 26.1.0 patches the issue...

7.1CVSS5.8AI score0.00241EPSS
Exploits1References3
OSV
OSV
added 2026/03/17 11:21 p.m.4 views

CVE-2026-26004 Sentry allows unauthorized access to event data across organizational boundaries

Sentry is a developer-first error tracking and performance monitoring tool. Versions prior to 26.1.0 have a cross-organization Insecure Direct Object Reference IDOR vulnerability in Sentry's GroupEventJsonView endpoint. Version 26.1.0 patches the issue...

7.1CVSS5.9AI score0.00241EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/03/17 12:0 a.m.8 views

PT-2026-25961

Sentry is a developer-first error tracking and performance monitoring tool. Versions prior to 26.1.0 have a cross-organization Insecure Direct Object Reference IDOR vulnerability in Sentry's GroupEventJsonView endpoint. Version 26.1.0 patches the issue...

7.1CVSS5.8AI score0.00241EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2026/02/23 7:26 a.m.6 views

CVE-2026-27197

Sentry is a developer-first error tracking and performance monitoring tool. Versions 21.12.0 through 26.1.0 have a critical vulnerability in its SAML SSO implementation which allows an attacker to take over any user account by using a malicious SAML Identity Provider and another organization on t...

9.1CVSS5.6AI score0.00435EPSS
Exploits0References1
NVD
NVD
added 2026/02/21 5:17 a.m.9 views

CVE-2026-27197

Sentry is a developer-first error tracking and performance monitoring tool. Versions 21.12.0 through 26.1.0 have a critical vulnerability in its SAML SSO implementation which allows an attacker to take over any user account by using a malicious SAML Identity Provider and another organization on t...

9.1CVSS0.00435EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/21 4:35 a.m.24 views

CVE-2026-27197 Sentry: Improper Authentication on SAML SSO process allows user identity linking

Sentry is a developer-first error tracking and performance monitoring tool. Versions 21.12.0 through 26.1.0 have a critical vulnerability in its SAML SSO implementation which allows an attacker to take over any user account by using a malicious SAML Identity Provider and another organization on t...

9.1CVSS0.00435EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/21 4:35 a.m.10 views

CVE-2026-27197

Sentry is a developer-first error tracking and performance monitoring tool. Versions 21.12.0 through 26.1.0 have a critical vulnerability in its SAML SSO implementation which allows an attacker to take over any user account by using a malicious SAML Identity Provider and another organization on t...

9.1CVSS5.7AI score0.00435EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/02/21 4:35 a.m.26 views

CVE-2026-27197

Affected product: Sentry (self-hosted) versions 21.12.0–26.1.0. Vulnerability: Critical flaw in the SAML SSO implementation that can allow an attacker to take over any user account by using a malicious SAML Identity Provider and another organization on the same Sentry instance. Conditions: Self-h...

9.1CVSS5.7AI score0.00435EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2026/02/21 4:35 a.m.7 views

CVE-2026-27197 Sentry: Improper Authentication on SAML SSO process allows user identity linking

Sentry is a developer-first error tracking and performance monitoring tool. Versions 21.12.0 through 26.1.0 have a critical vulnerability in its SAML SSO implementation which allows an attacker to take over any user account by using a malicious SAML Identity Provider and another organization on t...

9.1CVSS5.7AI score0.00435EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/02/21 12:0 a.m.9 views

Sentry 授权问题漏洞

Sentry is an open-source error tracking and performance monitoring platform designed for developers. Versions of Sentry from 21.12.0 to 26.1.0 have a security vulnerability related to authorization. This vulnerability stems from defects in the SAML single-sign-on implementation, which could allow...

9.1CVSS5.9AI score0.00435EPSS
Exploits0References1
Chainguard
Chainguard
added 2026/02/04 1:27 p.m.5 views

CVE-2026-25541 vulnerabilities

Vulnerabilities for packages: parseable, cargo-audit, nushell, sqlx, watchexec, guestproxyagent, pgcat, ntpd-rs, zed, atuin, geckodriver, samply, bootc, sccache, komodo, wash, wasmtime, jujutsu, mdbook, wadm, kdash, deno, py3-xet-core, lychee, ztunnel, asciinema, uv, wizer, cargo-c, oranda, garag...

7.5CVSS5.9AI score0.00559EPSS
Exploits1
Chainguard
Chainguard
added 2026/02/04 1:27 p.m.6 views

GHSA-434X-W66G-QW3R vulnerabilities

Vulnerabilities for packages: parseable, cargo-audit, nushell, sqlx, watchexec, guestproxyagent, pgcat, ntpd-rs, zed, atuin, geckodriver, samply, bootc, sccache, komodo, wash, wasmtime, jujutsu, mdbook, wadm, kdash, deno, py3-xet-core, lychee, ztunnel, asciinema, uv, wizer, cargo-c, oranda, garag...

5.9AI score
Exploits0
Redos
Redos
added 2026/01/22 12:0 a.m.7 views

ROS-20260122-73-0001

Vulnerability in python-sentry-sdk due to lack of protection for proprietary data. Exploitation of the vulnerability could allow a remote attacker to gain unauthorized access to protected information...

5.3CVSS5.6AI score0.00198EPSS
Exploits0
Rows per page
Query Builder