CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2 days ago•6 views

EUVD-2019-20153

Dräger Infinity Delta, Delta XL, and Kappa patient monitors contain a denial-of-service vulnerability that allows remote attackers to cause the monitor to reboot by sending a malformed network packet. Attackers can repeatedly send malformed network packets to disrupt patient monitoring until the...

7.1CVSS5.8AI score0.00046EPSS

Exploits0References2

Cvelist•added 6 days ago•25 views

CVE-2026-6824 CP Plus 8 Ch. Network Video Recorder Cross-site Scripting

A stored cross-site scripting XSS vulnerability exists in certain 1xxx series NVR devices due to insufficient sanitization of user-supplied input in specific functional modules. Attackers can inject malicious scripts, which are then persistently stored on the device backend. When administrators o...

8.4CVSS0.00036EPSS

Exploits0References3

Nuclei•added 6 days ago•49 views

Juniper J-Web - Remote Code Execution

A PHP External Variable Modification vulnerability in J-Web of Juniper Networks Junos OS on EX Series and SRX Series allows an unauthenticated, network-based attacker to control certain environments variables to execute remote commands id: CVE-2023-36845 info: name: Juniper J-Web - Remote Code...

9.8CVSS7.2AI score0.94355EPSS

Exploits27References5

Vulnrichment•added 6 days ago•8 views

CVE-2026-6892

Improper handling of symbolic links in the installer of CUPS Printer Driver for macOS may allow a local attacker with login privileges to exploit a specially crafted symbolic link during installation to modify permissions of directories for which they would not normally have authorization. :Canon...

5.1CVSS5.8AI score0.00014EPSS

EUVD•added 6 days ago•9 views

EUVD-2026-33231

5.1CVSS5.8AI score0.00014EPSS

Positive Technologies•added 6 days ago•4 views

PT-2026-44969

8.4CVSS5.7AI score0.00036EPSS

Packet Storm News•added 6 days ago•4 views

GETA: Generalized Encrypted Traffic Analysis

Traditional traffic analysis is being fundamentally challenged by the rapid adoption of encryption, tunnelling, and privacy-preserving protocols, which increasingly obscure packet payloads and limit the usefulness of Deep Packet Inspection DPI. Although machine learning has advanced encrypted...

OSV•added last week•7 views

RLSA-2026:19351 Important: grafana-pcp security update

The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and bpftrace scripts from pmdabpftrace, as well as several dashboards. Security Fixes: golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root...

7.8CVSS7.3AI score0.00019EPSS

Exploits0References3

EUVD•added last week•6 views

EUVD-2026-32896

The Mennekes Amtron series firmware versions ≤ 5.22.3 is vulnerable to an authentication bypass. An unauthenticated remote attacker can change the password of the user account via a crafted POST request to the /operator/operator endpoint...

10CVSS5.8AI score0.00118EPSS

Exploits1References1

Fedora•added 2026/05/28 1:13 a.m.•8 views

[SECURITY] Fedora 44 Update: rrdtool-1.9.0-11.fc44

RRD is the Acronym for Round Robin Database. RRD is a system to store and display time-series data i.e. network bandwidth, machine-room temperature, server load average. It stores the data in a very compact way that will not expand over time, and it presents useful graphs by processing the data t...

Fedora•added 2026/05/28 12:48 a.m.•8 views

[SECURITY] Fedora 43 Update: rrdtool-1.9.0-8.fc43

CNNVD•added 2026/05/28 12:0 a.m.•4 views

InHand IR Series 安全漏洞

The InHand IR Series is a series of industrial-grade cellular wireless routers produced by InHand Corporation in the United States. The InHand IR Series contains a security vulnerability, which stems from command injection in the IPSec VPN function. This vulnerability could allow attackers to gai...

CNNVD•added 2026/05/28 12:0 a.m.•6 views

InHand IR Series 安全漏洞

The InHand IR Series is a series of industrial-grade cellular wireless routers produced by InHand Corporation in the United States. The InHand IR Series contains a security vulnerability, which stems from command injection in the ZeroTier VPN function. This vulnerability could allow attackers to...

CNNVD•added 2026/05/28 12:0 a.m.•4 views

InHand IR Series 安全漏洞

The InHand IR Series is a series of industrial-grade cellular wireless routers produced by InHand Corporation in the United States. Several products in the InHand IR Series have security vulnerabilities. These vulnerabilities stem from command injection in the Admin Access function, which may all...

CNNVD•added 2026/05/28 12:0 a.m.•5 views

InHand IR Series 安全漏洞

The InHand IR Series is a series of industrial-grade cellular wireless routers produced by InHand Corporation in the United States. The InHand IR Series contains a security vulnerability, which stems from command injection in the WireGuard VPN function. This vulnerability may allow attackers to...

Fedora•added 2026/05/27 4:29 p.m.•10 views

[SECURITY] Fedora 42 Update: rrdtool-1.9.0-8.fc42

NVD•added 2026/05/27 2:16 p.m.•5 views

CVE-2026-35089

In Slican telephone exchanges secure key is generated in a predictable manner using properties of the telephone exchange which can be obtained without authentication. An unauthenticated attacker can deduce the secure key and obtain admin credentials. This issue was fixed in versions below: - IPx...

8.7CVSS0.00072EPSS