Lucene search
K

1820 matches found

Github Security Blog
Github Security Blog
added 2026/05/11 6:31 p.m.10 views

pgAdmin 4 has deserialization of untrusted data in its FileBackedSessionManager

Deserialization of untrusted data CWE-502 in pgAdmin 4 FileBackedSessionManager. The session manager performed unsafe deserialization of session-file contents using Python's standard object-serialization module before performing any HMAC integrity check. Any file dropped into the sessions directo...

7.8CVSS6.5AI score0.00131EPSS
Exploits0References4Affected Software1
EUVD
EUVD
added 2026/05/11 3:32 p.m.10 views

EUVD-2026-29053

A security flaw has been discovered in Open5GS up to 2.7.7. This issue affects the function smfnsmfhandleupdatedatainvsmf of the file /src/smf/nsmf-handler.c of the component SMF. The manipulation results in denial of service. The attack can be executed remotely. The exploit has been released to...

5.3CVSS5.5AI score0.00372EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2026/05/11 1:0 p.m.12 views

CVE-2026-8290 Open5GS SMF nsmf-handler.c smf_nsmf_handle_update_data_in_vsmf denial of service

A security flaw has been discovered in Open5GS up to 2.7.7. This issue affects the function smfnsmfhandleupdatedatainvsmf of the file /src/smf/nsmf-handler.c of the component SMF. The manipulation results in denial of service. The attack can be executed remotely. The exploit has been released to...

5.3CVSS5.5AI score0.00372EPSS
Exploits1References5
CVE
CVE
added 2026/05/11 12:30 p.m.17 views

CVE-2026-8289

Technical details (affected software, root cause, impact, and remediation) are not publicly available in the provided documents. Monitor for updates.

6.5CVSS5.5AI score0.00372EPSS
Exploits1References5Affected Software1
EUVD
EUVD
added 2026/05/11 6:31 a.m.10 views

EUVD-2026-29024

A flaw has been found in Open5GS up to 2.7.7. This vulnerability affects the function smfnsmfhandlecreateddatainvsmf of the component SMF. This manipulation causes denial of service. The attack may be initiated remotely. The exploit has been published and may be used. The project was informed of...

5.3CVSS5.4AI score0.00372EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2026/05/11 2:45 a.m.8 views

CVE-2026-8266 Open5GS SMF gsm-build.c gsm_build_pdu_session_establishment_accept denial of service

A vulnerability was detected in Open5GS up to 2.7.7. This affects the function gsmbuildpdusessionestablishmentaccept of the file /src/smf/gsm-build.c of the component SMF. The manipulation results in denial of service. The attack can be launched remotely. The exploit is now public and may be used...

5.3CVSS5.5AI score0.00461EPSS
Exploits1References5
Cvelist
Cvelist
added 2026/05/11 2:45 a.m.44 views

CVE-2026-8266 Open5GS SMF gsm-build.c gsm_build_pdu_session_establishment_accept denial of service

A vulnerability was detected in Open5GS up to 2.7.7. This affects the function gsmbuildpdusessionestablishmentaccept of the file /src/smf/gsm-build.c of the component SMF. The manipulation results in denial of service. The attack can be launched remotely. The exploit is now public and may be used...

5.3CVSS0.00461EPSS
Exploits1References5
EUVD
EUVD
added 2026/05/11 12:31 a.m.24 views

EUVD-2026-29006

A vulnerability was determined in Open5GS up to 2.7.7. Affected is the function smfnsmfhandlecreatedatainhsmf of the component SMF. Executing a manipulation can lead to null pointer dereference. The attack may be performed from remote. The exploit has been publicly disclosed and may be utilized...

5.3CVSS5.4AI score0.00378EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2026/05/11 12:0 a.m.13 views

PT-2026-39628

Name of the Vulnerable Software and Affected Versions pgAdmin 4 versions prior to 9.15 Description The FileBackedSessionManager in pgAdmin 4 performs unsafe deserialization of session-file contents using Python's standard object-serialization module before conducting an HMAC integrity check. This...

7.8CVSS6.4AI score0.00131EPSS
Exploits0References8
CNNVD
CNNVD
added 2026/05/11 12:0 a.m.9 views

Open5GS 安全漏洞

Open5GS is an open-source implementation of 5G Core and EPC in C language, which serves as the core network for LTE/NR networks. Versions of Open5GS 2.7.7 and earlier contain security vulnerabilities. These vulnerabilities stem from the function smfnsmfhandlecreateddatainvsmf in the SMF component...

6.5CVSS5.8AI score0.00372EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/05/11 12:0 a.m.9 views

Open5GS 安全漏洞

Open5GS is an open-source implementation of 5G Core and EPC in C language, which serves as the core network for LTE/NR networks. Versions of Open5GS 2.7.7 and earlier contain security vulnerabilities. These vulnerabilities stem from a function in the SMF component called...

6.5CVSS5.8AI score0.00461EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/05/11 12:0 a.m.13 views

PT-2026-39597

A security flaw has been discovered in Open5GS up to 2.7.7. This issue affects the function smf nsmf handle update data in vsmf of the file /src/smf/nsmf-handler.c of the component SMF. The manipulation results in denial of service. The attack can be executed remotely. The exploit has been releas...

5.3CVSS5.5AI score0.00372EPSS
Exploits1References6
CNNVD
CNNVD
added 2026/05/11 12:0 a.m.9 views

WebDyne::Session 安全特征问题漏洞

WebDyne::Session is a server-side component developed by ASPEER’s individual developers, used for session management in web applications. Versions of WebDyne::Session 2.075 and earlier contained security vulnerabilities. These vulnerabilities stemmed from insecure session ID generation. The sessi...

6.5CVSS5.8AI score0.00304EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/10 11:0 p.m.48 views

CVE-2026-8251 Open5GS SMF npcf-handler.c update_authorized_pcc_rule_and_qos denial of service

A vulnerability was found in Open5GS up to 2.7.7. This impacts the function updateauthorizedpccruleandqos of the file /src/smf/npcf-handler.c of the component SMF. Performing a manipulation results in denial of service. The attack is possible to be carried out remotely. The exploit has been made...

5.3CVSS0.00461EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/05/10 11:0 p.m.10 views

CVE-2026-8251 Open5GS SMF npcf-handler.c update_authorized_pcc_rule_and_qos denial of service

A vulnerability was found in Open5GS up to 2.7.7. This impacts the function updateauthorizedpccruleandqos of the file /src/smf/npcf-handler.c of the component SMF. Performing a manipulation results in denial of service. The attack is possible to be carried out remotely. The exploit has been made...

5.3CVSS5.4AI score0.00461EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/05/10 10:45 p.m.8 views

CVE-2026-8250 Open5GS SMF n4-build.c smf_n4_build_qos_flow_to_modify_list denial of service

A vulnerability has been found in Open5GS up to 2.7.7. This affects the function smfn4buildqosflowtomodifylist of the file /src/smf/n4-build.c of the component SMF. Such manipulation leads to denial of service. The attack can be executed remotely. The exploit has been disclosed to the public and...

5.3CVSS5.4AI score0.00372EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/05/10 10:30 p.m.6 views

CVE-2026-8249 Open5GS SMF npcf-handler.c update_authorized_pcc_rule_and_qos denial of service

A flaw has been found in Open5GS up to 2.7.7. The impacted element is the function updateauthorizedpccruleandqos of the file /src/smf/npcf-handler.c of the component SMF. This manipulation causes denial of service. Remote exploitation of the attack is possible. The exploit has been published and...

5.3CVSS5.3AI score0.00372EPSS
Exploits1References5
CVE
CVE
added 2026/05/10 1:0 a.m.24 views

CVE-2026-8216

Affected software / component: Industrial Application Software IAS Canias ERP 8.03; affected function: iasServerRemoteInterface.doAction (Java RMI Session Management). Issue / impact: Improper authentication resulting from manipulation of the doAction function. The attack can be launched remotely...

7.5CVSS6.9AI score0.00391EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/05/10 1:0 a.m.79 views

CVE-2026-8216 Industrial Application Software IAS Canias ERP Java RMI Session Management iasServerRemoteInterface.doAction improper authentication

A vulnerability was identified in Industrial Application Software IAS Canias ERP 8.03. This issue affects the function iasServerRemoteInterface.doAction of the component Java RMI Session Management. Such manipulation leads to improper authentication. The attack can be launched remotely. The vendo...

7.5CVSS0.00391EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/10 12:0 a.m.11 views

Open5GS 安全漏洞

Open5GS is an open-source implementation of 5G Core and EPC in C language, which serves as the core network for LTE/NR networks. Versions of Open5GS 2.7.7 and earlier contain security vulnerabilities. These vulnerabilities stem from the updateauthorizedpccruleandqos function in the SMF component...

6.5CVSS5.8AI score0.00471EPSS
Exploits1References2
Rows per page
Query Builder