Lucene search
K

16901 matches found

CVE
CVE
added 2026/05/10 7:45 a.m.14 views

CVE-2026-8241

The CVE-2026-8241 entry concerns Industrial Application Software IAS Canias ERP 8.03, where the RMI Interface’s iasGetServerInfoEvent function allows improper authorization. The vulnerability is exploitable remotely and has had public disclosure. Connected data indicates a NETWORK-accessible issu...

6.9CVSS5.6AI score0.00292EPSS
Exploits0References5
GithubExploit
GithubExploit
added 2026/05/08 6:11 p.m.201 views

Exploit for Stack-based Buffer Overflow in Dronecode Px4_Drone_Autopilot

CTT-Enhanced-PX4-Autopilot-Exploit-CVE-2026-32743 CVE-2026-327...

6.5CVSS6.3AI score0.00365EPSS
Exploits3
OSV
OSV
added 2026/05/08 8:16 a.m.5 views

UBUNTU-CVE-2026-44927

In uriparser before 1.0.2, there is pointer difference truncation to int in various places...

5.3CVSS5.8AI score0.00211EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/08 3:30 a.m.12 views

EUVD-2026-28481

A vulnerability was determined in Open5GS up to 2.7.7. This impacts the function ogssbidiscoveryoptionaddsnssais in the library /lib/sbi/message.c of the component NSSF. This manipulation causes denial of service. It is possible to initiate the attack remotely. The exploit has been publicly...

5.3CVSS5.5AI score0.00372EPSS
Exploits1References6
Patchstack
Patchstack
added 2026/05/07 9:45 p.m.9 views

NPM: mcp-ssh-tool has file transfer path policy bypass and bearer token comparison hardening

NPM: mcp-ssh-tool has file transfer path policy bypass and bearer token comparison hardening vulnerability discovered by ? in WordPress Npm mcp-ssh-tool versions = 2.1.0...

5.8AI score
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/07 6:30 p.m.12 views

parse-ini is vulnerable to Prototype Pollution in index.js()

npm package parse-ini v1.0.6 is vulnerable to Prototype Pollution in index.js...

9.8CVSS5.8AI score0.00416EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/07 12:0 a.m.15 views

PT-2026-38451

Name of the Vulnerable Software and Affected Versions Ivanti EPMM versions prior to 12.6.1.1 Ivanti EPMM versions prior to 12.7.0.1 Ivanti EPMM versions prior to 12.8.0.1 Description Improper Access Control allows a remote authenticated attacker to gain administrative access. Recommendations Upda...

8.8CVSS6AI score0.00714EPSS
Exploits0References12
Debian CVE
Debian CVE
added 2026/05/06 6:13 p.m.6 views

CVE-2026-7982

Uninitialized Use in WebCodecs in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.8AI score0.00239EPSS
Exploits0
OSV
OSV
added 2026/05/04 6:16 p.m.7 views

UBUNTU-CVE-2026-37459

An integer underflow in FRRouting FRR stable/10.0 to stable/10.6 allows attackers to cause a Denial of Service DoS via supplying a crafted BGP UPDATE message...

7.5CVSS5.8AI score0.00371EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/04 5:30 a.m.10 views

EUVD-2026-26916

A vulnerability was determined in osrg GoBGP up to 4.3.0. Affected by this vulnerability is the function parseRibEntry of the file pkg/packet/mrt/mrt.go. Executing a manipulation can lead to integer underflow. It is possible to launch the attack remotely. Upgrading to version 4.4.0 addresses this...

7.5CVSS6.9AI score0.00454EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/05/02 12:15 a.m.3 views

CVE-2026-7600

A flaw has been found in ArtMin96 yii2-mcp-server 1.0.2. This impacts the function yiicommandhelp/yiiexecutecommand of the file src/index.ts of the component MCP Interface. Executing a manipulation can lead to os command injection. The attack can be executed remotely. The exploit has been publish...

6.5CVSS6.3AI score0.0111EPSS
Exploits0References6Affected Software1
RedhatCVE
RedhatCVE
added 2026/05/01 8:48 p.m.6 views

CVE-2026-5174

Improper input validation vulnerability in Progress Software MOVEit Automation allows Privilege Escalation. This issue affects MOVEit Automation: from 2025.1.0 before 2025.1.5, from 2025.0.0 before 2025.0.9, from 2024.0.0 before 2024.1.8, versions prior to 2024.0.0...

8.8CVSS5.8AI score0.03241EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/05/01 3:16 p.m.8 views

CVE-2026-31728

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uether: Fix race between getherdisconnect and ethstop A race condition between getherdisconnect and ethstop leads to a NULL pointer dereference. Specifically, if ethstop is triggered concurrently while getherdisconne...

4.7CVSS5.7AI score0.00089EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.117 views

Open Cascade OCCT 代码问题漏洞

Open Cascade OCCT is a 3D modeling and geometry computation kernel from the French company Open Cascade. A code issue vulnerability exists in Open Cascade OCCT version V800rc5, which stems from a flaw in the VrmlDataIndexedFaceSet::TShape function in the VRML V2.0 parser, as malformed VRML inputs...

7.5CVSS5.9AI score0.00219EPSS
Exploits0References1
OSV
OSV
added 2026/04/30 6:16 a.m.5 views

UBUNTU-CVE-2026-7375

UDS protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

7.5CVSS5.8AI score0.00193EPSS
Exploits1References4
CVE
CVE
added 2026/04/29 7:24 p.m.10 views

CVE-2018-25314

CVE-2018-25314 affects Allok Soft WMV to AVI MPEG DVD WMV Converter 4.6.1217, where a buffer overflow in the License Name field allows local attackers to execute arbitrary code via input containing shellcode with an SEH overwrite, potentially gaining application-privilege execution. The NVD/CVE r...

8.6CVSS6.3AI score0.00165EPSS
Exploits0References4
NVD
NVD
added 2026/04/29 3:16 p.m.8 views

CVE-2026-5141

Improper Privilege Management, Improper Access Control, Incorrect privilege assignment vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus Software Center allows Hijacking a privileged process. This issue affects Pardus Software Center: from 1.0.2 before 1.0.3...

8.8CVSS0.00228EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/29 12:0 a.m.14 views

PT-2026-35927

Improper Privilege Management, Improper Access Control, Incorrect privilege assignment vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus Software Center allows Hijacking a privileged process. This issue affects Pardus Software Center: before 1.0.3...

8.8CVSS5.2AI score0.00228EPSS
Exploits0References1
OSV
OSV
added 2026/04/28 1:7 p.m.5 views

JLSEC-2026-288 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in OSGeo...

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in OSGeo gdal frmts/zlib/contrib/infback9 modules. This vulnerability is associated with program files inftree9.C‎. This issue affects gdal: before 3.11.0...

9.4CVSS5.3AI score0.00276EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/04/27 12:0 a.m.11 views

PT-2026-35392

Incorrect Privilege Assignment vulnerability in Directorist Directorist Social Login allows Privilege Escalation.This issue affects Directorist Social Login: from n/a before 2.1.4...

9.8CVSS5.2AI score0.00321EPSS
Exploits0References2
Rows per page
Query Builder