Lucene search
K

1597 matches found

EUVD
EUVD
added 2026/03/12 2:49 p.m.11 views

EUVD-2026-11367

StudioCMS S3 Storage Manager Authorization Bypass via Missing await on Async Auth Check...

7.6CVSS5.8AI score0.00183EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/03/11 8:3 p.m.29 views

CVE-2026-32101 StudioCMS S3 Storage Manager Authorization Bypass via Missing `await` on Async Auth Check

StudioCMS is a server-side-rendered, Astro native, headless content management system. Prior to 0.3.1, the S3 storage manager's isAuthorized function is declared async returns Promise but is called without await in both the POST and PUT handlers. Since a Promise object is always truthy in...

7.6CVSS0.00183EPSS
Exploits1References1
CVE
CVE
added 2026/03/11 8:3 p.m.14 views

CVE-2026-32101

CVE-2026-32101 affects StudioCMS S3 Storage Manager prior to version 0.3.1. The isAuthorized() function is async but is called without await in both the POST and PUT handlers, causing the authorization check to always evaluate to bypass due to Promise objects being truthy. As a result, any authen...

7.6CVSS5.8AI score0.00183EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2026/03/11 8:3 p.m.4 views

CVE-2026-32101 StudioCMS S3 Storage Manager Authorization Bypass via Missing `await` on Async Auth Check

StudioCMS is a server-side-rendered, Astro native, headless content management system. Prior to 0.3.1, the S3 storage manager's isAuthorized function is declared async returns Promise but is called without await in both the POST and PUT handlers. Since a Promise object is always truthy in...

7.6CVSS5.8AI score0.00183EPSS
Exploits1References3
GithubExploit
GithubExploit
added 2026/03/01 1:16 p.m.178 views

Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Ibm Tivoli_Storage_Manager_Fastback

No d...

7.8CVSS7.2AI score0.03281EPSS
Exploits1
CNNVD
CNNVD
added 2026/02/09 12:0 a.m.9 views

Synology DSM 安全漏洞

Synology DSM is an NAS management operating system developed by the Chinese company Synology. There is a security vulnerability in Synology DSM, where attackers can bypass access restrictions through the Storage Manager to read sensitive information...

6.2CVSS5.8AI score0.00092EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/02 12:0 a.m.11 views

Brocade SANnav 安全漏洞

Brocade SANnav is a storage area network management software developed by the American company Brocade. Versions of Brocade SANnav prior to 2.4.0b contained security vulnerabilities. These vulnerabilities stemmed from the fact that logs supported by SANnav recorded administrator passwords for...

8.5CVSS5.8AI score0.00262EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 7 : firefox-102.14.0-1.0.1.el7.AXS7 (AXSA:2023-6310:27)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-6310:27 advisory. Mozilla: Offscreen Canvas could have bypassed cross-origin restrictions CVE-2023-4045 Mozilla: Incorrect value used during WASM compilation...

9.8CVSS8.8AI score0.13694EPSS
Exploits1References10
RedhatCVE
RedhatCVE
added 2026/01/07 9:11 a.m.12 views

CVE-2025-1710

The maxView Storage Manager does not implement sufficient measures to prevent multiple failed authentication attempts within a short time frame, making it susceptible to brute-force attacks...

7.5CVSS6.6AI score0.00508EPSS
Exploits0References1
CNVD
CNVD
added 2025/10/31 12:0 a.m.3 views

Dell Storage Manager Critical Function Missing Authentication Vulnerability

Dell Storage Manager is a centralized management tool for Dell storage products, used for daily management and monitoring of storage devices such as SC Series, PS Series, and others. Dell Storage Manager suffers from a Critical Function Missing Authentication vulnerability, no details of the...

8.6CVSS6.9AI score0.00564EPSS
Exploits0References1
CNVD
CNVD
added 2025/10/29 12:0 a.m.3 views

Dell Storage Manager XML External Entity References Improperly Restricted Vulnerability

Dell Storage Manager is a centralized storage management tool from Dell that is used to manage storage devices such as SC Series, PS Series and FluidFS, providing unified monitoring, configuration and replication capabilities. An XML External Entity Reference Improper Restriction vulnerability...

6.5CVSS6.7AI score0.00297EPSS
Exploits0References1
CNVD
CNVD
added 2025/10/29 12:0 a.m.3 views

Dell Storage Manager Improper Authentication Vulnerability

Dell Storage Manager is a centralized storage management tool from Dell that is used to manage storage devices such as SC Series, PS Series and FluidFS, providing unified monitoring, configuration and replication capabilities. An improper authentication vulnerability exists in Dell Storage Manage...

9.8CVSS9.3AI score0.00821EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/10/27 12:0 a.m.6 views

Dell Storage Manager Authentication Bypass (CVE-2025-43995)

Binary data dellstoragemanagercve-2025-43995.nbin...

9.8CVSS7AI score0.00821EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/10/25 2:15 p.m.7 views

CVE-2025-46425

Dell Storage Center - Dell Storage Manager, versions 20.1.20, contains an Improper Restriction of XML External Entity Reference vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access...

6.5CVSS6.8AI score0.00297EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/25 2:15 p.m.8 views

CVE-2025-43994

Dell Storage Center - Dell Storage Manager, versions DSM 20.1.21, contains a Missing Authentication for Critical Function vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure...

8.6CVSS6.9AI score0.00564EPSS
Exploits0References1
NVD
NVD
added 2025/10/24 3:15 p.m.5 views

CVE-2025-43994

Dell Storage Center - Dell Storage Manager, versions DSM 20.1.21, contains a Missing Authentication for Critical Function vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure...

8.6CVSS0.00564EPSS
Exploits0References1
NVD
NVD
added 2025/10/24 3:15 p.m.5 views

CVE-2025-43995

Dell Storage Center - Dell Storage Manager, versions 20.1.21, contains an Improper Authentication vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Protection mechanism bypass. Authentication Bypass in DSM Data Collector. An...

9.8CVSS0.00821EPSS
Exploits0References1
OSV
OSV
added 2025/10/24 2:15 p.m.4 views

CVE-2025-46425

Dell Storage Center - Dell Storage Manager, versions 20.1.20, contains an Improper Restriction of XML External Entity Reference vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access...

6.5CVSS5.8AI score0.00297EPSS
Exploits0References1
NVD
NVD
added 2025/10/24 2:15 p.m.7 views

CVE-2025-46425

Dell Storage Center - Dell Storage Manager, versions 20.1.20, contains an Improper Restriction of XML External Entity Reference vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access...

6.5CVSS0.00297EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/24 2:14 p.m.7 views

CVE-2025-43994

Dell Storage Center - Dell Storage Manager, versions DSM 20.1.21, contains a Missing Authentication for Critical Function vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure...

8.6CVSS0.00564EPSS
Exploits0References1
Rows per page
Query Builder