CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2026/05/13 8:35 a.m.•30 views

CVE-2024-47091 Privilege escalation via mk_mysql agent plugin on Windows

Privilege escalation in the mkmysql agent plugin on Windows in Checkmk 2.4.0p29, 2.3.0p47, and 2.2.0 EOL allows a local unprivileged user able to create a Windows service whose name matches 'MySQL' or 'MariaDB' or with write access to a binary referenced by such a service to execute arbitrary cod...

5.2CVSS0.00015EPSS

Positive Technologies•added 2026/05/13 12:0 a.m.•5 views

PT-2026-40585

Privilege escalation in the mk mysql agent plugin on Windows in Checkmk 2.4.0p29, 2.3.0p47, and 2.2.0 EOL allows a local unprivileged user able to create a Windows service whose name matches 'MySQL' or 'MariaDB' or with write access to a binary referenced by such a service to execute arbitrary co...

5.2CVSS6.2AI score0.00015EPSS

Github Security Blog•added 2026/05/11 3:59 p.m.•4 views

CloudNativePG's metrics exporter allows privilege escalation to PostgreSQL superuser and OS RCE

Impact The CloudNativePG metrics exporter opens its PostgreSQL connection as the postgres superuser via the pod-local Unix socket, then demotes the session with SET ROLE pgmonitor. SET ROLE changes only currentuser; sessionuser remains postgres. That residual superuser identity is the foothold fo...

9.9CVSS6.1AI score0.00043EPSS

Exploits0References5Affected Software1

ATTACKERKB•added 2026/05/05 7:34 p.m.•0 views

CVE-2026-34596

Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, a Time-of-Check-to-Time-of-Use TOCTOU race condition exists during addon installation. When a user installs an addon through the SandMan interface, UpdUtil.exe is spawned as SYSTEM by...

Exploits1References2Affected Software1

EUVD•added 2026/05/05 7:34 p.m.•3 views

EUVD-2026-27468

Vulnrichment•added 2026/05/05 7:34 p.m.•2 views

CVE-2026-34596 Sandboxie-Plus local privilege escalation via TOCTOU race condition in UpdUtil addon installation

CVE•added 2026/05/05 7:34 p.m.•8 views

CVE-2026-34596

Sandboxie-Plus (Windows) prior to v1.17.3 contains a TOCTOU race during addon installation. UpdUtil.exe runs as SYSTEM via SandBoxieSvc, stages updater files in %TEMP%\sandboxie-updater, verifies hashes against the addon manifest, then extracts files.cab and runs config.exe. An unprivileged user ...

7CVSS5.7AI score0.00013EPSS

Exploits1References1Affected Software1

Cvelist•added 2026/05/05 7:34 p.m.•20 views

CVE-2026-34596 Sandboxie-Plus local privilege escalation via TOCTOU race condition in UpdUtil addon installation

5.4CVSS0.00013EPSS

ATTACKERKB•added 2026/05/05 7:30 p.m.•1 views

CVE-2026-34462

Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, several ProcessServer handlers KillAllHandler, SuspendAllHandler, and RunSandboxedHandler copy a WCHAR boxname34 field from request structures into WCHAR40 stack buffers using wcscpy...

7.3CVSS6.2AI score0.00006EPSS

Exploits0References2Affected Software1

RedhatCVE•added 2026/05/05 8:20 a.m.•4 views

CVE-2026-42369

GV-VMS V20 is a Video Monitoring Software used to gather the feeds of many surveillance cameras and manage other security devices. It is a native application accessed locally, but it is also possible to enable remote access via the "WebCam Server" feature. Once enabled, it is possible to access t...

10CVSS6.2AI score0.00185EPSS

Positive Technologies•added 2026/05/05 12:0 a.m.•4 views

PT-2026-37231

NVD•added 2026/05/04 1:16 a.m.•5 views

Exploits1References2

CVE-2026-42369

10CVSS0.00185EPSS

Exploits0References2

Cvelist•added 2026/05/04 12:47 a.m.•27 views

CVE-2026-42369 GeoVision GV-VMS V20 WebCam Server stack overflow vulnerability

10CVSS0.00185EPSS

Exploits0References2

Github Security Blog•added 2026/05/02 3:31 a.m.•2 views

yii2-mcp-server has a Command Injection Issue

A flaw has been found in ArtMin96 yii2-mcp-server 1.0.2. This impacts the function yiicommandhelp/yiiexecutecommand of the file src/index.ts of the component MCP Interface. Executing a manipulation can lead to os command injection. The attack can be executed remotely. The exploit has been publish...

6.5CVSS6.3AI score0.01521EPSS

Exploits0References8Affected Software1

RedhatCVE•added 2026/04/29 8:48 p.m.•1 views

CVE-2025-10549

EfficientLab Controlio before v1.3.95 contains a DLL hijacking vulnerability caused by weak folder permissions in the installation directory. A local attacker can place a specially crafted DLL in this directory and achieve arbitrary code execution with highest privileges, because the affected...

5.1CVSS6.2AI score0.00006EPSS

CNNVD•added 2026/04/28 12:0 a.m.•5 views

TOTOLINK A8000RU 命令注入漏洞

The TOTOLINK A8000RU is a wireless router produced by TOTOLINK, a Chinese company. The Totolink A8000RU 7.1cu.643b20200521 version has a command injection vulnerability. This vulnerability stems from the setWiFiEasyGuestCfg function in the CGI Handler component, specifically the operation of the...

10CVSS7.3AI score0.01221EPSS

OSV•added 2026/04/24 10:16 p.m.•1 views

DEBIAN-CVE-2026-42171

NSIS Nullsoft Scriptable Install System 3.06.1 before 3.12 sometimes uses the Low IL temp directory when executing as SYSTEM, allowing local attackers to gain privileges if they can cause myGetTempFileName to return 0, as shown in the references...

7.8CVSS5.3AI score0.00007EPSS