Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/02/27 12:41 a.m.9 views

CVE-2026-27847

Due to improper neutralization of special elements, SQL statements can be injected via the handshake of a TLS-SRP connection. This can be used to inject known credentials into the database that can be utilized to successfully complete the handshake and use the protected service. This issue affect...

9.8CVSS5.7AI score0.0032EPSS
Exploits0References1
EUVD
EUVD
added 2026/02/25 6:31 p.m.7 views

EUVD-2026-8649

Due to improper neutralization of special elements, SQL statements can be injected via the handshake of a TLS-SRP connection. This can be used to inject known credentials into the database that can be utilized to successfully complete the handshake and use the protected service. This issue affect...

5.7AI score0.0032EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/02/25 3:15 p.m.35 views

CVE-2026-27848 Missing neutralization in Linksys MR9600, Linksys MX4200

Due to missing neutralization of special elements, OS commands can be injected via the handshake of a TLS-SRP connection, which are ultimately run as the root user. This issue affects MR9600: 1.0.4.205530; MX4200: 1.0.13.210200...

0.0032EPSS
Exploits0References1
CVE
CVE
added 2026/02/25 3:10 p.m.15 views

CVE-2026-27847

Summary: CVE-2026-27847 affects Linksys MR9600 (version 1.0.4.205530) and Linksys MX4200 (version 1.0.13.210200). The issue arises from improper neutralization of special elements, enabling SQL injection during the TLS-SRP handshake. Attackers could inject known credentials into the database and ...

9.8CVSS5.7AI score0.0032EPSS
Exploits0References1
Rows per page
Query Builder