Lucene search
K

1124 matches found

nvd
nvd
added 2026/06/11 8:16 p.m.11 views

CVE-2026-45175

Idira Endpoint Privilege Manager Agent versions prior to 26.5 exhibit improper access control within internal agent validation processes. A local attacker could potentially bypass built-in security controls or cryptographic validations. Under specific circumstances, this could allow the attacker ...

8.5CVSS0.00128EPSS
Exploits0References3
cnnvd
cnnvd
added 2026/06/11 12:0 a.m.19 views

Cerebrate 输入验证错误漏洞

Cerebrate is an open-source platform developed by Cerebrate. It serves as an interconnected coordinator for trusted contact information providers and other security tools. Prior to version 1.37 of Cerebrate, there was a vulnerability related to input validation errors. This vulnerability stemmed...

8.7CVSS5.3AI score0.00312EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/06/11 12:0 a.m.19 views

PT-2026-48726

Name of the Vulnerable Software and Affected Versions Idira Endpoint Privilege Manager Agent versions prior to 26.5 Description Improper access control within internal agent validation processes allows a local attacker to potentially bypass built-in security controls or cryptographic validations...

8.5CVSS5.9AI score0.00128EPSS
Exploits0References6
redhatcve
redhatcve
added 2026/06/07 12:43 a.m.15 views

CVE-2026-34123

On Tapo C520WS v2, restricted accounts for example, hub users are intended to execute only a limited set of low‑sensitivity operations. Due to a logic flaw in the device’s API authorization mechanism, an attacker can craft requests that leverage legitimate “method mapping” behavior to bypass...

7CVSS5.6AI score0.00151EPSS
Exploits0References1
euvd
euvd
added 2026/06/06 12:31 a.m.11 views

EUVD-2026-34933

On Tapo C520WS v2, restricted accounts for example, hub users are intended to execute only a limited set of low‑sensitivity operations. Due to a logic flaw in the device’s API authorization mechanism, an attacker can craft requests that leverage legitimate “method mapping” behavior to bypass...

7CVSS5.4AI score0.00151EPSS
Exploits0References4
nvd
nvd
added 2026/06/06 12:16 a.m.12 views

CVE-2026-34123

On Tapo C520WS v2, restricted accounts for example, hub users are intended to execute only a limited set of low‑sensitivity operations. Due to a logic flaw in the device’s API authorization mechanism, an attacker can craft requests that leverage legitimate “method mapping” behavior to bypass...

7CVSS0.00151EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2026/06/05 11:50 p.m.9 views

CVE-2026-34123 Whitelist Validation Bypass in TP-Link Tapo C520WS

On Tapo C520WS v2, restricted accounts for example, hub users are intended to execute only a limited set of low‑sensitivity operations. Due to a logic flaw in the device’s API authorization mechanism, an attacker can craft requests that leverage legitimate “method mapping” behavior to bypass...

7CVSS5.4AI score0.00151EPSS
Exploits0References3
attackerkb
attackerkb
added 2026/06/05 11:50 p.m.9 views

CVE-2026-34123

On Tapo C520WS v2, restricted accounts for example, hub users are intended to execute only a limited set of low‑sensitivity operations. Due to a logic flaw in the device’s API authorization mechanism, an attacker can craft requests that leverage legitimate “method mapping” behavior to bypass...

7CVSS5.4AI score0.00151EPSS
Exploits0References4
cve
cve
added 2026/06/05 11:50 p.m.28 views

CVE-2026-34123

CVE-2026-34123 affects TP-Link Tapo C520WS devices. A logic flaw in the device API authorization allows a restricted account to bypass whitelist checks by abusing method mapping , enabling restricted operations to be executed. Reported impact includes device resets, unintended configuration chang...

7CVSS5.4AI score0.00151EPSS
Exploits0References3
redhatcve
redhatcve
added 2026/06/05 7:14 p.m.10 views

CVE-2026-40436

The ZTE ZXEDM iEMS product has a password reset vulnerability for any user.Because the management of the cloud EMS portal does not properly control access to the user list acquisition function, attackers can read all user list information through the user list interface. Attackers can reset the...

7.5CVSS5.5AI score0.00191EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 12:10 a.m.10 views

CVE-2026-36176

GNCC GP5 v7.1.76 was discovered to store pre-signed Backblaze B2 upload URLs PUT requests in plaintext to the serial console. This allows physically-proximate attackers to extract these active tokens to perform unauthorized operations via monitoring the serial UART interface...

7.1CVSS5.8AI score0.00093EPSS
Exploits0References1
cve
cve
added 2026/06/04 12:0 a.m.17 views

CVE-2026-36176

GNCC GP5 v7.1.76 stores pre-signed Backblaze B2 upload URLs (PUT requests) in plaintext on the serial console. This enables physically proximate attackers to extract active tokens and perform unauthorized operations via the serial UART interface. Root cause: tokens exposed in plaintext to the con...

7.1CVSS5.8AI score0.00093EPSS
Exploits0References1
euvd
euvd
added 2026/06/04 12:0 a.m.10 views

EUVD-2026-34279

GNCC GP5 v7.1.76 was discovered to store pre-signed Backblaze B2 upload URLs PUT requests in plaintext to the serial console. This allows physically-proximate attackers to extract these active tokens to perform unauthorized operations via monitoring the serial UART interface...

7.1CVSS5.8AI score0.00093EPSS
Exploits0References3
cvelist
cvelist
added 2026/06/04 12:0 a.m.41 views

CVE-2026-36176

GNCC GP5 v7.1.76 was discovered to store pre-signed Backblaze B2 upload URLs PUT requests in plaintext to the serial console. This allows physically-proximate attackers to extract these active tokens to perform unauthorized operations via monitoring the serial UART interface...

0.00093EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/04 12:0 a.m.15 views

CVE-2026-36176

GNCC GP5 v7.1.76 was discovered to store pre-signed Backblaze B2 upload URLs PUT requests in plaintext to the serial console. This allows physically-proximate attackers to extract these active tokens to perform unauthorized operations via monitoring the serial UART interface...

5.8AI score0.00093EPSS
Exploits0References1
cnnvd
cnnvd
added 2026/05/29 12:0 a.m.9 views

CP Plus CP Series 跨站脚本漏洞

The CP Plus CP Series is a series of video surveillance and security device products developed by CP Plus Company. The CP Plus CP Series contains a cross-site scripting vulnerability. This vulnerability stems from insufficient input cleaning in certain functional modules, allowing attackers to...

8.4CVSS5.7AI score0.00373EPSS
Exploits0References3
nessus
nessus
added 2026/05/29 12:0 a.m.20 views

Linux Distros Unpatched Vulnerability : CVE-2026-42999

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in OpenStack Keystone before 29.0.2. The Keystone RBAC policy enforcer in enforcecall unconditionally merges the raw JSON request body...

8.8CVSS5.7AI score0.00329EPSS
Exploits1References2
osv
osv
added 2026/05/28 9:32 p.m.4 views

GHSA-2R23-2G6V-2M5F OpenStack Keystone has an Authorization Bypass

An issue was discovered in OpenStack Keystone before 29.0.2. The Keystone RBAC policy enforcer in enforcecall unconditionally merges the raw JSON request body into the policy enforcement dictionary via policydict.updatejsoninput.copy, overwriting trusted target data that was previously set from...

6CVSS5.9AI score0.00329EPSS
Exploits1References8
ptsecurity
ptsecurity
added 2026/05/28 12:0 a.m.13 views

PT-2026-44464

Name of the Vulnerable Software and Affected Versions OpenStack Keystone versions 14.0.0 through 29.0.1 Description The RBAC policy enforcer in the enforce call function unconditionally merges the raw JSON request body into the policy enforcement dictionary using policy dict.updatejson input.copy...

8.8CVSS5.4AI score0.00329EPSS
Exploits1References16
cve
cve
added 2026/05/28 12:0 a.m.37 views

CVE-2026-42999

OpenStack Keystone prior to 29.0.2 contains CVE-2026-42999, where the RBAC policy enforcer in enforce_call unconditionally merges the raw JSON request body into the policy enforcement dictionary (policy_dict.update(json_input.copy())). Since flask.request.get_json is called with force=True, this ...

8.8CVSS6AI score0.00329EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder