Lucene search
K

8410 matches found

EUVD
EUVD
added 2026/05/13 9:32 p.m.10 views

EUVD-2026-30104

Authentication bypass vulnerabilities in the GlobalProtect portal and gateway of Palo Alto Networks PAN-OS® software allows the attacker to bypass security restrictions and establish an unauthorized VPN connection. Panorama and Cloud NGFW are not impacted by these issues...

7.8CVSS5.8AI score0.86678EPSS
Exploits9References2
NVD
NVD
added 2026/05/13 7:17 p.m.9 views

CVE-2026-0257

Authentication bypass vulnerabilities in the GlobalProtect portal and gateway of Palo Alto Networks PAN-OS® software allows the attacker to bypass security restrictions and establish an unauthorized VPN connection. Panorama and Cloud NGFW are not impacted by these issues...

9.1CVSS0.86678EPSS
Exploits9References3
Vulnrichment
Vulnrichment
added 2026/05/13 7:5 p.m.7 views

CVE-2026-0248 Prisma Access Agent: Improper Certificate Validation Vulnerability

An improper certificate validation vulnerability in the Prisma Access Agent® for Android and Chrome OS enables an attacker to perform a man-in-the-middle MitM attack to intercept VPN traffic. By presenting a certificate for any domain issued by a trusted Certificate Authority, the attacker can...

8.6CVSS5.8AI score0.00107EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/13 7:5 p.m.31 views

CVE-2026-0248 Prisma Access Agent: Improper Certificate Validation Vulnerability

An improper certificate validation vulnerability in the Prisma Access Agent® for Android and Chrome OS enables an attacker to perform a man-in-the-middle MitM attack to intercept VPN traffic. By presenting a certificate for any domain issued by a trusted Certificate Authority, the attacker can...

8.6CVSS0.00107EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/13 6:15 p.m.79 views

CVE-2026-0257 PAN-OS: GlobalProtect Authentication Bypass Vulnerabilities

Authentication bypass vulnerabilities in the GlobalProtect portal and gateway of Palo Alto Networks PAN-OS® software allows the attacker to bypass security restrictions and establish an unauthorized VPN connection. Panorama and Cloud NGFW are not impacted by these issues...

7.8CVSS0.86678EPSS
Exploits9References1
ATTACKERKB
ATTACKERKB
added 2026/05/13 6:15 p.m.12 views

CVE-2026-0257

Authentication bypass vulnerabilities in the GlobalProtect portal and gateway of Palo Alto Networks PAN-OS® software allows the attacker to bypass security restrictions and establish an unauthorized VPN connection. Panorama and Cloud NGFW are not impacted by these issues...

5.8AI score0.86678EPSS
Exploits9References2Affected Software2
CVE
CVE
added 2026/05/13 6:15 p.m.200 views

CVE-2026-0257

CVE-2026-0257 affects Palo Alto Networks PAN-OS GlobalProtect Portal and GlobalProtect Gateway (not Panorama/Cloud NGFW). The vulnerability is an authentication bypass (CWE-565) that can allow an unauthenticated attacker to bypass security restrictions and establish an unauthorized VPN connection...

9.1CVSS5.8AI score0.86678EPSS
In wildExploits9References3Affected Software1
CNNVD
CNNVD
added 2026/05/13 12:0 a.m.9 views

Palo Alto Networks PAN-OS 安全漏洞

Palo Alto Networks PAN-OS is an operating system developed by Palo Alto Networks for its firewall devices. There is a security vulnerability in Palo Alto Networks PAN-OS, which stems from authentication bypass issues in the GlobalProtect portal and gateway. This vulnerability could allow attacker...

9.1CVSS5.8AI score0.86678EPSS
Exploits9References1
Positive Technologies
Positive Technologies
added 2026/05/13 12:0 a.m.11 views

PT-2026-40772

An improper certificate validation vulnerability in the Prisma Access Agent® for Android and Chrome OS enables an attacker to perform a man-in-the-middle MitM attack to intercept VPN traffic. By presenting a certificate for any domain issued by a trusted Certificate Authority, the attacker can...

8.6CVSS5.8AI score0.00107EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/13 12:0 a.m.11 views

PT-2026-40754

Name of the Vulnerable Software and Affected Versions Palo Alto Networks PAN-OS versions prior to 10.2.7 Palo Alto Networks PAN-OS version 10.2.8 Palo Alto Networks PAN-OS version 10.2.9 Palo Alto Networks PAN-OS version 10.2.10 Palo Alto Networks PAN-OS version 10.2.11 Prisma Access affected...

9.1CVSS6.6AI score0.86678EPSS
Exploits9References306
GithubExploit
GithubExploit
added 2026/05/12 11:0 p.m.90 views

Exploit for Improper Input Validation in Microsoft

monikerlinktest cve-2024-21413 1. set up tun0 on router via o...

9.8CVSS6AI score0.9466EPSS
Exploits23
Vulnrichment
Vulnrichment
added 2026/05/12 4:39 p.m.7 views

CVE-2026-44343 WGDashboard: Critical Vulnerability in 4.3.2

WGDashboard is a dashboard for WireGuard VPN. Prior to 4.3.2, there are critical vulnerabilities affecting WGDashboard that, if exploited, could allow unauthorized parties to access the host file system without authentication. This vulnerability is fixed in 4.3.2...

9.3CVSS5.8AI score0.00434EPSS
Exploits0References2
ICS
ICS
added 2026/05/12 12:0 a.m.22 views

Siemens Teamcenter

SUMMARY Siemens Teamcenter is affected by multiple vulnerabilities which could potentially lead to a compromise in availability, integrity and confidentiality. Siemens has released new versions for the affected products and recommends to update to the latest versions. 2. GENERAL RECOMMENDATIONS...

6.1AI score
Exploits0References10
NVD
NVD
added 2026/05/09 11:16 p.m.32 views

CVE-2026-45182

GrapheneOS before 2026050400 allows attackers to discover the real IP address of a VPN user as a consequence of a registerQuicConnectionClosePayload optimization, because an application can let systemserver transmit UDP traffic on its behalf. This occurs when the "Block connections without VPN" a...

2.2CVSS0.00094EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/09 10:7 p.m.9 views

EUVD-2026-28944

GrapheneOS before 2026050400 allows attackers to discover the real IP address of a VPN user as a consequence of a registerQuicConnectionClosePayload optimization, because an application can let systemserver transmit UDP traffic on its behalf. This occurs when the "Block connections without VPN" a...

2.2CVSS5.8AI score0.00094EPSS
Exploits0References3
CVE
CVE
added 2026/05/09 10:7 p.m.20 views

CVE-2026-45182

Summary: CVE-2026-45182 affects GrapheneOS prior to 2026050400. A vulnerability arises from a registerQuicConnectionClosePayload optimization that lets a local attacker infer the real IP address of a VPN user when the device has both “Block connections without VPN” and “Always-on VPN” enabled, by...

2.2CVSS5.8AI score0.00094EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/09 10:7 p.m.51 views

CVE-2026-45182

GrapheneOS before 2026050400 allows attackers to discover the real IP address of a VPN user as a consequence of a registerQuicConnectionClosePayload optimization, because an application can let systemserver transmit UDP traffic on its behalf. This occurs when the "Block connections without VPN" a...

2.2CVSS0.00094EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/09 10:7 p.m.8 views

CVE-2026-45182

GrapheneOS before 2026050400 allows attackers to discover the real IP address of a VPN user as a consequence of a registerQuicConnectionClosePayload optimization, because an application can let systemserver transmit UDP traffic on its behalf. This occurs when the "Block connections without VPN" a...

2.2CVSS5.8AI score0.00094EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/09 12:0 a.m.13 views

PT-2026-39421

Name of the Vulnerable Software and Affected Versions GrapheneOS versions prior to 2026050400 Description An optimization in the registerQuicConnectionClosePayload function allows attackers to discover the real IP address of a VPN user. This occurs because an application can cause the system serv...

2.2CVSS5.8AI score0.00094EPSS
Exploits0References10
GithubExploit
GithubExploit
added 2026/05/08 6:49 p.m.99 views

projeto-conexoes-seguras

Projeto Conexões Seguras Faculdade de Tecnologia SENAI Feli...

5.8AI score
Exploits0
Rows per page
Query Builder