Lucene search
K

5311 matches found

Microsoft CVE
Microsoft CVE
added 2026/05/21 2:0 p.m.16 views

Microsoft Entra ID Elevation of Privilege Vulnerability

Origin validation error in Microsoft Entra ID allows an unauthorized attacker to elevate privileges over a network...

10CVSS5.8AI score0.00301EPSS
Exploits0
EUVD
EUVD
added 2026/05/21 1:3 p.m.13 views

EUVD-2025-209915

An origin validation error vulnerability in the Trend Micro Apex One mac agent self-protection mechanism could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in ord...

7.8CVSS7.3AI score0.00295EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/21 1:3 p.m.9 views

CVE-2025-71217

An origin validation error vulnerability in the Trend Micro Apex One mac agent self-protection mechanism could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in ord...

7.3AI score0.00295EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/21 1:3 p.m.6 views

CVE-2025-71217

An origin validation error vulnerability in the Trend Micro Apex One mac agent self-protection mechanism could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in ord...

7.8CVSS7.3AI score0.00295EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/21 1:3 p.m.37 views

CVE-2025-71217

An origin validation error vulnerability in the Trend Micro Apex One mac agent self-protection mechanism could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in ord...

0.00295EPSS
Exploits0References2
CVE
CVE
added 2026/05/21 1:3 p.m.23 views

CVE-2025-71217

Summary of CVE-2025-71217 : An origin validation error in the Trend Micro Apex One (mac) agent self-protection mechanism (TmSelfProtect) allows a local attacker who already has low-privilege code execution to escalate privileges on affected installations. The vulnerability stems from insufficient...

7.8CVSS7.3AI score0.00295EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/21 1:2 p.m.7 views

CVE-2025-71214

An origin validation error vulnerability in the Trend Micro Apex One mac agent iCore service could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploi...

7.8CVSS7.3AI score0.00357EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/21 1:2 p.m.20 views

EUVD-2025-209912

An origin validation error vulnerability in the Trend Micro Apex One mac agent iCore service could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploi...

7.8CVSS7.3AI score0.00357EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/21 1:2 p.m.51 views

CVE-2025-71214

An origin validation error vulnerability in the Trend Micro Apex One mac agent iCore service could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploi...

0.00357EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/21 1:2 p.m.11 views

CVE-2025-71214

An origin validation error vulnerability in the Trend Micro Apex One mac agent iCore service could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploi...

7.3AI score0.00357EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/21 1:2 p.m.13 views

EUVD-2025-209913

An origin validation error vulnerability in Trend Micro Apex One could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability...

7.8CVSS7.3AI score0.00337EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/21 1:2 p.m.16 views

CVE-2025-71213

An origin validation error vulnerability in Trend Micro Apex One could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability...

7.8CVSS7.3AI score0.00337EPSS
Exploits0References2
CVE
CVE
added 2026/05/21 1:2 p.m.20 views

CVE-2025-71213

CVE-2025-71213 is a local privilege escalation in Trend Micro Apex One caused by an origin validation error. The public notices describe a flaw in the Apex One components (notably the NT Listener service per ZDI) where insufficient validation of the origin of commands allows a local attacker who ...

7.8CVSS7.3AI score0.00337EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/21 1:2 p.m.7 views

CVE-2025-71213

An origin validation error vulnerability in Trend Micro Apex One could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability...

7.8CVSS7.3AI score0.00337EPSS
Exploits0References3
CISA KEV Catalog
CISA KEV Catalog
added 2026/05/21 12:0 a.m.7 views

Langflow Origin Validation Error Vulnerability

Langflow contains an origin validation error vulnerability in which an overly permissive CORS configuration combined with a refresh token cookie configured as SameSite=None allows a malicious webpage to perform cross-origin requests that include credentials and successfully call the refresh...

9.4CVSS7.8AI score0.7889EPSS
In wildExploits3
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in Zabbix

The cause of the vulnerability is improper validation of the “Name” field in the form input on the Graph page in the Items section...

5.5CVSS5.6AI score0.00659EPSS
Exploits1References2
Snyk
Snyk
added 2026/05/19 11:54 a.m.7 views

Origin Validation Error

Overview Affected versions of this package are vulnerable to Origin Validation Error in the /ajax-api endpoints. An attacker can gain unauthorized access to the Assistant's configuration and execute arbitrary commands by sending crafted cross-origin requests from a malicious webpage. Remediation...

9.6CVSS7.5AI score0.00371EPSS
Exploits1References2
Snyk
Snyk
added 2026/05/19 11:54 a.m.10 views

Origin Validation Error

Overview mlflow is a platform to streamline machine learning development, including tracking experiments, packaging code into reproducible runs, and sharing and deploying models. Affected versions of this package are vulnerable to Origin Validation Error in the /ajax-api endpoints. An attacker ca...

9.6CVSS7.6AI score0.00371EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/05/18 12:0 a.m.12 views

NetBSD 输入验证错误漏洞

NetBSD is an open-source Unix-like operating system developed by the NetBSD Foundation. Prior to version ec8451, there was a vulnerability related to input validation. This vulnerability stemmed from the fact that the local variable iovlen was declared as a signed integer in the cryptodevop...

5.7CVSS5.9AI score0.00109EPSS
Exploits0References1
Veracode
Veracode
added 2026/05/16 5:29 a.m.5 views

Origin Validation Error

Dozzle is vulnerable to Origin Validation Error. The vulnerability is due to improper origin validation in the WebSocket upgrader, where connections from any origin are accepted and authenticated with the victim's JWT cookie, allowing attackers to hijack authenticated sessions and gain unauthoriz...

9.6CVSS5.8AI score0.00195EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder