Lucene search
+L

123 matches found

NVD
NVD
added 4 days ago4 views

CVE-2026-55001

Improper certificate validation in Windows Active Directory allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00219EPSS
Exploits0References1
NVD
NVD
added 4 days ago4 views

CVE-2026-54119

Loop with unreachable exit condition 'infinite loop' in Windows Active Directory allows an unauthorized attacker to deny service over a network...

7.5CVSS0.00816EPSS
Exploits0References1
Cvelist
Cvelist
added 4 days ago21 views

CVE-2026-57976 Windows Active Directory Domain Services Denial of Service Vulnerability

...

6.5CVSS0.00755EPSS
Exploits0References1
CVE
CVE
added 4 days ago6 views

CVE-2026-55001

CVE-2026-55001 affects Windows Active Directory / Active Directory Domain Services. The root cause is improper certificate validation within AD, enabling an authorized attacker to achieve local privilege escalation. CVSS 3.1 base score 7.8 (Local, Low complexity, Privileges Required: Low; User In...

7.8CVSS6AI score0.00219EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 4 days ago4 views

CVE-2026-49164 Windows Active Directory Domain Services Remote Code Execution Vulnerability

...

8.1CVSS6.1AI score0.00649EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 4 days ago6 views

Windows Active Directory Denial of Service Vulnerability

Loop with unreachable exit condition 'infinite loop' in Windows Active Directory allows an unauthorized attacker to deny service over a network...

7.5CVSS6.1AI score0.00816EPSS
Exploits0
Positive Technologies
Positive Technologies
added 4 days ago8 views

PT-2026-58512

Name of the Vulnerable Software and Affected Versions Windows Active Directory affected versions not specified Windows MSMQ affected versions not specified Description An integer overflow or wraparound in Windows Active Directory allows an authorized attacker to elevate privileges locally...

7.8CVSS6.1AI score0.00318EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/07/09 2:40 p.m.3 views

openssh: OpenSSH: Undocumented GSSAPIStrictAcceptorCheck behavior impacts security in Windows Active Directory

A flaw was found in OpenSSH. The sshd component has an undocumented security-relevant behavior where GSSAPIStrictAcceptorCheck has no value when the server is in a Windows Active Directory environment. This could lead to unintended information disclosure and impact data integrity...

6.5CVSS6AI score0.00179EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2026/07/08 5:48 a.m.6 views

CVE-2026-59998

A flaw was found in OpenSSH. The sshd component has an undocumented security-relevant behavior where GSSAPIStrictAcceptorCheck has no value when the server is in a Windows Active Directory environment. This could lead to unintended information disclosure and impact data integrity...

6.5CVSS5.9AI score0.00179EPSS
Exploits0References6
OSV
OSV
added 2026/07/08 1:16 a.m.6 views

DEBIAN-CVE-2026-59998

sshd in OpenSSH before 10.4 has an undocumented security-relevant behavior: GSSAPIStrictAcceptorCheck has no value if the server is in Windows Active Directory...

6.5CVSS5.9AI score0.00179EPSS
Exploits0References1
NVD
NVD
added 2026/07/08 1:16 a.m.10 views

CVE-2026-59998

sshd in OpenSSH before 10.4 has an undocumented security-relevant behavior: GSSAPIStrictAcceptorCheck has no value if the server is in Windows Active Directory...

6.5CVSS0.00179EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/07/08 12:11 a.m.5 views

CVE-2026-59998

sshd in OpenSSH before 10.4 has an undocumented security-relevant behavior: GSSAPIStrictAcceptorCheck has no value if the server is in Windows Active Directory...

6.5CVSS5.9AI score0.00179EPSS
Exploits0
Cvelist
Cvelist
added 2026/07/08 12:11 a.m.127 views

CVE-2026-59998

sshd in OpenSSH before 10.4 has an undocumented security-relevant behavior: GSSAPIStrictAcceptorCheck has no value if the server is in Windows Active Directory...

4.8CVSS0.00179EPSS
Exploits0References3
CVE
CVE
added 2026/07/08 12:11 a.m.46 views

CVE-2026-59998

OpenSSH sshd (CVE-2026-59998) affects builds before 10.4. The issue is an undocumented security-relevant behavior where GSSAPIStrictAcceptorCheck has no value when the server runs in Windows Active Directory. CVSS v3.1 base score 4.8 (Medium) and impact on confidentiality/integrity (Low) with net...

6.5CVSS5.9AI score0.00179EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2026/07/08 12:11 a.m.19 views

EUVD-2026-42141

sshd in OpenSSH before 10.4 has an undocumented security-relevant behavior: GSSAPIStrictAcceptorCheck has no value if the server is in Windows Active Directory...

4.8CVSS5.9AI score0.00179EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2026/07/08 12:11 a.m.12 views

CVE-2026-59998

sshd in OpenSSH before 10.4 has an undocumented security-relevant behavior: GSSAPIStrictAcceptorCheck has no value if the server is in Windows Active Directory...

6.5CVSS5.9AI score0.00179EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/07/08 12:0 a.m.7 views

PT-2026-56289

Name of the Vulnerable Software and Affected Versions OpenSSH versions prior to 10.4 Description The sshd component contains an undocumented security-relevant behavior where the GSSAPIStrictAcceptorCheck setting is ignored and has no effect when the server is integrated into a Windows Active...

7.5CVSS6.1AI score0.00407EPSS
Exploits0References21
OSV
OSV
added 2026/06/11 6:33 a.m.14 views

MAL-2026-5612 Malicious code in gpt-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8b9bdc5e04979d5b4f73407bcedaecc9df24dbb03e0bfbc0edefe333023dc50c On npm install, postinstall.js runs unconditionally and collects a wide range of installer-side reconnaissance data: hostname and FQDN, contents of...

5.5AI score
Exploits0References9
GithubExploit
GithubExploit
added 2026/05/05 8:27 p.m.116 views

Exploit for Improper Authentication in Microsoft

CVE-2026-26128 !Examplehttps://github.com/jarnovandenbrink/...

7.8CVSS5.9AI score0.00447EPSS
Exploits1
CNNVD
CNNVD
added 2026/04/27 12:0 a.m.10 views

LogonTracer 操作系统命令注入漏洞

LogonTracer is a visual system log analysis tool developed by the Japanese JPCERT organization. This product can detect malicious login attempts by analyzing Windows Active Directory event logs. Versions of LogonTracer prior to 2.0.0 contained a vulnerability related to operating system command...

8.8CVSS7.6AI score0.01213EPSS
Exploits0References1
Rows per page
Query Builder