Lucene search
+L

801 matches found

Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.7 views

PT-2026-36326

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description In the rxrpc preparse function, the non-XDR path for parsing key payloads used for payloads 28 bytes or smaller fails to validate the ticket length against AFSTOKEN RK TIX MAX. This...

9.8CVSS6.1AI score0.93235EPSS
Exploits60References300
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.6 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013110)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013110 advisory. In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix null pointer dereference on zero-length checksum In xdrstreamdecodeopaqueauth,...

5.6AI score0.00197EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/04/20 11:26 p.m.7 views

SUSE CVE-2026-34232

Firebird is an open-source relational database management system. In versions prior to 5.0.4, 4.0.7 and 3.0.14, the xdrstatusvector function does not handle the iscargcstring type when decoding an opresponse packet, causing a server crash when one is encountered in the status vector. An...

7.5CVSS5.7AI score0.00466EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2026/04/20 1:13 p.m.6 views

CVE-2026-34232

A flaw was found in Firebird, an open-source relational database management system. The xdrstatusvector function, responsible for decoding server responses, does not properly handle a specific data type iscargcstring within an opresponse packet. An unauthenticated attacker can exploit this...

7.5CVSS5.8AI score0.00466EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/04/17 7:35 p.m.7 views

CVE-2026-33337

A flaw was found in Firebird, an open-source relational database management system. When processing a slice packet, the xdrdatum function fails to validate the length of a cstring, which can lead to a buffer overflow. An unauthenticated attacker can exploit this vulnerability by sending a special...

7.5CVSS6.1AI score0.00543EPSS
Exploits1References2
EUVD
EUVD
added 2026/04/17 6:52 p.m.15 views

EUVD-2026-23486

Firebird is an open-source relational database management system. In versions prior to 5.0.4, 4.0.7 and 3.0.14, the xdrstatusvector function does not handle the iscargcstring type when decoding an opresponse packet, causing a server crash when one is encountered in the status vector. An...

7.5CVSS5.7AI score0.00466EPSS
Exploits1References4
CNNVD
CNNVD
added 2026/04/17 12:0 a.m.10 views

Firebird 安全漏洞

Firebird is a set of open-source, cross-platform relational database management systems provided by the Firebird Foundation, which include multiple ANSI SQL-92 functions. Vulnerabilities exist in versions prior to Firebird 5.0.4, 4.0.7, and 3.0.14. These vulnerabilities stem from the...

7.5CVSS5.8AI score0.00466EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/04/17 12:0 a.m.11 views

PT-2026-33483

Firebird is an open-source relational database management system. In versions prior to 5.0.4, 4.0.7 and 3.0.14, the xdr status vector function does not handle the isc arg cstring type when decoding an op response packet, causing a server crash when one is encountered in the status vector. An...

7.5CVSS5.7AI score0.00466EPSS
Exploits1References6
OSV
OSV
added 2026/04/13 2:33 p.m.4 views

JLSEC-2026-92

lib/kadm5/kadmrpcxdr.c in MIT Kerberos 5 aka krb5 before 1.20.2 and 1.21.x before 1.21.1 frees an uninitialized pointer. A remote authenticated user can trigger a kadmind crash. This occurs because xdrkadm5principalentrec does not validate the relationship between nkeydata and the keydata array...

6.5CVSS7AI score0.02791EPSS
Exploits0References6
NVD
NVD
added 2026/04/13 8:16 a.m.6 views

CVE-2026-0232

A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows allows a local Windows administrator to disable the agent. This issue may be leveraged by malware to perform malicious activity without detection...

6.7CVSS0.00146EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/13 7:22 a.m.2 views

CVE-2026-0232

A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows allows a local Windows administrator to disable the agent. This issue may be leveraged by malware to perform malicious activity without detection...

6.7CVSS5.8AI score0.00146EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/13 7:22 a.m.3 views

CVE-2026-0232 Cortex XDR Agent: Local Administrator can disable the agent on Windows

A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows allows a local Windows administrator to disable the agent. This issue may be leveraged by malware to perform malicious activity without detection...

6.7CVSS5.8AI score0.00146EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/13 7:22 a.m.28 views

CVE-2026-0232 Cortex XDR Agent: Local Administrator can disable the agent on Windows

A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows allows a local Windows administrator to disable the agent. This issue may be leveraged by malware to perform malicious activity without detection...

6.7CVSS0.00146EPSS
Exploits0References1
NVD
NVD
added 2026/03/11 6:16 p.m.11 views

CVE-2026-0230

A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on macOS allows a local administrator to disable the agent. This issue could be leveraged by malware to perform malicious activity without detection...

6.7CVSS0.00144EPSS
Exploits0References1
NVD
NVD
added 2026/03/11 6:16 p.m.7 views

CVE-2026-0231

An information disclosure vulnerability in Palo Alto Networks Cortex XDR® Broker VM allows an authenticated user to obtain and modify sensitive information by triggering live terminal session via Cortex UI and modifying any configuration setting. The attacker must have network access to the Broke...

8.4CVSS0.00171EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/11 6:3 p.m.3 views

CVE-2026-0231

An information disclosure vulnerability in Palo Alto Networks Cortex XDR® Broker VM allows an authenticated user to obtain and modify sensitive information by triggering live terminal session via Cortex UI and modifying any configuration setting. The attacker must have network access to the Broke...

8.4CVSS5.8AI score0.00171EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/03/11 6:3 p.m.31 views

CVE-2026-0231 Cortex XDR Broker VM: Sensitive Information Disclosure Vulnerability

An information disclosure vulnerability in Palo Alto Networks Cortex XDR® Broker VM allows an authenticated user to obtain and modify sensitive information by triggering live terminal session via Cortex UI and modifying any configuration setting. The attacker must have network access to the Broke...

8.4CVSS0.00171EPSS
Exploits0References1
CVE
CVE
added 2026/03/11 6:2 p.m.19 views

CVE-2026-0230

CVE-2026-0230 affects the Palo Alto Networks Cortex XDR agent on macOS. A flaw in the agent’s protection mechanism lets a local administrator disable the agent, potentially enabling malware to operate without detection. The exposure is local (vector: LOCAL) with high privileges required (PR:H) an...

6.7CVSS5.8AI score0.00144EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/11 6:2 p.m.40 views

CVE-2026-0230 Cortex XDR Agent: Local Administrator can disable the agent on macOS

A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on macOS allows a local administrator to disable the agent. This issue could be leveraged by malware to perform malicious activity without detection...

6.7CVSS0.00144EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/11 12:0 a.m.8 views

Palo Alto Networks Cortex XDR Broker VM 安全漏洞

Palo Alto Networks Cortex XDR Broker VM is a secure virtual machine developed by Palo Alto Networks. It integrates with Cortex XDR and can bridge networks with Cortex XDR. There is a security vulnerability in Palo Alto Networks Cortex XDR Broker VM, which stems from information leakage. This...

8.4CVSS6.8AI score0.00171EPSS
Exploits0References1
Rows per page
Query Builder