Lucene search
K

3436 matches found

RedhatCVE
RedhatCVE
added 2026/05/26 8:14 p.m.14 views

CVE-2026-6059

A cross-site scripting vulnerability exists in Aterm. Arbitrary scripts may be executed in the web browser of a user accessing the web management interface via adjacent network...

4.8CVSS5.6AI score0.00179EPSS
Exploits0References1
NVD
NVD
added 2026/05/25 4:16 a.m.16 views

CVE-2026-6059

A cross-site scripting vulnerability exists in Aterm. Arbitrary scripts may be executed in the web browser of a user accessing the web management interface via adjacent network...

4.8CVSS0.00179EPSS
Exploits0References1
CVE
CVE
added 2026/05/25 2:23 a.m.29 views

CVE-2026-8652

CVE-2026-8652 describes an OS Command Injection in the product Aterm . The issue allows an attacker who already has administrator access to the product’s web console to execute arbitrary OS commands via the adjacent network, enabling high-severity impact on confidentiality, integrity, and availab...

8.5CVSS6AI score0.00722EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/25 2:22 a.m.15 views

EUVD-2026-31623

A cross-site scripting vulnerability exists in Aterm. Arbitrary scripts may be executed in the web browser of a user accessing the web management interface via adjacent network...

4.8CVSS5.6AI score0.00179EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/25 2:22 a.m.12 views

CVE-2026-6059

A cross-site scripting vulnerability exists in Aterm. Arbitrary scripts may be executed in the web browser of a user accessing the web management interface via adjacent network...

4.8CVSS5.6AI score0.00179EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/25 2:22 a.m.13 views

CVE-2026-6059

A cross-site scripting vulnerability exists in Aterm. Arbitrary scripts may be executed in the web browser of a user accessing the web management interface via adjacent network...

4.8CVSS5.6AI score0.00179EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/25 2:22 a.m.38 views

CVE-2026-6059

A cross-site scripting vulnerability exists in Aterm. Arbitrary scripts may be executed in the web browser of a user accessing the web management interface via adjacent network...

4.8CVSS0.00179EPSS
Exploits0References1
CVE
CVE
added 2026/05/25 2:22 a.m.26 views

CVE-2026-6059

Aterm web management interface is affected by a cross-site scripting vulnerability. The vulnerable surface is the web UI, with the root cause described as improper handling of input that allows arbitrary scripts to run in a user’s browser when accessed from an adjacent network. Impact is consiste...

4.8CVSS5.6AI score0.00179EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/25 12:0 a.m.19 views

PT-2026-42993

A cross-site scripting vulnerability exists in Aterm. Arbitrary scripts may be executed in the web browser of a user accessing the web management interface via adjacent network...

4.8CVSS5.6AI score0.00179EPSS
Exploits0References1
NVD
NVD
added 2026/05/22 9:16 p.m.29 views

CVE-2026-3294

An authentication logic vulnerability in multiple TP-Link range extenders allows an unauthenticated attacker on an adjacent network to manipulate a login parameter and reset the administrator password due to insufficient validation. Successful exploitation allows an attacker to obtain full...

8.8CVSS0.00398EPSS
Exploits0References11
Cvelist
Cvelist
added 2026/05/22 8:48 p.m.20 views

CVE-2026-3294 Authentication Logic Vulnerability on Multiple TP-Link Range Extenders

An authentication logic vulnerability in multiple TP-Link range extenders allows an unauthenticated attacker on an adjacent network to manipulate a login parameter and reset the administrator password due to insufficient validation. Successful exploitation allows an attacker to obtain full...

8.7CVSS0.00398EPSS
Exploits0References11
EUVD
EUVD
added 2026/05/22 8:48 p.m.10 views

EUVD-2026-31502

An authentication logic vulnerability in multiple TP-Link range extenders allows an unauthenticated attacker on an adjacent network to manipulate a login parameter and reset the administrator password due to insufficient validation. Successful exploitation allows an attacker to obtain full...

8.7CVSS5.8AI score0.00398EPSS
Exploits0References11
ATTACKERKB
ATTACKERKB
added 2026/05/22 8:48 p.m.8 views

CVE-2026-3294

An authentication logic vulnerability in multiple TP-Link range extenders allows an unauthenticated attacker on an adjacent network to manipulate a login parameter and reset the administrator password due to insufficient validation. Successful exploitation allows an attacker to obtain full...

8.7CVSS5.8AI score0.00398EPSS
Exploits0References12
NVD
NVD
added 2026/05/22 2:16 p.m.9 views

CVE-2025-32745

Dell PowerFlex Manager, versions =4.6.2, contains an Improper Certificate Validation vulnerability. An unauthenticated attacker with adjacent network access could potentially exploit this vulnerability, leading to Information tampering...

6.5CVSS0.00083EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/22 1:23 p.m.19 views

EUVD-2025-209921

Dell PowerFlex Manager, versions =4.6.2, contains an Improper Certificate Validation vulnerability. An unauthenticated attacker with adjacent network access could potentially exploit this vulnerability, leading to Information tampering...

6.5CVSS5.8AI score0.00083EPSS
Exploits0References2
CVE
CVE
added 2026/05/22 1:23 p.m.21 views

CVE-2025-32745

Technical details are not publicly available in the provided documents. Monitor for updates from Dell PowerFlex advisories.

6.5CVSS5.8AI score0.00083EPSS
Exploits0References2Affected Software3
CNNVD
CNNVD
added 2026/05/22 12:0 a.m.11 views

Dell PowerFlex Manager 信任管理问题漏洞

Dell PowerFlex Manager is a management tool developed by Dell, Inc. Versions of Dell PowerFlex Manager prior to 4.6.2 contained a trust management vulnerability. This vulnerability stemmed from improper certificate verification, which could allow unauthenticated attackers with access to adjacent...

6.5CVSS5.8AI score0.00083EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/22 12:0 a.m.18 views

PT-2026-42832

Name of the Vulnerable Software and Affected Versions TP-Link range extenders affected versions not specified Description An authentication logic flaw allows an unauthenticated attacker on an adjacent network to reset the administrator password due to insufficient validation of a login parameter...

8.8CVSS5.8AI score0.00398EPSS
Exploits0References15
ATTACKERKB
ATTACKERKB
added 2026/05/21 7:34 a.m.10 views

CVE-2026-44064

An out-of-bounds read in ASP session ID handling in Netatalk 1.3 through 4.4.2 allows an adjacent network attacker to obtain limited information or cause a denial of service via a crafted ASP request...

7.1CVSS5.8AI score0.00171EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2026/05/21 12:0 a.m.11 views

Netatalk 安全漏洞

Netatalk is an open-source software developed by Netatalk. It provides AFP file server functionality for Classic Mac OS and macOS on Unix-like operating systems. Versions 2.0.0 to 4.4.2 of Netatalk have security vulnerabilities. These vulnerabilities stem from a minor error in the lpwrite functio...

4.2CVSS5.8AI score0.0013EPSS
Exploits0References2
Rows per page
Query Builder