Lucene search
K

192497 matches found

EUVD
EUVD
added 2026/03/04 6:31 p.m.6 views

EUVD-2026-9416

A vulnerability in the packet processing logic may allow an authenticated attacker to craft and transmit a malicious Wi-Fi frame that causes an Access Point AP to classify the frame as group-addressed traffic and re-encrypt it using the Group Temporal Key GTK associated with the victim's BSSID...

4.3CVSS5.9AI score0.00182EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/04 6:31 p.m.8 views

EUVD-2026-9412

Dell Device Management Agent DDMA, versions prior to 26.02, contain a Plaintext Storage of Password vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Unauthorized Access...

4.4CVSS5.9AI score0.00102EPSS
Exploits0References2
NVD
NVD
added 2026/03/04 6:16 p.m.5 views

CVE-2026-20149

A vulnerability in Cisco Webex could have allowed an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. Cisco has addressed this vulnerability, and no customer action is needed. This vulnerability was due to improper filtering of user-supplied input. Prior to this...

6.1CVSS0.00235EPSS
Exploits0References1
NVD
NVD
added 2026/03/04 6:16 p.m.7 views

CVE-2026-20057

Multiple Cisco products are affected by a vulnerability in the Snort 3 Visual Basic for Applications VBA feature which could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to crash. This vulnerability is due to lack of proper error checking when decompressing VBA...

5.8CVSS0.00432EPSS
Exploits0References1
NVD
NVD
added 2026/03/04 6:16 p.m.5 views

CVE-2026-20058

Multiple Cisco products are affected by vulnerabilities in the Snort 3 VBA feature that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to crash. These vulnerabilities are due to improper error checking when decompressing VBA data. An attacker could exploit...

5.8CVSS0.0039EPSS
Exploits0References1
NVD
NVD
added 2026/03/04 6:16 p.m.6 views

CVE-2026-20031

A vulnerability in the HTML Cascading Style Sheets CSS module of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to improper error handling when splitting UTF-8 strings. An attacker could exploit th...

5.3CVSS0.00414EPSS
Exploits0References1
NVD
NVD
added 2026/03/04 6:16 p.m.12 views

CVE-2026-20003

A vulnerability in the REST API of Cisco Secure FMC Software could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. This vulnerability is due to inadequate validation of user-supplied input. An attacker could exploit this vulnerability by sending...

4.9CVSS0.00281EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/04 5:49 p.m.31 views

CVE-2026-20067 Multiple Cisco Products Snort 3 TBD Denial of Service Vulnerability

Multiple Cisco products are affected by a vulnerability in the Snort 3 detection engine that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to restart, resulting in an interruption of packet inspection. This vulnerability is due to incomplete error checking...

5.8CVSS0.00475EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/04 5:47 p.m.4 views

CVE-2026-20057

Multiple Cisco products are affected by a vulnerability in the Snort 3 Visual Basic for Applications VBA feature which could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to crash. This vulnerability is due to lack of proper error checking when decompressing VBA...

5.8CVSS6AI score0.00432EPSS
Exploits0References2Affected Software3
CVE
CVE
added 2026/03/04 5:41 p.m.12 views

CVE-2026-20017

Cisco Secure FTD Software CLI contains a vulnerability due to insufficient input validation of user-supplied CLI arguments. An authenticated, local attacker with valid admin credentials could execute arbitrary OS commands as root. Impact is privilege escalation with potential for high confidentia...

6CVSS6.2AI score0.00172EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/04 5:24 p.m.5 views

CVE-2026-20149

A vulnerability in Cisco Webex could have allowed an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. Cisco has addressed this vulnerability, and no customer action is needed. This vulnerability was due to improper filtering of user-supplied input. Prior to this...

6.1CVSS5.8AI score0.00235EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/04 5:18 p.m.30 views

CVE-2026-20003

A vulnerability in the REST API of Cisco Secure FMC Software could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. This vulnerability is due to inadequate validation of user-supplied input. An attacker could exploit this vulnerability by sending...

4.9CVSS0.00281EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/04 5:18 p.m.3 views

CVE-2026-20002

A vulnerability in the web-based management interface of Cisco Secure FMC Software could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. This vulnerability is due to inadequate validation of user-supplied input. An attacker could exploit this...

8.1CVSS6AI score0.0034EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/03/04 5:18 p.m.28 views

CVE-2026-20002

A vulnerability in the web-based management interface of Cisco Secure FMC Software could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. This vulnerability is due to inadequate validation of user-supplied input. An attacker could exploit this...

8.1CVSS0.0034EPSS
Exploits0References1
OSV
OSV
added 2026/03/04 5:16 p.m.5 views

CVE-2026-23810

A vulnerability in the packet processing logic may allow an authenticated attacker to craft and transmit a malicious Wi-Fi frame that causes an Access Point AP to classify the frame as group-addressed traffic and re-encrypt it using the Group Temporal Key GTK associated with the victim's BSSID...

3.1CVSS5.8AI score0.00182EPSS
Exploits0References1
NVD
NVD
added 2026/03/04 5:16 p.m.8 views

CVE-2026-23811

A vulnerability in the client isolation mechanism may allow an attacker to bypass Layer 2 L2 communication restrictions between clients and redirect traffic at Layer 3 L3. In addition to bypassing policy enforcement, successful exploitation - when combined with a port-stealing attack - may enable...

4.3CVSS0.00155EPSS
Exploits0References1
OSV
OSV
added 2026/03/04 5:16 p.m.6 views

CVE-2026-23601

A vulnerability has been identified in the wireless encryption handling of Wi-Fi transmissions. A malicious actor can generate shared-key authenticated transmissions containing targeted payloads while impersonating the identity of a primary BSSID.Successful exploitation allows for the delivery of...

5.4CVSS5.7AI score0.00084EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/04 5:15 p.m.30 views

CVE-2019-25505 Tradebox 5.4 SQL Injection via symbol Parameter

Tradebox 5.4 contains an SQL injection vulnerability that allows authenticated attackers to manipulate database queries by injecting SQL code through the symbol parameter. Attackers can send POST requests to the monthlydeposit endpoint with malicious symbol values using boolean-based blind,...

7.1CVSS0.00287EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/03/04 5:15 p.m.4 views

CVE-2019-25504 NCrypted Jobgator Lastest SQL Injection via agents Find-Jobs

NCrypted Jobgator contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the experience parameter. Attackers can send POST requests to the agents Find-Jobs endpoint with malicious experience values to extract...

8.8CVSS6.1AI score0.00237EPSS
Exploits0References2
CVE
CVE
added 2026/03/04 5:15 p.m.8 views

CVE-2019-25500

Simple Job Script is affected by an SQL injection in the employerid parameter of the register-recruiters endpoint. Attackers can send unauthenticated POST requests to manipulate queries, potentially exposing sensitive data (C: HIGH) and altering data (I: LOW). Affected vector is network with low ...

8.8CVSS6.1AI score0.00294EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder