CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

CVE•added 2026/02/24 1:3 p.m.•13 views

CVE-2026-1772

CVE-2026-1772 concerns the RTU500 web interface, where an unprivileged user can read user management information. The vulnerability does not require UI access and can be exploited via browser developer tools, with no user interaction and network-based access. The CVSS 4.0 vector indicates: AV:N/A...

5.3CVSS5.3AI score0.00015EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2026/02/24 12:0 a.m.•4 views

PT-2026-21676

Name of the Vulnerable Software and Affected Versions RTU500 affected versions not specified Description An unprivileged user can read user management information through the RTU500 web interface. Accessing this information requires tools like browser development utilities and does not occur...

5.3CVSS5.9AI score0.00015EPSS

Exploits0References4

RedhatCVE•added 2025/11/26 5:57 p.m.•1 views

CVE-2025-13483

SiRcom SMART Alert SiSA allows unauthorized access to backend APIs. This allows an unauthenticated attacker to bypass the login screen using browser developer tools, gaining access to restricted parts of the application...

8.8CVSS7AI score0.00279EPSS

Exploits0References1

NVD•added 2025/11/25 6:15 p.m.•2 views

CVE-2025-13483

8.8CVSS0.00279EPSS

Exploits0References1

OSV•added 2025/10/13 9:33 p.m.•2 views

CVE-2025-62362 Name and e-mail of employee that has done a publication is discoverable in gpp-burgerportaal

gpp-burgerportaal is a Dutch government citizen portal application. In versions before 2.0.3, 3.0.2, and 4.0.1, the name and email address of employees who publish content are exposed in network responses and can be discovered by viewing the browser's developer tools network tab. This information...

6.9CVSS6.3AI score0.00062EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-48206

Malicious code in bioql PyPI...

4.9CVSS4.9AI score0.00146EPSS

Exploits0References2

Vulnrichment•added 2024/09/26 3:15 p.m.•16 views

CVE-2024-7259 Ovirt-engine: potential exposure of cleartext provider passwords via web ui

A flaw was found in oVirt. A user with administrator privileges, including users with the ReadOnlyAdmin permission, may be able to use browser developer tools to view Provider passwords in cleartext...

4.9CVSS6.5AI score0.00146EPSS

Exploits0References2

CVE•added 2024/09/26 3:15 p.m.•50 views

CVE-2024-7259

The CVE-2024-7259 entry covers a vulnerability in oVirt-engine where an administrator (including ReadOnlyAdmin) can view provider credentials in cleartext via browser developer tools. Affected product: oVirt-engine (as described in CVE context); root cause: exposure of provider passwords via the ...

4.9CVSS4.3AI score0.00146EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2024/09/26 12:0 a.m.•2 views

PT-2024-38216 · Ovirt · Ovirt

Name of the Vulnerable Software and Affected Versions: oVirt affected versions not specified Description: A flaw was found in oVirt, allowing a user with administrator privileges, including those with the ReadOnlyAdmin permission, to potentially view Provider passwords in cleartext using browser...

4.9CVSS4.3AI score0.00146EPSS

Exploits0References9

CNNVD•added 2024/09/26 12:0 a.m.•1 views

oVirt Node 安全漏洞

oVirt Node is an open source virtualization management platform. A security vulnerability exists in oVirt Node that stems from the fact that a user with administrator privileges may be able to view provider passwords in plaintext using browser developer tools...

4.9CVSS4.7AI score0.00146EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by