Lucene search
K

5149 matches found

EUVD
EUVD
•added 2026/06/19 1:17 p.m.•9 views

EUVD-2026-38024

Authentication Bypass by Capture-replay vulnerability in Apache APISIX. Attacker can benefit from certain configurations in hmac-auth to re-use a token forever, bypassing expiry. This issue affects Apache APISIX: from 3.11.0 through 3.16.0. Users are recommended to upgrade to version 3.17.0, whic...

6.3CVSS5.8AI score0.0043EPSS
Exploits0References1
AstraLinux
AstraLinux
•added 2026/06/19 11:10 a.m.•13 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: drm/i915: Fixed the reference counting during error capture and debugfs dump. When GuC support was added to error capture, the reference counting around the request object was broken. This issue has been fixed. The context-bas...

5.5CVSS6AI score0.0021EPSS
Exploits0References2
Positive Technologies
Positive Technologies
•added 2026/06/19 12:0 a.m.•16 views

PT-2026-50887

Name of the Vulnerable Software and Affected Versions Apache APISIX versions 3.11.0 through 3.16.0 Description An authentication bypass exists due to a capture-replay issue. An attacker can leverage specific configurations in the hmac-auth module to reuse a token indefinitely, effectively bypassi...

6.5CVSS5.9AI score0.0043EPSS
Exploits0References6
OSV
OSV
•added 2026/06/17 9:34 p.m.•6 views

MAL-2026-6081 Malicious code in disksweep (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5a6449a8f35de848928e7f17d88c87db80e5aee40e8b53c375e07fc7d43cc05e On every import disksweep, the package's top-level src/disksweep/init.py lines 18-24 calls ctypes.CDLL on a 2.9 MB Windows binary parser.pyd shipped...

5.8AI score
Exploits0References5
NVD
NVD
•added 2026/06/17 10:53 a.m.•12 views

CVE-2026-46781

Vulnerability in the Oracle WebCenter Enterprise Capture product of Oracle Fusion Middleware component: Client Bundle. Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via RMI to compromise...

10CVSS0.00473EPSS
Exploits0References1
NVD
NVD
•added 2026/06/17 10:53 a.m.•8 views

CVE-2026-46779

Vulnerability in the Oracle WebCenter Enterprise Capture product of Oracle Fusion Middleware component: Client Bundle. Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via T3 to compromise Oracl...

9.9CVSS0.00402EPSS
Exploits0References1
NVD
NVD
•added 2026/06/17 10:53 a.m.•9 views

CVE-2026-46782

Vulnerability in the Oracle WebCenter Enterprise Capture product of Oracle Fusion Middleware component: Client Bundle. Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise...

9.9CVSS0.00402EPSS
Exploits0References1
NVD
NVD
•added 2026/06/17 10:53 a.m.•9 views

CVE-2026-46778

Vulnerability in the Oracle WebCenter Enterprise Capture product of Oracle Fusion Middleware component: Client Bundle. Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via RMI to compromise...

10CVSS0.00473EPSS
Exploits0References1
NVD
NVD
•added 2026/06/17 10:40 a.m.•11 views

CVE-2026-35281

Vulnerability in the Oracle WebCenter Enterprise Capture product of Oracle Fusion Middleware component: Client Bundle. Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via T3, IIOP to compromise...

9.9CVSS0.00402EPSS
Exploits0References1
NVD
NVD
•added 2026/06/17 10:40 a.m.•9 views

CVE-2026-35284

Vulnerability in the Oracle WebCenter Enterprise Capture product of Oracle Fusion Middleware component: Client Bundle. Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via T3, IIOP to compromise...

9.9CVSS0.00411EPSS
Exploits0References1
NVD
NVD
•added 2026/06/17 10:40 a.m.•10 views

CVE-2026-35282

Vulnerability in the Oracle WebCenter Enterprise Capture product of Oracle Fusion Middleware component: Client Bundle. Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via T3, IIOP to compromise...

9.9CVSS0.00402EPSS
Exploits0References1
NVD
NVD
•added 2026/06/17 10:40 a.m.•16 views

CVE-2026-35283

Vulnerability in the Oracle WebCenter Enterprise Capture product of Oracle Fusion Middleware component: Client Bundle. Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via T3, IIOP to compromise...

9.9CVSS0.00411EPSS
Exploits0References1
NVD
NVD
•added 2026/06/17 10:40 a.m.•9 views

CVE-2026-35285

Vulnerability in the Oracle WebCenter Enterprise Capture product of Oracle Fusion Middleware component: Client Bundle. Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via T3, IIOP to compromise...

9.9CVSS0.00411EPSS
Exploits0References1
NVD
NVD
•added 2026/06/17 10:40 a.m.•10 views

CVE-2026-35280

Vulnerability in the Oracle WebCenter Enterprise Capture product of Oracle Fusion Middleware component: Client Bundle. Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via T3, IIOP to compromise...

9.9CVSS0.00402EPSS
Exploits0References1
RedHat Linux
RedHat Linux
•added 2026/06/17 9:22 a.m.•13 views

kernel: ALSA: aloop: Fix racy access at PCM trigger

In the Linux kernel, the following vulnerability has been resolved: ALSA: aloop: Fix racy access at PCM trigger The PCM trigger callback of aloop driver tries to check the PCM state and stop the stream of the tied substream in the corresponding cable. Since both check and stop operations are...

7.8CVSS5.5AI score0.00113EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
•added 2026/06/16 7:26 p.m.•2 views

CVE-2026-35281

Vulnerability in the Oracle WebCenter Enterprise Capture product of Oracle Fusion Middleware component: Client Bundle. Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via T3, IIOP to compromise...

9.9CVSS5.8AI score0.00402EPSS
Exploits0References2Affected Software1
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/16 4:14 p.m.•11 views

Malicious code in uidai_reusable_components (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5875a720dc1cfc6e30a67b003fc43975fbef2e11352e715e19e55e54dd84ae67 On npm install, the preinstall lifecycle script in package.json executes an inline Node one-liner that collects the installer's hostname, OS username...

5.3AI score
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/06/16 7:18 a.m.•6 views

wireshark: Improperly Controlled Sequential Memory Allocation in Wireshark

A flaw was found in the USB HID dissector in Wireshark. This issue occurs when malformed packets are decoded from a pcap file or the network, causing an excessive consumption of memory, resulting in a denial of service...

7.5CVSS5.1AI score0.00184EPSS
Exploits2References6
GithubExploit
GithubExploit
•added 2026/06/16 3:45 a.m.•78 views

Mr-Robot-CTF-Automation-Scripts

No d...

5.3AI score
Exploits0
Positive Technologies
Positive Technologies
•added 2026/06/16 12:0 a.m.•17 views

PT-2026-49854

Name of the Vulnerable Software and Affected Versions Oracle WebCenter Enterprise Capture version 12.2.1.4.0 Oracle WebCenter Enterprise Capture version 14.1.2.0.0 Description A flaw in the Client Bundle component of Oracle WebCenter Enterprise Capture allows a low privileged attacker with networ...

9.9CVSS5.7AI score0.00402EPSS
Exploits0References3
Rows per page
Query Builder