CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

Vulnrichment•added 2026/04/17 7:49 p.m.•7 views

CVE-2026-40434 Anviz CrossChex Standard Improper Verification of Source of a Communication Channel

Anviz CrossChex Standard lacks source verification in the client/server channel, enabling TCP packet injection by an attacker on the same network to alter or disrupt application traffic...

8.1CVSS5.8AI score0.00231EPSS

Exploits0References3

Cvelist•added 2026/02/19 9:0 a.m.•27 views

CVE-2026-22269

Dell PowerProtect Data Manager, versions prior to 19.22, contains an Improper Verification of Source of a Communication Channel vulnerability in the REST API. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to protection mechanism bypass...

4.7CVSS0.00171EPSS

Exploits0References1

OSV•added 2025/12/02 2:15 a.m.•3 views

CVE-2025-58488

Improper verification of source of a communication channel in SmartTouchCall prior to version 1.0.1.1 allows remote attackers to access sensitive information. User interaction is required for triggering this vulnerability...

6.5CVSS5.9AI score0.0035EPSS

Exploits0References1

NVD•added 2025/12/02 2:15 a.m.•3 views

CVE-2025-58488

6.5CVSS0.0035EPSS

Exploits0References1

CVE•added 2025/12/02 1:24 a.m.•7 views

CVE-2025-58488

The connected Red Hat, NVD, CVE Registry, and vendor records confirm CVE-2025-58488 affects Samsung SmartTouchCall prior to version 1.0.1.1. The root cause is improper verification of the origin of a communication channel, which could allow a remote attacker to access sensitive information. Explo...

6.5CVSS6.4AI score0.0035EPSS

Exploits0References1Affected Software1

Cvelist•added 2025/12/02 1:24 a.m.•5 views

CVE-2025-58488

4.5CVSS0.0035EPSS

Exploits0References1

Vulnrichment•added 2025/12/02 1:24 a.m.•1 views

CVE-2025-58488

4.5CVSS6.4AI score0.0035EPSS

Exploits0References1

OSV•added 2024/08/02 6:16 p.m.•3 views

CVE-2024-38886

An issue in Horizon Business Services Inc. Caterease 16.0.1.1663 through 24.0.1.2405 and possibly later versions, allows a remote attacker to perform a Traffic Injection attack due to improper verification of the source of a communication channel...

9.8CVSS5.9AI score0.00764EPSS

Exploits0References4

BDU FSTEC•added 2024/04/08 12:0 a.m.•3 views

The vulnerability of microprogrammed communication module software for SIMATIC CP 343-1, SIMATIC CP 343-1 Lean, SIPLUS NET CP 343-1, and SIPLUS NET CP 343-1 Lean arises from insufficient verification of the communication channel source. This vulnerability allows attackers to trigger service failures.

The vulnerability of microprogrammed communication module software for SIMATIC CP 343-1, SIMATIC CP 343-1 Lean, SIPLUS NET CP 343-1, and SIPLUS NET CP 343-1 Lean is related to insufficient verification of the communication channel source. Exploiting this vulnerability can allow a malicious actor ...

7.8CVSS7.2AI score0.00597EPSS

Exploits0References5