CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

362 matches found

RedhatCVE•added 2026/06/05 7:40 p.m.•6 views

CVE-2025-53870

An improper neutralization of special elements used in an os command 'os command injection' vulnerability in Fortinet FortiAP 7.6.0 through 7.6.2, FortiAP 7.4.0 through 7.4.5, FortiAP 7.2 all versions, FortiAP 7.0 all versions, FortiAP 6.4 all versions, FortiAP-W2 7.4.0 through 7.4.4, FortiAP-W2...

6.7CVSS5.8AI score0.00561EPSS

Exploits0References1

Cvelist•added 2026/04/09 9:34 p.m.•15 views

CVE-2026-33776 Junos OS and Junos OS Evolved: Specific low privileged CLI command exposes sensitive information

A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS and Junos OS Evolved allows a local user with low privileges to read sensitive information. A local user with low privileges can execute the CLI command 'show mgd' with specific arguments which will expose sensitive...

6.8CVSS0.00092EPSS

Exploits0References1

Positive Technologies•added 2026/04/01 12:0 a.m.•5 views

PT-2026-29664

Name of the Vulnerable Software and Affected Versions goshs versions 1.1.0 through 2.0.0-beta.2 Description goshs, a SimpleHTTPServer written in Go, has a flaw where the Share Token mechanism can be bypassed. This bypass allows unauthorized access to all goshs functionalities, including code...

8.1CVSS6AI score0.00392EPSS

Exploits1References10

RedhatCVE•added 2026/03/26 2:59 p.m.•5 views

CVE-2026-20046

A vulnerability in task group assignment for a specific CLI command in Cisco IOS XR Software could allow an authenticated, local attacker to elevate privileges and gain full administrative control of an affected device. This vulnerability is due to incorrect mapping of a command to task groups...

8.8CVSS6.8AI score0.00142EPSS

Exploits0References1

CNNVD•added 2026/03/23 12:0 a.m.•4 views

TP-Link多款产品安全漏洞

TP-LINK Archer is a series of routers produced by TP-LINK Corporation. Several TP-Link products have security vulnerabilities. These vulnerabilities stem from improper handling of wireless control management CLI commands. This could allow authenticated attackers with administrative privileges to...

8.5CVSS7.7AI score0.00619EPSS

Exploits0References5

Tenable Nessus•added 2026/03/13 12:0 a.m.•2 views

Cisco IOS XR Software CLI Privilege Escalation (cisco-sa-iosxr-privesc-bF8D5U4W) (CVE-2026-20046)

According to its self-reported version, Cisco IOS XR is affected by a vulnerability. - A vulnerability in task group assignment for a specific CLI command in Cisco IOS XR Software could allow an authenticated, local attacker to elevate privileges and gain full administrative control of an affecte...

8.8CVSS6.9AI score0.00142EPSS

Exploits0References4

CVE•added 2026/03/11 4:31 p.m.•12 views

CVE-2026-20046

CVE-2026-20046 affects Cisco IOS XR Software. The vulnerability stems from an incorrect mapping of a CLI command to task groups, allowing an authenticated, low-privileged local attacker to bypass task group checks and elevate privileges to full administrative control. Impact stated as privilege e...

8.8CVSS5.8AI score0.00142EPSS

Exploits0References1

Positive Technologies•added 2026/03/11 12:0 a.m.•5 views

PT-2026-24729

8.8CVSS5.8AI score0.00142EPSS

Exploits0References10

NVD•added 2026/03/04 6:16 p.m.•11 views

CVE-2026-20008

A vulnerability in a small subset of CLI commands that are used on Cisco Secure Firewall Adaptive Security Appliance ASA Software and Cisco Secure Firewall Threat Defense FTD Software could allow an authenticated, local attacker to craft Lua code that could be used on the underlying operating...

6CVSS0.00132EPSS

Exploits0References1

OSV•added 2026/03/03 9:31 p.m.•3 views

GHSA-XC68-RRQC-QGQ3 MCP NMAP Server has an Injection vulnerability

A vulnerability was detected in PhialsBasement nmap-mcp-server up to bee6d23547d57ae02460022f7c78ac0893092e38. Affected by this issue is the function childprocess.exec of the file src/index.ts of the component Nmap CLI Command Handler. The manipulation results in command injection. The attack may...

6.3CVSS5.6AI score0.02569EPSS

Exploits1References9

NVD•added 2025/11/18 5:16 p.m.•4 views

CVE-2025-54821

An Improper Privilege Management vulnerability CWE-269 vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.11, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4 all versions, FortiPAM 1.6.0, FortiPAM 1.5 all versions, FortiPAM 1.4 all versions, FortiPAM...

6CVSS0.00135EPSS

Exploits0References2

OSV•added 2025/11/18 5:16 p.m.•5 views

CVE-2025-54821

An Improper Privilege Management vulnerability CWE-269 vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4 all versions, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4 all versions, FortiPAM 1.6.0, FortiPAM 1.5 all versions, FortiPAM 1.4 all versions, FortiPAM 1.3...

6CVSS5.8AI score0.00135EPSS

Exploits0References1

VulnCheck KEV•added 2025/10/23 12:0 a.m.•9 views

VulnCheck KEV: CVE-2025-24477

A heap-based buffer overflow vulnerability in Fortinet FortiOS 7.6.0 through 7.6.2, FortiOS 7.4.0 through 7.4.7, FortiOS 7.2.4 through 7.2.12 allows an attacker to escalate its privileges via a specially crafted CLI command...

6.7CVSS6.1AI score0.00211EPSS

In wildExploits0References2