Lucene search
K

999 matches found

CNNVD
CNNVD
added 2026/04/15 12:0 a.m.9 views

Splunk Cloud Platform和Splunk Enterprise 安全漏洞

Splunk Cloud Platform and Splunk Enterprise are products of the American company Splunk. Splunk Cloud Platform is a powerful service for data collection, processing, and analysis. Splunk Enterprise is a suite of software for data collection and analysis. Both Splunk Cloud Platform and Splunk...

4.3CVSS5.8AI score0.00152EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/15 12:0 a.m.11 views

Splunk Cloud Platform和Splunk Enterprise 安全漏洞

Splunk Cloud Platform and Splunk Enterprise are both products of the American company Splunk. Splunk Cloud Platform is a powerful service for data collection, processing, and analysis. Splunk Enterprise is a suite of software for data collection and analysis. Both Splunk Cloud Platform and Splunk...

6.6CVSS5.8AI score0.00246EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/15 12:0 a.m.6 views

PT-2026-33065

In Splunk Enterprise versions below 10.2.2, 10.0.5, 9.4.10, and 9.3.11, and Splunk Cloud Platform versions below 10.4.2603.0, 10.3.2512.6, 10.2.2510.10, 10.1.2507.19, 10.0.2503.13, and 9.3.2411.127, a low-privileged user that does not hold the admin or power Splunk roles, has write permission on...

4.3CVSS5.8AI score0.00152EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/04/15 12:0 a.m.10 views

Splunk Cloud Platform和Splunk Enterprise 安全漏洞

Splunk Cloud Platform and Splunk Enterprise are products of the American company Splunk. Splunk Cloud Platform is a powerful service for data collection, processing, and analysis. Splunk Enterprise is a suite of software for data collection and analysis. Both Splunk Cloud Platform and Splunk...

7.1CVSS6.1AI score0.03282EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/14 12:0 a.m.8 views

Fortinet FortiSOAR PaaS和Fortinet FortiSOAR on-premise 路径遍历漏洞

Fortinet FortiSOAR PaaS and Fortinet FortiSOAR on-premise are security orchestration, automation, and response software developed by Fortinet, a US-based company. Both versions have a path traversal vulnerability, which stems from improper path restrictions. This vulnerability could allow...

6.5CVSS6AI score0.00416EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/14 12:0 a.m.4 views

PT-2026-32955

Name of the Vulnerable Software and Affected Versions OAuth2 Proxy versions prior to 7.15.2 Description A configuration-dependent authentication bypass exists in deployments using auth request-style integration, such as nginx auth request. The issue occurs when either the --ping-user-agent variab...

9.1CVSS5.8AI score0.00475EPSS
Exploits0References15
Chainguard
Chainguard
added 2026/04/10 2:13 a.m.4 views

GHSA-PW2V-CMFH-X2P3 vulnerabilities

Vulnerabilities for packages: linux-azure, linux-vmware, linux-gcp, linux-qemu, linux-aws...

5.9AI score
Exploits0
Chainguard
Chainguard
added 2026/04/10 2:13 a.m.7 views

GHSA-2MVM-XGM9-R324 vulnerabilities

Vulnerabilities for packages: linux-azure, linux-vmware, linux-gcp, linux-qemu, linux-aws...

5.9AI score
Exploits0
Chainguard
Chainguard
added 2026/04/10 2:13 a.m.4 views

GHSA-5R72-P4CV-H344 vulnerabilities

Vulnerabilities for packages: linux-azure, linux-vmware, linux-gcp, linux-qemu, linux-aws...

5.9AI score
Exploits0
Chainguard
Chainguard
added 2026/04/10 2:13 a.m.6 views

CVE-2026-23208 vulnerabilities

Vulnerabilities for packages: linux-azure, linux-vmware, linux-gcp, linux-qemu, linux-aws...

7.8CVSS5.9AI score0.00121EPSS
Exploits0
Packet Storm News
Packet Storm News
added 2026/04/10 12:0 a.m.3 views

S3CDM: A Secret-Sharing-Scheme-Based Cyberattack Detection Model and Its Simulation Implementation

We design and develop a secret-sharing-scheme-based cyberattack detection modelS3CDMthat can detect unauthorized or illegal activities especially insider attacks and protect sensitive information within complex network infrastructures of large organizations. The model splits a secret among a grou...

5.8AI score
Exploits0
EUVD
EUVD
added 2026/04/06 9:31 p.m.7 views

EUVD-2026-19442

Anthropic Claude Code CLI and Claude Agent SDK contain an OS command injection vulnerability in authentication helper execution where helper configuration values are executed using shell=true without input validation. Attackers who can influence authentication settings can inject shell...

9.8CVSS6.2AI score0.00596EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/05 10:0 p.m.27 views

CVE-2026-5601 Acrel Electrical Prepaid Cloud Platform Backup File bin.rar information disclosure

A vulnerability was found in Acrel Electrical Prepaid Cloud Platform 1.0. This issue affects some unknown processing of the file /bin.rar of the component Backup File Handler. The manipulation results in information disclosure. The attack can be launched remotely. The exploit has been made public...

6.9CVSS0.00292EPSS
Exploits0References4
CVE
CVE
added 2026/04/05 10:0 p.m.14 views

CVE-2026-5601

CVE-2026-5601 affects Acrel Electrical Prepaid Cloud Platform 1.0, specifically the Backup File Handler . The issue stems from unknown processing of the file /bin.rar , resulting in information disclosure . Exploitation is remote and the exploit has been published. The provided documents do not i...

6.9CVSS5.4AI score0.00292EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/04/05 12:0 a.m.8 views

Acrel Electrical Prepaid Cloud Platform 访问控制错误漏洞

Acrel Electrical Prepaid Cloud Platform is a platform developed by Acrel Electric of China. Version 1.0 of the Acrel Electrical Prepaid Cloud Platform contains an access control vulnerability, which stems from improper handling of the /bin.rar file. This vulnerability may lead to information...

6.9CVSS6.1AI score0.00292EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/04/04 4:59 a.m.5 views

CVE-2026-32211

Missing authentication for critical function in Azure MCP Server allows an unauthorized attacker to disclose information over a network...

9.1CVSS5.8AI score0.00827EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/02 11:26 p.m.2 views

CVE-2026-33107

Server-side request forgery ssrf in Azure Databricks allows an unauthorized attacker to elevate privileges over a network...

10CVSS5.9AI score0.00705EPSS
Exploits0References2
Fedora
Fedora
added 2026/03/28 12:19 a.m.4 views

[SECURITY] Fedora 44 Update: rust-reqsign-google-3.0.0-1.fc44

Google Cloud Platform signing implementation for reqsign...

5.8AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/03/26 2:59 p.m.6 views

CVE-2026-20163

In Splunk Enterprise versions below 10.2.0, 10.0.4, 9.4.9, and 9.3.10, and Splunk Cloud Platform versions below 10.2.2510.5, 10.0.2503.12, 10.1.2507.16, and 9.3.2411.124, a user who holds a role that contains the high-privilege capability editcmd could execute arbitrary shell commands using the...

7.2CVSS6.1AI score0.00462EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/23 12:0 a.m.10 views

Kalcaddle Kodbox 操作系统命令注入漏洞

Kalcaddle Kodbox is a private cloud storage and online collaborative office platform developed by Kalcaddle Corporation. Version 1.64 of Kalcaddle Kodbox contains a vulnerability related to operating system command injection. This vulnerability stems from incorrect operations on the...

5.8CVSS5.8AI score0.02097EPSS
Exploits0References4
Rows per page
Query Builder