Lucene search
K

33931 matches found

CVE
CVE
added 2026/05/12 4:59 p.m.54 views

CVE-2026-33835

Technical details about CVE-2026-33835 are not publicly provided in the connected documents. The initial description notes a use-after-free in Windows Cloud Files Mini Filter Driver with local privilege elevation, but no vendor/product/version specifics or fix details are included here. Monitor f...

7.8CVSS5.8AI score0.02117EPSS
Exploits0References1Affected Software11
Vulnrichment
Vulnrichment
added 2026/05/12 4:59 p.m.9 views

CVE-2026-33835 Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

...

7.8CVSS5.8AI score0.02117EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/12 4:58 p.m.33 views

CVE-2026-35418 Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

...

7.8CVSS0.00202EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/12 4:58 p.m.7 views

CVE-2026-35418 Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

...

7.8CVSS5.8AI score0.00202EPSS
Exploits0References1
CVE
CVE
added 2026/05/12 4:58 p.m.37 views

CVE-2026-35418

CVE-2026-35418 – Summary : Use-after-free in Windows Cloud Files Mini Filter Driver allows an authorized local attacker to elevate privileges. The CVE entry is supported by NVD/EUVD/CVE records describing a local, privilege-escalation vulnerability with a high CVSS v3.1 score (7.8; LOCAL, LOW att...

7.8CVSS5.8AI score0.00202EPSS
Exploits0References1Affected Software11
Vulnrichment
Vulnrichment
added 2026/05/12 4:54 p.m.6 views

CVE-2026-26083

A missing authorization vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.1, FortiSandbox 4.4.0 through 4.4.8, FortiSandbox Cloud 5.0.2 through 5.0.5, FortiSandbox PaaS 23.4 all versions, FortiSandbox PaaS 23.3 all versions, FortiSandbox PaaS 23.1 all versions, FortiSandbox PaaS 22.2 all...

9.8CVSS6AI score0.00733EPSS
Exploits0References1
CVE
CVE
added 2026/05/12 4:29 p.m.14 views

CVE-2026-43993

CVE-2026-43993 : In JunoClaw’s WAVS bridge, the function computeDataVerify fetched agent-supplied URLs without validating the URL scheme, port, or resolved IP, enabling an SSRF vulnerability. Affected version range is prior to 0.x.y-security-1 . This could allow access to cloud-metadata and inter...

8.2CVSS5.8AI score0.0023EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/12 4:29 p.m.8 views

CVE-2026-43993 JunoClaw: SSRF in WAVS computeDataVerify allows cloud-metadata and internal-service access

JunoClaw is an agentic AI platform built on Juno Network. Prior to 0.x.y-security-1, the WAVS bridge's computeDataVerify called fetch on agent-supplied URLs without validating scheme, port, or resolved IP, resulting in an SSRF vulnerability. This vulnerability is fixed in 0.x.y-security-1...

8.2CVSS5.8AI score0.0023EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/12 4:29 p.m.35 views

CVE-2026-43993 JunoClaw: SSRF in WAVS computeDataVerify allows cloud-metadata and internal-service access

JunoClaw is an agentic AI platform built on Juno Network. Prior to 0.x.y-security-1, the WAVS bridge's computeDataVerify called fetch on agent-supplied URLs without validating scheme, port, or resolved IP, resulting in an SSRF vulnerability. This vulnerability is fixed in 0.x.y-security-1...

8.2CVSS0.0023EPSS
Exploits0References3
Microsoft Secure
Microsoft Secure
added 2026/05/12 4:0 p.m.10 views

Defending consumer web properties against modern DDoS attacks

If you own, create, or maintain online services and web portals, you’re probably aware of the dramatic upswing in DDoS attacks on your domains. AI has democratized tooling not just for us but for threat actors as well. DDoS in this era has extended from simple bandwidth saturation to sophisticate...

5.9AI score
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/05/12 2:0 p.m.13 views

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally...

7.8CVSS5.8AI score0.00163EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/05/12 2:0 p.m.16 views

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally...

7.8CVSS5.8AI score0.02117EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/05/12 2:0 p.m.15 views

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally...

7.8CVSS5.8AI score0.00202EPSS
Exploits0
Wolfi
Wolfi
added 2026/05/12 1:48 p.m.19 views

CVE-2026-44477 vulnerabilities

Vulnerabilities for packages: cloudnative-pg...

9.9CVSS5.8AI score0.0048EPSS
Exploits0
Wolfi
Wolfi
added 2026/05/12 1:48 p.m.16 views

GHSA-423P-G724-FR39 vulnerabilities

Vulnerabilities for packages: cloudnative-pg...

5.8AI score
Exploits0
Wiz blog
Wiz blog
added 2026/05/12 1:24 p.m.9 views

Introducing Wiz Audit History: Track Every Change Across your Environment

Wiz Audit History is now GA, providing a continuous, cross-cloud timeline of changes to resource configurations and findings to accelerate incident response and simplify compliance...

5.8AI score
Exploits0
Chainguard
Chainguard
added 2026/05/12 1:18 p.m.18 views

CVE-2026-44477 vulnerabilities

Vulnerabilities for packages: cloudnative-pg-fips, cloudnative-pg, plugin-barman-cloud-fips, plugin-barman-cloud...

9.9CVSS5.8AI score0.0048EPSS
Exploits0
Chainguard
Chainguard
added 2026/05/12 1:18 p.m.10 views

GHSA-423P-G724-FR39 vulnerabilities

Vulnerabilities for packages: cloudnative-pg-fips, cloudnative-pg, plugin-barman-cloud-fips, plugin-barman-cloud...

5.8AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/05/12 9:16 a.m.9 views

CVE-2026-7428

Prior to 2025-11-03, well-intended users of Terraform or REST API for Google Cloud AlloyDB for PostgreSQL could have created clusters with an insecure default password which could have been exploited by a remote attacker to gain full administrative access to the database. Exploitation required...

9.2CVSS5.8AI score0.00239EPSS
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/12 7:43 a.m.15 views

Malicious code in dlty (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 494f5fbab24a26771e84ce06eea5303b7d1b9135b505a6d93a01c417603f1902 Importing the dlty package triggers an active data-exfiltration channel from the installer to third-party-controlled infrastructure. dlty/init.py...

5.8AI score
Exploits0References2
Rows per page
Query Builder