Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8038 matches found

Tenable Nessus
Tenable Nessusadded 2026/04/07 12:0 a.m.3 views

Trane Tracer SC, Tracer SC+, and Tracer Concierge Use of Hard-Coded Credentials (CVE-2026-28255)

A Use of Hard-coded Credentials vulnerability in Trane Tracer SC, Tracer SC+, and Tracer Concierge could allow an attacker to disclose sensitive information and take over accounts. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more informatio...

9.8CVSS5.8AI score0.00051EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2026/04/06 5:0 p.m.2 views

CVE-2026-5471

A vulnerability was detected in Investory Toy Planet Trouble App up to 1.5.5 on Android. Impacted is an unknown function of the file assets/google-services-desktop.json of the component app.investory.toyfactory. The manipulation of the argument currentkey results in use of hard-coded cryptographi...

4.8CVSS5.5AI score0.00005EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/04/06 10:57 a.m.1 views

CVE-2026-5549

A vulnerability was determined in Tenda AC10 16.03.10.10multiTDE01. Affected by this issue is some unknown functionality of the file /webrootro/pem/privkeySrv.pem of the component RSA 2048-bit Private Key Handler. Executing a manipulation can lead to use of hard-coded cryptographic key . The atta...

7.5CVSS5.8AI score0.00054EPSS
Exploits0References1
EUVD
EUVDadded 2026/04/06 6:30 a.m.2 views

EUVD-2026-19172

A vulnerability was determined in hcengineering Huly Platform 0.7.382. Affected by this issue is some unknown functionality of the file foundations/core/packages/token/src/token.ts of the component JWT Token Handler. This manipulation of the argument SERVERSECRET with the input secret causes use ...

6.3CVSS5.3AI score0.00038EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2026/04/06 5:24 a.m.2 views

CVE-2026-5527

A weakness has been identified in Tenda 4G03 Pro 1.0/1.0re/01.bin/04.03.01.53. Affected by this issue is some unknown functionality of the file /etc/www/pem/server.key of the component ECDSA P-256 Private Key Handler. This manipulation causes use of hard-coded cryptographic key . It is possible t...

6.9CVSS5.9AI score0.00013EPSS
Exploits0References1
NVD
NVDadded 2026/04/06 5:16 a.m.3 views

CVE-2026-5622

A vulnerability was determined in hcengineering Huly Platform 0.7.382. Affected by this issue is some unknown functionality of the file foundations/core/packages/token/src/token.ts of the component JWT Token Handler. This manipulation of the argument SERVERSECRET with the input secret causes use ...

6.3CVSS0.00038EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/04/06 4:30 a.m.3 views

CVE-2026-5622

A vulnerability was determined in hcengineering Huly Platform 0.7.382. Affected by this issue is some unknown functionality of the file foundations/core/packages/token/src/token.ts of the component JWT Token Handler. This manipulation of the argument SERVERSECRET with the input secret causes use ...

6.3CVSS5.3AI score0.00038EPSS
Exploits0References4Affected Software1
CVE
CVEadded 2026/04/06 4:30 a.m.6 views

CVE-2026-5622

CVE-2026-5622 affects hcengineering Huly Platform 0.7.382. The vulnerability concerns the JWT Token Handler component, specifically foundations/core/packages/token/src/token.ts, where manipulating SERVER_SECRET with the input secret leads to the use of a hard-coded cryptographic key. The issue ca...

6.3CVSS5.3AI score0.00038EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2026/04/06 4:30 a.m.2 views

CVE-2026-5622 hcengineering Huly Platform JWT Token token.ts hard-coded key

A vulnerability was determined in hcengineering Huly Platform 0.7.382. Affected by this issue is some unknown functionality of the file foundations/core/packages/token/src/token.ts of the component JWT Token Handler. This manipulation of the argument SERVERSECRET with the input secret causes use ...

6.3CVSS5.3AI score0.00038EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/04/06 4:30 a.m.27 views

CVE-2026-5622 hcengineering Huly Platform JWT Token token.ts hard-coded key

A vulnerability was determined in hcengineering Huly Platform 0.7.382. Affected by this issue is some unknown functionality of the file foundations/core/packages/token/src/token.ts of the component JWT Token Handler. This manipulation of the argument SERVERSECRET with the input secret causes use ...

6.3CVSS0.00038EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/04/06 12:0 a.m.4 views

PT-2026-30565

A vulnerability was determined in hcengineering Huly Platform 0.7.382. Affected by this issue is some unknown functionality of the file foundations/core/packages/token/src/token.ts of the component JWT Token Handler. This manipulation of the argument SERVER SECRET with the input secret causes use...

6.3CVSS5.3AI score0.00038EPSS
Exploits0References4
EUVD
EUVDadded 2026/04/05 9:30 a.m.1 views

EUVD-2026-19046

A vulnerability was determined in Tenda AC10 16.03.10.10multiTDE01. Affected by this issue is some unknown functionality of the file /webrootro/pem/privkeySrv.pem of the component RSA 2048-bit Private Key Handler. Executing a manipulation can lead to use of hard-coded cryptographic key . The atta...

6.9CVSS5.8AI score0.00054EPSS
Exploits0References6
NVD
NVDadded 2026/04/05 8:16 a.m.1 views

CVE-2026-5549

A vulnerability was determined in Tenda AC10 16.03.10.10multiTDE01. Affected by this issue is some unknown functionality of the file /webrootro/pem/privkeySrv.pem of the component RSA 2048-bit Private Key Handler. Executing a manipulation can lead to use of hard-coded cryptographic key . The atta...

7.5CVSS0.00054EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/04/05 7:45 a.m.1 views

CVE-2026-5549

A vulnerability was determined in Tenda AC10 16.03.10.10multiTDE01. Affected by this issue is some unknown functionality of the file /webrootro/pem/privkeySrv.pem of the component RSA 2048-bit Private Key Handler. Executing a manipulation can lead to use of hard-coded cryptographic key . The atta...

6.9CVSS5.6AI score0.00054EPSS
Exploits0References5Affected Software1
CVE
CVEadded 2026/04/05 7:45 a.m.7 views

CVE-2026-5549

CVE-2026-5549 affects Tenda AC10 16.03.10.10_multi_TDE01. The issue involves the RSA 2048-bit Private Key Handler, specifically the file /webroot_ro/pem/privkeySrv.pem. A manipulation of this component can lead to use of a hard-coded cryptographic key. The attack can be launched remotely, and the...

7.5CVSS5.8AI score0.00054EPSS
Exploits0References5Affected Software1
EUVD
EUVDadded 2026/04/05 12:30 a.m.4 views

EUVD-2026-19003

A weakness has been identified in Tenda 4G03 Pro 1.0/1.0re/01.bin/04.03.01.53. Affected by this issue is some unknown functionality of the file /etc/www/pem/server.key of the component ECDSA P-256 Private Key Handler. This manipulation causes use of hard-coded cryptographic key . It is possible t...

6.9CVSS5.9AI score0.00013EPSS
Exploits0References5
NVD
NVDadded 2026/04/05 12:16 a.m.3 views

CVE-2026-5527

A weakness has been identified in Tenda 4G03 Pro 1.0/1.0re/01.bin/04.03.01.53. Affected by this issue is some unknown functionality of the file /etc/www/pem/server.key of the component ECDSA P-256 Private Key Handler. This manipulation causes use of hard-coded cryptographic key . It is possible t...

6.9CVSS0.00013EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2026/04/05 12:0 a.m.1 views

Linux Distros Unpatched Vulnerability : CVE-2026-23466

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/xe: Open-code GGTT MMIO access protection GGTT MMIO access is currently protected by hotplug drmdeventer, which works correctly when the driver loads...

7.8CVSS7.1AI score0.00015EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/04/05 12:0 a.m.3 views

PT-2026-30420

A vulnerability was determined in Tenda AC10 16.03.10.10 multi TDE01. Affected by this issue is some unknown functionality of the file /webroot ro/pem/privkeySrv.pem of the component RSA 2048-bit Private Key Handler. Executing a manipulation can lead to use of hard-coded cryptographic key . The...

6.9CVSS5.6AI score0.00054EPSS
Exploits0References6
Cvelist
Cvelistadded 2026/04/04 11:15 p.m.22 views

CVE-2026-5527 Tenda 4G03 Pro ECDSA P-256 Private Key server.key hard-coded key

A weakness has been identified in Tenda 4G03 Pro 1.0/1.0re/01.bin/04.03.01.53. Affected by this issue is some unknown functionality of the file /etc/www/pem/server.key of the component ECDSA P-256 Private Key Handler. This manipulation causes use of hard-coded cryptographic key . It is possible t...

6.9CVSS0.00013EPSS
Exploits0References4
Rows per page
Query Builder