Lucene search
K

8522 matches found

Microsoft KB
Microsoft KB
added 5 hours ago29 views

May 12, 2026—KB5089548 (OS Build 28000.2113)

None None...

9.8CVSS6.8AI score0.04725EPSS
Exploits8
Microsoft KB
Microsoft KB
added 5 hours ago228 views

June 9, 2026—KB5095051 (OS Build 28000.2269)

None None...

9.8CVSS6.8AI score
Exploits0
Fedora
Fedora
added 3 days ago5 views

[SECURITY] Fedora 43 Update: openssh-10.0p1-10.fc43

SSH Secure SHell is a program for logging into and executing commands on a remote machine. SSH is intended to replace rlogin and rsh, and to provide secure encrypted communications between two untrusted hosts over an insecure network. X11 connections and arbitrary TCP/IP ports can also be forward...

6.5CVSS6.2AI score0.00367EPSS
Exploits2
CVE
CVE
added 4 days ago21 views

CVE-2026-55671

ZITADEL (github.com/zitadel/zitadel) is affected in versions 4.0.0-rc.1 through 4.15.1 by an SSRF in outgoing HTTP components (HTTP notification channels, OIDC BackChannel Logout, and SAML metadata URL fetches). The issue arises from inadequate validation against a protected denylist, allowing se...

2.3CVSS6.1AI score0.00252EPSS
Exploits0References3
Cvelist
Cvelist
added 4 days ago30 views

CVE-2026-55671 ZITADEL: Server-Side Request Forgery (SSRF) and Denylist Bypass in Outgoing HTTP Components

ZITADEL is an open source identity management platform. From 4.0.0-rc.1 through 4.15.1, ZITADEL's HTTP notification channels, OIDC BackChannel Logout, and SAML metadata URL fetches do not consistently validate user-defined URLs against protected denylist handling, allowing server-side requests to...

2.3CVSS0.00252EPSS
Exploits0References3
NVD
NVD
added 4 days ago9 views

CVE-2026-21054

Improper export of android application components in InputSharing prior to version 2.7.01.4 allows local attackers to access sharing data...

6.9CVSS0.00115EPSS
Exploits0References1
NVD
NVD
added 4 days ago9 views

CVE-2026-21055

Improper export of android application components in Bixby prior to version 4.0.70.8 allows local attackers to execute arbitrary commands with Bixby privilege...

8.5CVSS0.00121EPSS
Exploits1References1
CVE
CVE
added 4 days ago15 views

CVE-2026-21055

CVE-2026-21055 affects Bixby on Android prior to version 4.0.70.8. The flaw is improper export of Android components , allowing local attackers to execute arbitrary commands with Bixby privilege . The CVSS metrics indicate a HIGH impact (local exploit, no user interaction, high confidentiality/in...

8.5CVSS6.2AI score0.00121EPSS
Exploits1References1
EUVD
EUVD
added 4 days ago6 views

EUVD-2026-42825

Improper export of android application components in Bixby prior to version 4.0.70.8 allows local attackers to execute arbitrary commands with Bixby privilege...

8.5CVSS6.2AI score0.00121EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 4 days ago5 views

CVE-2026-21055

Improper export of android application components in Bixby prior to version 4.0.70.8 allows local attackers to execute arbitrary commands with Bixby privilege...

8.5CVSS6.2AI score0.00121EPSS
Exploits1References2
Cvelist
Cvelist
added 4 days ago33 views

CVE-2026-21055

Improper export of android application components in Bixby prior to version 4.0.70.8 allows local attackers to execute arbitrary commands with Bixby privilege...

8.5CVSS0.00121EPSS
Exploits1References1
CVE
CVE
added 4 days ago13 views

CVE-2026-21054

The CVE-2026-21054 describes an issue in the InputSharing Android component where improper export of application components before version 2.7.01.4 allows local attackers to access sharing data. Affected software: InputSharing, vulnerable up to but not including 2.7.01.4. Root cause: Android comp...

6.9CVSS5.9AI score0.00115EPSS
Exploits0References1
EUVD
EUVD
added 4 days ago6 views

EUVD-2026-42824

Improper export of android application components in InputSharing prior to version 2.7.01.4 allows local attackers to access sharing data...

6.9CVSS5.9AI score0.00115EPSS
Exploits0References1
Cvelist
Cvelist
added 4 days ago29 views

CVE-2026-21054

Improper export of android application components in InputSharing prior to version 2.7.01.4 allows local attackers to access sharing data...

6.9CVSS0.00115EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 4 days ago5 views

CVE-2026-21054

Improper export of android application components in InputSharing prior to version 2.7.01.4 allows local attackers to access sharing data...

6.9CVSS5.9AI score0.00115EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 4 days ago8 views

PT-2026-57096

Name of the Vulnerable Software and Affected Versions Bixby versions prior to 4.0.70.8 Description Improper export of Android application components allows local attackers to execute arbitrary commands with Bixby privileges. Recommendations Update Bixby to version 4.0.70.8 or later...

8.5CVSS6.3AI score0.00121EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 4 days ago6 views

Langflow < 1.9.2 Multiple Vulnerabilities

The version of Langflow installed on the remote host is prior to 1.9.2. It is, therefore, affected by multiple vulnerabilities: - The Shareable Playground feature enables execution of workflows by unauthenticated users. When the route /api/v1/buildpublictmp executes a flow, it allows providing...

9.6CVSS6.3AI score0.00688EPSS
Exploits2References4
RedhatCVE
RedhatCVE
added 5 days ago8 views

CVE-2026-52725

A flaw was found in the @angular/core component. This vulnerability allows an attacker to bypass security restrictions when creating dynamic components. By manipulating the host element or selector, an attacker can force an Angular component to be mounted directly onto a script tag. This can resu...

6.8CVSS6.1AI score0.00238EPSS
Exploits0References6
OSV
OSV
added 6 days ago4 views

DRUPAL-CONTRIB-2026-075

This module enables you to use Single Directory Components in site building views, field formatters, blocks, layouts and it improves the Developer Experience DX with SDC. The module doesn't sufficiently sanitize the markup passed to components under certain scenarios. This vulnerability is...

5.4CVSS6AI score0.00254EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 6 days ago19 views

PT-2026-56664

Name of the Vulnerable Software and Affected Versions Drupal UI Patterns SDC in Drupal UI versions 2.0.0 through 2.0.17 Description An issue exists where the module does not sufficiently sanitize markup passed to components in certain scenarios, leading to Stored Cross-site Scripting XSS...

6.1AI score0.00254EPSS
Exploits0References3
Rows per page
Query Builder