CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

85 matches found

Positive Technologies•added 2026/04/23 12:0 a.m.•1 views

PT-2026-34742

TRC analysis shows attackers exploiting CVE-2026-3893 in Carlson VASCO-B GNSS receivers to gain unauthenticated access, then escalating privileges and moving laterally through manufacturing networks. Runtime segmentation could help contain post-compromise activity in critical infrastructure...

9.4CVSS5.3AI score0.00107EPSS

Exploits0References6

CNNVD•added 2026/04/05 12:0 a.m.•3 views

C4G Basic Laboratory Information System 访问控制错误漏洞

C4G Basic Laboratory Information System is an open-source laboratory information management system developed by C4G. Version 3.4 of the C4G Basic Laboratory Information System contains a vulnerability related to access control. This vulnerability stems from multiple SQL injection vulnerabilities,...

8.8CVSS6.1AI score0.00095EPSS

Exploits1References2

CNNVD•added 2026/03/16 12:0 a.m.•2 views

D-Link多款产品访问控制错误漏洞

D-Link DNS-320, etc., are products of D-Link Corporation from China. The D-Link DNS-320 is a NAS Network Attached Storage device. The D-Link DNS-325 is also a NAS device. The D-Link DNS-120 is a network storage adapter. Several D-Link products have vulnerabilities related to access control, which...

9.8CVSS7.1AI score0.00115EPSS

Exploits1References5

CNNVD•added 2026/02/02 12:0 a.m.•2 views

IBM Jazz Foundation 安全漏洞

IBM Jazz Foundation is a next-generation collaboration platform for software delivery technology developed by the American company International Business Machines IBM. Versions 7.0.3 to 7.0.3 iFix019 and 7.1.0 to 7.1.0 iFix005 of IBM Jazz Foundation contain security vulnerabilities. These...

5.4CVSS5.8AI score0.00012EPSS

Exploits0References2

RedhatCVE•added 2026/01/09 8:33 a.m.•5 views

CVE-2024-39795

Multiple external config control vulnerabilities exist in the nas.cgi setnas proftpd functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to permission bypass. An attacker can make an authenticated HTTP request to trigger these vulnerabilities.A...

9.1CVSS7AI score0.00045EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 8:32 a.m.•8 views

CVE-2024-39790

Multiple external config control vulnerabilities exist in the nas.cgi setftpcfg functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to permission bypass. An attacker can make an authenticated HTTP request to trigger these vulnerabilities.A configuration...

9.1CVSS7AI score0.00045EPSS

Exploits1References1

Packet Storm News•added 2025/10/15 12:0 a.m.•2 views

Securing U.S. Critical Infrastructure: Lessons from Stuxnet and the Ukraine Power Grid Attacks

Industrial Control Systems ICS underpin the United States' critical infrastructure, managing essential services such as power, water, and transportation that are vital to national security and public safety. However, increasing digital integration has exposed these systems to escalating cyber...

6.9AI score

Exploits0