Lucene search
K

2886 matches found

OSV
OSV
added 2026/02/12 9:39 a.m.8 views

USN-8030-1 linux-gcp vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - MIPS architecture; - Nios II architecture; - PA-RISC architecture; - RISC-V architecture; -...

7.8CVSS6.5AI score0.00544EPSS
Exploits4References367
RedhatCVE
RedhatCVE
added 2026/02/11 7:44 p.m.6 views

CVE-2026-25947

Worklenz is a project management tool. Prior to 2.1.7, there are multiple SQL injection vulnerabilities were discovered in backend SQL query construction affecting project and task management controllers, reporting and financial data endpoints, real-time socket.io handlers, and resource allocatio...

8.8CVSS5.7AI score0.00354EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/02/10 12:0 a.m.5 views

PT-2026-20458

Уязвимость микропрограммного обеспечения промышленных контроллеров SCADAPack 47xi, SCADAPack 47x и SCADAPack 57x связана с недостаточной проверкой необычных или исключительных состояний. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, оказать воздействие на...

10CVSS5.8AI score
Exploits0References6
CNNVD
CNNVD
added 2026/02/05 12:0 a.m.8 views

P5 FNIP-8x16A和P5 FNIP-4xSH 跨站脚本漏洞

The P5 FNIP-8x16A and P5 FNIP-4xSH are Ethernet relay controllers produced by the British company P5. Both versions of P5 FNIP-8x16A and P5 FNIP-4xSH, as well as the 1.0.11 version, have a cross-site scripting vulnerability. This vulnerability arises from improper cleaning of multiple GET/POST...

5.1CVSS5.7AI score0.00251EPSS
Exploits0References6
Packet Storm News
Packet Storm News
added 2026/02/04 12:0 a.m.3 views

Trojan Attacks on Neural Network Controllers for Robotic Systems

Neural network controllers are increasingly deployed in robotic systems for tasks such as trajectory tracking and pose stabilization. However, their reliance on potentially untrusted training pipelines or supply chains introduces significant security vulnerabilities. This paper investigates...

5.5AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/01/27 9:23 p.m.6 views

CVE-2025-9521

Password Confirmation Bypass vulnerability in Omada Controllers, allowing an attacker with a valid session token to bypass secondary verification, and change the user’s password without proper confirmation, leading to weakened account security...

6.5CVSS5.9AI score0.00282EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/27 9:23 p.m.6 views

CVE-2025-9520

An IDOR vulnerability exists in Omada Controllers that allows an attacker with Administrator permissions to manipulate requests and potentially hijack the Owner account...

8.3CVSS5.9AI score0.00394EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/27 9:23 p.m.10 views

CVE-2025-9522

Blind Server-Side Request Forgery SSRF in Omada Controllers through webhook functionality, enabling crafted requests to internal services, which may lead to enumeration of information...

5.3CVSS5.9AI score0.00243EPSS
Exploits0References1
OSV
OSV
added 2026/01/26 8:16 p.m.3 views

CVE-2025-9522

Blind Server-Side Request Forgery SSRF in Omada Controllers through webhook functionality, enabling crafted requests to internal services, which may lead to enumeration of information...

5.3CVSS5.8AI score0.00243EPSS
Exploits0References2
NVD
NVD
added 2026/01/26 8:16 p.m.13 views

CVE-2025-9522

Blind Server-Side Request Forgery SSRF in Omada Controllers through webhook functionality, enabling crafted requests to internal services, which may lead to enumeration of information...

5.3CVSS0.00243EPSS
Exploits0References2
OSV
OSV
added 2026/01/26 8:16 p.m.8 views

CVE-2025-9520

An IDOR vulnerability exists in Omada Controllers that allows an attacker with Administrator permissions to manipulate requests and potentially hijack the Owner account...

6.8CVSS5.8AI score0.00394EPSS
Exploits0References2
OSV
OSV
added 2026/01/26 8:16 p.m.4 views

CVE-2025-9521

Password Confirmation Bypass vulnerability in Omada Controllers, allowing an attacker with a valid session token to bypass secondary verification, and change the user’s password without proper confirmation, leading to weakened account security...

6.5CVSS5.8AI score0.00282EPSS
Exploits0References2
NVD
NVD
added 2026/01/26 8:16 p.m.7 views

CVE-2025-9520

An IDOR vulnerability exists in Omada Controllers that allows an attacker with Administrator permissions to manipulate requests and potentially hijack the Owner account...

8.3CVSS0.00394EPSS
Exploits0References2
NVD
NVD
added 2026/01/26 8:16 p.m.5 views

CVE-2025-9521

Password Confirmation Bypass vulnerability in Omada Controllers, allowing an attacker with a valid session token to bypass secondary verification, and change the user’s password without proper confirmation, leading to weakened account security...

6.5CVSS0.00282EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/01/26 7:35 p.m.5 views

CVE-2025-9522

Blind Server-Side Request Forgery SSRF in Omada Controllers through webhook functionality, enabling crafted requests to internal services, which may lead to enumeration of information...

5.1CVSS5.9AI score0.00243EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/01/26 7:35 p.m.4 views

CVE-2025-9521

Password Confirmation Bypass vulnerability in Omada Controllers, allowing an attacker with a valid session token to bypass secondary verification, and change the user’s password without proper confirmation, leading to weakened account security...

2.1CVSS5.9AI score0.00282EPSS
Exploits0References3
EUVD
EUVD
added 2026/01/26 7:35 p.m.6 views

EUVD-2025-206348

Password Confirmation Bypass vulnerability in Omada Controllers, allowing an attacker with a valid session token to bypass secondary verification, and change the user’s password without proper confirmation, leading to weakened account security...

2.1CVSS5.9AI score0.00282EPSS
Exploits0References2
EUVD
EUVD
added 2026/01/26 7:34 p.m.7 views

EUVD-2025-206335

An IDOR vulnerability exists in Omada Controllers that allows an attacker with Administrator permissions to manipulate requests and potentially hijack the Owner account...

8.3CVSS5.9AI score0.00394EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/01/26 7:34 p.m.4 views

CVE-2025-9520

An IDOR vulnerability exists in Omada Controllers that allows an attacker with Administrator permissions to manipulate requests and potentially hijack the Owner account...

8.3CVSS5.9AI score0.00394EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/01/26 12:0 a.m.6 views

TP-Link Omada controllers have security vulnerabilities

TP-Link Omada Controllers are a series of centralized management platforms developed by TP-Link Corporation. The TP-Link Omada Controllers have security vulnerabilities, which stem from the webhook function’s vulnerability involving forged server-side requests, potentially leading to information...

5.3CVSS5.8AI score0.00243EPSS
Exploits0References3
Rows per page
Query Builder