CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

91 matches found

CVE•added 2026/06/09 8:46 a.m.•12 views

CVE-2025-40808

The vulnerability CVE-2025-40808 affects SIPROTEC 5 line hardware (multiple models listed) where the affected application allows authenticated users to upload arbitrary files via the DIGSI 5 protocol. This could result in uploading malicious configuration files, potentially causing denial of serv...

6.9CVSS5.7AI score0.00186EPSS

Exploits0References1

ATTACKERKB•added 2026/03/31 7:30 p.m.•2 views

CVE-2026-5211

A flaw has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. This vulnerability affects the function...

9CVSS6.4AI score0.007EPSS

Exploits1References5Affected Software20

Positive Technologies•added 2026/03/18 12:0 a.m.•5 views

PT-2026-26088

A Cross-Site Scripting XSS vulnerability exists in the web-based configuration interface of Zucchetti Axess access control devices, including XA4, X3/X3BIO, X4, X7, and XIO / i-door / i-door+. The vulnerability is caused by improper sanitization of user-supplied input in the dirBrowse parameter o...

6.1CVSS5.8AI score0.0023EPSS

Exploits0References5

RedhatCVE•added 2026/01/09 10:43 a.m.•6 views

CVE-2022-26335

A vulnerability has been identified in SCALANCE X302-7 EEC 230V, SCALANCE X302-7 EEC 230V, coated, SCALANCE X302-7 EEC 24V, SCALANCE X302-7 EEC 24V, coated, SCALANCE X302-7 EEC 2x 230V, SCALANCE X302-7 EEC 2x 230V, coated, SCALANCE X302-7 EEC 2x 24V, SCALANCE X302-7 EEC 2x 24V, coated, SCALANCE...

7.8CVSS7.1AI score0.01294EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:8 a.m.•8 views

CVE-2019-20705

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D3600 before 1.0.0.76, D6000 before 1.0.0.76, and XR500 before 2.3.2.32...

8CVSS7.3AI score0.00835EPSS

Exploits0References1

ATTACKERKB•added 2026/01/07 11:10 p.m.•3 views

CVE-2019-25291

INIM Electronics Smartliving SmartLAN/G/SI =6.x contains hard-coded credentials in its Linux distribution image that cannot be changed through normal device operations. Attackers can exploit these persistent credentials to log in and gain unauthorized system access across multiple SmartLiving...

9.3CVSS7.3AI score0.00366EPSS

Exploits0References4Affected Software1