Lucene search
K

51769 matches found

OSV
OSV
added 2026/07/02 5:1 p.m.4 views

MINI-R26X-4V53-CW6G

Bulletin has no description...

7.5CVSS7AI score0.00616EPSS
Exploits1
OSV
OSV
added 2026/07/02 4:55 p.m.7 views

GHSA-XR4F-MJXJ-W6W5 OpenClaw: Non-owner chat senders could issue device-pairing bootstrap codes

Summary The bundled device-pair plugin exposed /pair on normal chat command surfaces. In affected releases, authorized non-owner chat senders could issue device-pairing bootstrap codes without having owner, admin, or pairing scope. This issue does not affect unauthenticated users. The caller must...

8.3CVSS5.9AI score0.0023EPSS
Exploits0References2
OSV
OSV
added 2026/07/02 4:46 p.m.5 views

MINI-H39P-5P3C-87P5

Bulletin has no description...

9.1CVSS5.7AI score0.00348EPSS
Exploits1
OSV
OSV
added 2026/07/02 4:43 p.m.7 views

GHSA-QJPC-QF9M-XWMR OpenClaw: Trusted-proxy Control UI WebSocket accepted client-declared scopes before pairing

Summary In trusted-proxy Control UI mode, OpenClaw accepted a WebSocket client's declared operator scopes before those scopes were bound to a server-approved pairing or trusted-proxy authorization baseline. This issue affects trusted-proxy Control UI deployments. It does not apply to shared-secre...

8.8CVSS5.8AI score0.00289EPSS
Exploits0References2
OSV
OSV
added 2026/07/02 4:7 p.m.5 views

USN-8493-2 linux-oracle-5.15 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - RISC-V architecture; - Cryptographic API; - InfiniBand drivers; - IOMMU subsystem; - Network drivers; -...

9.8CVSS6.6AI score0.09796EPSS
Exploits4References65
OSV
OSV
added 2026/07/02 3:49 p.m.6 views

USN-8498-1 linux-nvidia-tegra vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - MIPS architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; -...

9.8CVSS6.4AI score0.00686EPSS
Exploits4References298
RedhatCVE
RedhatCVE
added 2026/07/02 3:37 p.m.11 views

CVE-2026-53492

A flaw was found in containerd, an open-source container runtime. The Container Runtime Interface CRI implementation, which allows Kubernetes to interact with container runtimes, improperly trusts Container Device Interface CDI annotations found within untrusted checkpoint image metadata during...

9.6CVSS5.9AI score0.00412EPSS
Exploits0References4
OSV
OSV
added 2026/07/02 3:24 p.m.8 views

USN-8492-2 linux-aws-6.8, linux-gcp-6.8, linux-gke, linux-gkeop, linux-ibm-6.8, linux-nvidia-lowlatency, linux-oracle-6.8 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - MIPS architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; -...

9.8CVSS6.4AI score0.00686EPSS
Exploits4References300
NVD
NVD
added 2026/07/02 3:17 p.m.8 views

CVE-2026-55111

A malicious actor with access to the network could exploit a Path Traversal vulnerability found in UniFi Protect Floodlight devices to access files on the UniFi Protect Floodlight...

7.5CVSS0.00335EPSS
Exploits0References1
NVD
NVD
added 2026/07/02 3:17 p.m.11 views

CVE-2026-54402

A malicious actor with access to the network and low privileges could exploit an Improper Input Validation vulnerability found in UniFi OS to execute a Command Injection on the host device...

9.9CVSS0.00872EPSS
Exploits0References1
NVD
NVD
added 2026/07/02 3:17 p.m.9 views

CVE-2026-50747

A malicious actor with access to the network and low privileges could exploit a series of authenticated SQL Injection vulnerabilities found in UniFi Talk Application to escalate privileges on the host device...

9.9CVSS0.00244EPSS
Exploits0References1
OSV
OSV
added 2026/07/02 3:2 p.m.7 views

USN-8488-2 linux-raspi vulnerabilities

It was discovered that some AMD processors did not properly clear data in the floating point divider unit during speculative execution. A local attacker could use this to expose sensitive information. CVE-2025-54505 Several security issues were discovered in the Linux kernel. An attacker could...

9.8CVSS6.8AI score0.00675EPSS
Exploits11References237
EUVD
EUVD
added 2026/07/02 2:50 p.m.11 views

EUVD-2026-41399

A malicious actor with access to the network and low privileges could exploit an authenticated SQL Injection vulnerability found in UniFi Protect Application to escalate privileges on the host device...

8.8CVSS5.8AI score0.00249EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/07/02 2:50 p.m.6 views

CVE-2026-56841

A malicious actor with access to the network and low privileges could exploit an authenticated SQL Injection vulnerability found in UniFi Protect Application to escalate privileges on the host device...

8.8CVSS5.8AI score0.00249EPSS
Exploits0References2
EUVD
EUVD
added 2026/07/02 2:50 p.m.5 views

EUVD-2026-41398

A malicious actor with access to the network and low privileges could exploit a Server-Side Request Forgery SSRF in UniFi Protect Application to escalate privileges on the host device...

9.9CVSS5.8AI score0.00232EPSS
Exploits0References1
CVE
CVE
added 2026/07/02 2:49 p.m.19 views

CVE-2026-55111

The CVE-2026-55111 affects UniFi Protect Floodlight devices and describes a Path Traversal vulnerability that could allow an attacker with network access to access files on the Floodlight device, impacting confidentiality. The available documents do not specify the exact vulnerable component/vers...

7.5CVSS5.8AI score0.00335EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2026/07/02 2:49 p.m.8 views

EUVD-2026-41391

A malicious actor with access to the network and low privileges could exploit an Improper Input Validation vulnerability found in UniFi OS to execute a Command Injection on the host device...

9.9CVSS5.8AI score0.00872EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/07/02 2:49 p.m.8 views

CVE-2026-50747

A malicious actor with access to the network and low privileges could exploit a series of authenticated SQL Injection vulnerabilities found in UniFi Talk Application to escalate privileges on the host device...

9.9CVSS5.8AI score0.00244EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/07/02 2:49 p.m.37 views

CVE-2026-50746

A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in UniFi Connect Application to execute a Command Injection on the host device...

10CVSS0.00826EPSS
Exploits0References1
EUVD
EUVD
added 2026/07/02 2:49 p.m.6 views

EUVD-2026-41389

A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in UniFi Connect Application to execute a Command Injection on the host device...

10CVSS5.8AI score0.00826EPSS
Exploits0References1
Rows per page
Query Builder