Lucene search
K

11474 matches found

EUVD
EUVD
added 2026/03/03 12:48 a.m.8 views

EUVD-2026-9270

An embedded test key and certificate could be extracted from a Poly Voice device using specialized reverse engineering tools. This extracted certificate could be accepted by a SIP service provider if the service provider does not perform proper validation of the device certificate...

8.2CVSS5.9AI score0.00098EPSS
Exploits0References1
CVE
CVE
added 2026/03/03 12:48 a.m.20 views

CVE-2026-0754

The CVE describes a vulnerability in Poly Voice devices where an embedded test key and certificate can be extracted via reverse engineering. If a SIP service provider does not properly validate device certificates, the extracted certificate could be accepted, enabling impersonation of the Poly Vo...

8.2CVSS5.9AI score0.00098EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/03 12:0 a.m.6 views

Dataease SQLBot 数据伪造问题漏洞

Dataease SQLBot is a robot plugin developed by Dataease as open source. Versions of Dataease SQLBot 1.5.1 and earlier contained a data manipulation vulnerability. This vulnerability stemmed from improper verification of the encrypted signature for the validateEmbedded function in the JWT Token...

6.3CVSS5.8AI score0.00184EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/03/03 12:0 a.m.6 views

HP Poly Edge E Series 安全漏洞

The HP Poly Edge E Series is a series of IP desktop phones produced by the American company HP. The HP Poly Edge E Series contains security vulnerabilities. These vulnerabilities stem from the inclusion of test keys and certificates within the devices, which may allow attackers to extract these...

8.2CVSS5.8AI score0.00098EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/03/03 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005575)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005575 advisory. In the Linux kernel, the following vulnerability has been resolved: iio: light: veml6030: fix IIO device retrieval from embedded device The dev pointer that is...

5.5CVSS6.7AI score0.00207EPSS
Exploits0References3
Fedora
Fedora
added 2026/03/02 12:57 a.m.7 views

[SECURITY] Fedora 42 Update: cef-145.0.25^chromium145.0.7632.75-4.fc42

CEF is an embeddable build of Chromium, powered by WebKit Blink...

8.8CVSS6AI score0.2202EPSS
Exploits13
OSV
OSV
added 2026/02/28 12:44 p.m.6 views

OESA-2026-1427 openldap security update

OpenLDAP is an open source suite of LDAP Lightweight Directory Access Protocol applications and development tools. LDAP is a set of protocols for accessing directory services usually phone book style information, but other information is possible over the Internet, similar to the way DNS Domain...

4.6CVSS6AI score0.00127EPSS
Exploits0References2
OSV
OSV
added 2026/02/28 12:44 p.m.5 views

OESA-2026-1426 openldap security update

OpenLDAP is an open source suite of LDAP Lightweight Directory Access Protocol applications and development tools. LDAP is a set of protocols for accessing directory services usually phone book style information, but other information is possible over the Internet, similar to the way DNS Domain...

4.6CVSS6AI score0.00127EPSS
Exploits0References2
EUVD
EUVD
added 2026/02/26 9:30 a.m.5 views

EUVD-2026-8844

Insertion of Sensitive Information Into Sent Data vulnerability in WPVibes Elementor Addon Elements addon-elements-for-elementor-page-builder allows Retrieve Embedded Sensitive Data.This issue affects Elementor Addon Elements: from n/a through = 1.14.4...

5.3AI score0.00219EPSS
Exploits0References2
OSV
OSV
added 2026/02/26 9:27 a.m.8 views

CLSA-2026-1772098033 python2: Fix of CVE-2025-15367

CVE-2025-15367: reject control characters in POP3 commands to prevent command injection via embedded newlines...

5.9CVSS7.1AI score0.00315EPSS
Exploits0References1
NVD
NVD
added 2026/02/26 9:16 a.m.5 views

CVE-2026-28131

Insertion of Sensitive Information Into Sent Data vulnerability in WPVibes Elementor Addon Elements addon-elements-for-elementor-page-builder allows Retrieve Embedded Sensitive Data.This issue affects Elementor Addon Elements: from n/a through = 1.14.4...

6.5CVSS0.00219EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/26 8:33 a.m.22 views

CVE-2026-28131 WordPress Elementor Addon Elements plugin <= 1.14.4 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in WPVibes Elementor Addon Elements addon-elements-for-elementor-page-builder allows Retrieve Embedded Sensitive Data.This issue affects Elementor Addon Elements: from n/a through = 1.14.4...

6.5CVSS0.00219EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/26 8:33 a.m.5 views

CVE-2026-28131

Insertion of Sensitive Information Into Sent Data vulnerability in WPVibes Elementor Addon Elements addon-elements-for-elementor-page-builder allows Retrieve Embedded Sensitive Data.This issue affects Elementor Addon Elements: from n/a through = 1.14.4...

5.3AI score0.00219EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/02/24 11:2 p.m.8 views

CVE-2026-3075

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Jeff Starr Simple Ajax Chat simple-ajax-chat allows Retrieve Embedded Sensitive Data.This issue affects Simple Ajax Chat: from n/a through = 20251121...

5.3CVSS5.4AI score0.00304EPSS
Exploits0References1
OSV
OSV
added 2026/02/24 6:43 p.m.11 views

RLSA-2026:2776 Moderate: edk2 security update

EDK Embedded Development Kit is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM. Security Fixes: openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap CVE-2025-9230 For more details about the security issues, includi...

5.6CVSS5.6AI score0.01744EPSS
Exploits0References2
OSV
OSV
added 2026/02/24 11:6 a.m.5 views

CLSA-2026-1771931183 python2: Fix of CVE-2025-15367

CVE-2025-15367: reject control characters in POP3 commands to prevent command injection via embedded newlines...

5.9CVSS7.1AI score0.00315EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/02/24 12:0 a.m.5 views

RHEL 9 : edk2 (RHSA-2026:3164)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:3164 advisory. EDK Embedded Development Kit is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU a...

7.5CVSS5.7AI score0.01744EPSS
Exploits0References5
NVD
NVD
added 2026/02/23 9:19 p.m.8 views

CVE-2026-3075

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Jeff Starr Simple Ajax Chat simple-ajax-chat allows Retrieve Embedded Sensitive Data.This issue affects Simple Ajax Chat: from n/a through = 20251121...

5.3CVSS0.00304EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/23 8:48 p.m.22 views

CVE-2026-3075 WordPress Simple Ajax Chat plugin <= 20251121 - Sensitive Data Exposure vulnerability

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Jeff Starr Simple Ajax Chat simple-ajax-chat allows Retrieve Embedded Sensitive Data.This issue affects Simple Ajax Chat: from n/a through = 20251121...

5.3CVSS0.00304EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/23 8:48 p.m.6 views

CVE-2026-3075

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Jeff Starr Simple Ajax Chat simple-ajax-chat allows Retrieve Embedded Sensitive Data.This issue affects Simple Ajax Chat: from n/a through = 20251121...

5.4AI score0.00304EPSS
Exploits0References2
Rows per page
Query Builder