Lucene search
K

25564 matches found

GithubExploit
GithubExploit
added 2026/03/10 11:23 a.m.234 views

Exploit for CVE-2026-27944

CVE-2026-27944 - Nginx-UI Unauthenticated Backup Download !...

9.8CVSS5.8AI score0.22162EPSS
Exploits12
CVE
CVE
added 2026/03/10 10:24 a.m.12 views

CVE-2026-22614

The CVE covers an insecure encryption mechanism in Eaton’s EasySoft project files. The vulnerability arises from weak/enabled brute-force‑susceptible encryption within the project file, which could allow an attacker with access to the local host and the file to read sensitive information and tamp...

6.1CVSS5.8AI score0.00082EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/10 10:24 a.m.1 views

CVE-2026-22614

The encryption mechanism used in Eaton's EasySoft project file was insecure and susceptible to brute force attacks, an attacker with access to this file and the local host machine could potentially read the sensitive information stored and tamper with the project file. This security issue has bee...

6.1CVSS5.8AI score0.00082EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/10 10:24 a.m.26 views

CVE-2026-22614

The encryption mechanism used in Eaton's EasySoft project file was insecure and susceptible to brute force attacks, an attacker with access to this file and the local host machine could potentially read the sensitive information stored and tamper with the project file. This security issue has bee...

6.1CVSS0.00082EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/10 10:24 a.m.1 views

CVE-2026-22614

The encryption mechanism used in Eaton's EasySoft project file was insecure and susceptible to brute force attacks, an attacker with access to this file and the local host machine could potentially read the sensitive information stored and tamper with the project file. This security issue has bee...

6.1CVSS5.8AI score0.00082EPSS
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/03/10 8:29 a.m.6 views

Malicious code in alinet-w (npm)

Package is malware due to ransomware-like behavior: file encryption, key exfiltration, terminal locking, ransom note, and persistence attempts. --- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c18fd7e3ffa16f370fa25fcc489c381958d8200bf01cd8bf3627c91301eb397 The...

5.7AI score
Exploits0References2
OSV
OSV
added 2026/03/10 8:29 a.m.3 views

MAL-2026-1319 Malicious code in alinet-w (npm)

Package is malware due to ransomware-like behavior: file encryption, key exfiltration, terminal locking, ransom note, and persistence attempts. --- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c18fd7e3ffa16f370fa25fcc489c381958d8200bf01cd8bf3627c91301eb397 The...

5.7AI score
Exploits0References2
CNNVD
CNNVD
added 2026/03/10 12:0 a.m.5 views

Eaton Easysoft 安全漏洞

Eaton Easysoft is a programming application used in the industrial field by Eaton, Inc. This software is used for programming Easy controllers and displays. It allows for the editing and visualization of circuit diagrams according to specified formats. Eaton Easysoft has security vulnerabilities;...

6.1CVSS5.8AI score0.00082EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/10 12:0 a.m.5 views

Janitza UMG 96RM-E 24V和Janitza UMG 96RM-E 230V 加密问题漏洞

Both the Janitza UMG 96RM-E 24V and Janitza UMG 96RM-E 230V are multi-functional power quality analyzers from the German company Janitza. There are encryption vulnerabilities in these devices, as attackers can use firmware images to extract password hashes and brute-force their way into plaintext...

5.3CVSS5.8AI score0.0031EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/03/10 12:0 a.m.3 views

PT-2026-24202

The encryption mechanism used in Eaton's EasySoft project file was insecure and susceptible to brute force attacks, an attacker with access to this file and the local host machine could potentially read the sensitive information stored and tamper with the project file. This security issue has bee...

6.1CVSS5.8AI score0.00082EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/09 8:50 p.m.5 views

EUVD-2026-10357

Budibase is a low code platform for creating internal tools, workflows, and admin panels. In 3.31.5 and earlier, a path traversal vulnerability in the PWA Progressive Web App ZIP processing endpoint POST /api/pwa/process-zip allows an authenticated user with builder privileges to read arbitrary...

9.6CVSS5.9AI score0.00267EPSS
Exploits1References1
IBM AIX
IBM AIX
added 2026/03/09 2:38 p.m.16 views

Multiple vulnerabilities impact AIX due to OpenSSL

IBM SECURITY ADVISORY First Issued: Mon Mar 9 14:38:01 CDT 2026 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/openssladvisory46.asc Security Bulletin: Multiple vulnerabilities impact AIX due to OpenSSL...

9.8CVSS7.4AI score0.45854EPSS
Exploits7
Packet Storm News
Packet Storm News
added 2026/03/09 12:0 a.m.5 views

Lockbox -- a Zero Trust Architecture for Secure Processing of Sensitive Cloud Workloads

Enterprises increasingly rely on cloud-based applications to process highly sensitive data artifacts. Although cloud adoption improves agility and scalability, it also introduces new security challenges such as expanded attack surfaces, a wider radius of attack from credential compromise, and...

6AI score
Exploits0
EUVD
EUVD
added 2026/03/08 3:30 a.m.7 views

EUVD-2026-10200

Crypt::Sodium::XS versions through 0.001000 for Perl has potential integer overflows. Combined aead encryption, combined signature creation, and bin2hex functions do not check that output size will be less than SIZEMAX, which could lead to integer wraparound causing an undersized output buffer...

6AI score0.00287EPSS
Exploits0References2
OSV
OSV
added 2026/03/08 2:16 a.m.3 views

CVE-2026-30910

Crypt::Sodium::XS versions through 0.001000 for Perl has potential integer overflows. Combined aead encryption, combined signature creation, and bin2hex functions do not check that output size will be less than SIZEMAX, which could lead to integer wraparound causing an undersized output buffer...

7.5CVSS6AI score0.00287EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/08 12:54 a.m.5 views

CVE-2026-30910

Crypt::Sodium::XS versions through 0.001000 for Perl has potential integer overflows. Combined aead encryption, combined signature creation, and bin2hex functions do not check that output size will be less than SIZEMAX, which could lead to integer wraparound causing an undersized output buffer...

6.2AI score0.00287EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/03/06 7:45 p.m.6 views

CVE-2026-30785

Improperly Controlled Modification of Object Prototype Attributes 'Prototype Pollution', Use of Password Hash With Insufficient Computational Effort vulnerability in rustdesk-client RustDesk Client rustdesk, hbbcommon on Windows, MacOS, Linux Password security module, config encryption, machine U...

8.2CVSS5.8AI score0.00083EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/03/06 7:45 p.m.5 views

CVE-2026-27944

Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.3, the /api/backup endpoint is accessible without authentication and discloses the encryption keys required to decrypt the backup in the X-Backup-Security response header. This allows an unauthenticated attacker to...

9.8CVSS5.7AI score0.22162EPSS
Exploits12References1
RedhatCVE
RedhatCVE
added 2026/03/06 7:55 a.m.5 views

CVE-2026-23767

ESC/POS, a printer control language designed by Seiko Epson Corporation, lacks mechanisms for user authentication and command authorization, does not provide controls to restrict sources or destinations of network communication, and transmits commands without encryption or integrity protection...

9.8CVSS5.8AI score0.00447EPSS
Exploits0References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2026/03/06 1:31 a.m.7 views

Security issues in ESC/POS

Overview ESC/POS is a printer control language designed by Seiko Epson Corporation for controlling POS printers and related devices. The following security issues have been identified with ESC/POS. Products implementing ESC/POS need to be designed and operated with consideration of the following...

9.8CVSS5.8AI score0.00447EPSS
Exploits0References7
Rows per page
Query Builder