Lucene search
K

29779 matches found

Cvelist
Cvelist
added 2026/01/15 4:32 p.m.21 views

CVE-2026-20076 Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco Identity Services Engine ISE could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface. This vulnerability is due to insufficient validation of user-supplied inpu...

4.8CVSS0.00238EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/15 4:32 p.m.3 views

CVE-2026-20076

A vulnerability in the web-based management interface of Cisco Identity Services Engine ISE could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface. This vulnerability is due to insufficient validation of user-supplied inpu...

4.8CVSS5.8AI score0.00238EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/01/15 4:32 p.m.8 views

EUVD-2026-2748

A vulnerability in the web-based management interface of Cisco Identity Services Engine ISE could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface. This vulnerability is due to insufficient validation of user-supplied inpu...

4.8CVSS5.5AI score0.00238EPSS
Exploits0References2
CVE
CVE
added 2026/01/15 4:32 p.m.17 views

CVE-2026-20076

Cisco Identity Services Engine (ISE) is affected by a stored XSS vulnerability in its web-based management interface. An authenticated administrator can inject malicious input on specific pages, potentially executing script code in the user’s browser or accessing sensitive information. The issue ...

4.8CVSS5.7AI score0.00238EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2026/01/15 4:16 p.m.4 views

CVE-2025-67079

File upload vulnerability in Omnispace Agora Project before 25.10 allowing attackers to execute code through the MSL engine of the Imagick library via crafted PDF file to the file upload and thumbnail functions...

9.8CVSS5.8AI score
Exploits0References2
NVD
NVD
added 2026/01/15 4:16 p.m.9 views

CVE-2025-67079

File upload vulnerability in Omnispace Agora Project before 25.10 allowing attackers to execute code through the MSL engine of the Imagick library via crafted PDF file to the file upload and thumbnail functions...

9.8CVSS0.00381EPSS
Exploits0References2
Cisco
Cisco
added 2026/01/15 4:0 p.m.9 views

Cisco Identity Services Engine Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco Identity Services Engine ISE and Cisco ISE Passive Identity Connector ISE-PIC could allow an authenticated, remote attacker to conduct cross-site scripting XSS attacks against a user of the interface. This vulnerability is due to...

4.8CVSS6.2AI score0.00238EPSS
Exploits0References1
Cisco
Cisco
added 2026/01/15 4:0 p.m.9 views

Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco Identity Services Engine ISE could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface. This vulnerability is due to insufficient validation of user-supplied inpu...

4.8CVSS6.1AI score0.00238EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/01/15 11:53 a.m.3 views

firefox: thunderbird: Use-after-free in the JavaScript Engine component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Use-after-free in the JavaScript Engine component...

9.8CVSS5.7AI score0.00423EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/01/15 8:34 a.m.3 views

Moderate: Red Hat Security Advisory: Assisted Installer RHEL 9 components for Multicluster Engine for Kubernetes 2.8.4

Assisted installer RHEL 9 components for the multicluster engine for Kubernetes 2.8.4 General Availability release, with updates to container images. Assisted Installer RHEL 9 integrates components for the general multicluster engine for Kubernetes 2.8.4 release that simplify the process of...

4.3CVSS7.1AI score0.00419EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/01/15 8:26 a.m.10 views

firefox: thunderbird: Use-after-free in the JavaScript Engine component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Use-after-free in the JavaScript Engine component...

9.8CVSS5.7AI score0.00423EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/01/15 12:0 a.m.3 views

CVE-2025-67079

File upload vulnerability in Omnispace Agora Project before 25.10 allowing attackers to execute code through the MSL engine of the Imagick library via crafted PDF file to the file upload and thumbnail functions...

7.2AI score0.00381EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/01/15 12:0 a.m.4 views

Juniper Networks Junos OS security vulnerabilities

Juniper Networks Junos OS is a network operating system specifically designed for hardware devices used by Juniper Networks. This operating system provides secure programming interfaces and the Junos SDK. Vulnerabilities exist in versions of Junos OS prior to 22.4R3-S7, 23.2R2-S4, and 23.4R2. The...

7.1CVSS6AI score0.0036EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/01/15 12:0 a.m.5 views

Juniper Networks Junos OS security vulnerabilities

Juniper Networks Junos OS is a network operating system specifically designed for hardware devices used by Juniper Networks. This operating system provides secure programming interfaces and the Junos SDK. Vulnerabilities exist in versions of Juniper Networks Junos OS prior to 21.4R3-S12, 22.4R3-S...

8.7CVSS5.8AI score0.00497EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/01/15 12:0 a.m.4 views

Juniper Networks Junos OS code-related vulnerabilities

Juniper Networks Junos OS is a network operating system specifically designed for hardware devices used by Juniper Networks. This operating system provides secure programming interfaces and the Junos SDK. Code vulnerabilities existed in versions prior to Junos OS 21.4R3-S12, all versions of Junos...

7.1CVSS5.8AI score0.00249EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/01/15 12:0 a.m.2 views

CVE-2025-67079

File upload vulnerability in Omnispace Agora Project before 25.10 allowing attackers to execute code through the MSL engine of the Imagick library via crafted PDF file to the file upload and thumbnail functions...

9.8CVSS5.7AI score0.00381EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/01/15 12:0 a.m.4 views

Cisco Identity Services Engine and Cisco ISE Passive Identity Connector security vulnerabilities

Cisco Identity Services Engine Cisco ISE and Cisco ISE Passive Identity Connector are both products of the American company Cisco. Cisco Identity Services Engine is an Identity Services Engine ISE platform. This platform collects real-time information from networks, users, and devices, and develo...

4.8CVSS5.7AI score0.00238EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/15 12:0 a.m.6 views

PT-2026-3069

Name of the Vulnerable Software and Affected Versions Cisco Identity Services Engine ISE and Cisco ISE Passive Identity Connector ISE-PIC affected versions not specified Description A flaw exists in the web-based management interface of Cisco Identity Services Engine ISE and Cisco ISE Passive...

4.8CVSS6.1AI score0.00238EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/01/15 12:0 a.m.9 views

PT-2026-3202

Content removed...

4.6CVSS5.7AI score0.00202EPSS
Exploits1References9
Positive Technologies
Positive Technologies
added 2026/01/15 12:0 a.m.20 views

PT-2026-3143

Name of the Vulnerable Software and Affected Versions Altium Workflow Engine affected versions not specified Description A stored cross-site scripting XSS issue exists because of insufficient server-side input sanitization within workflow form submission APIs. An authenticated user can inject...

8CVSS5.7AI score0.00303EPSS
Exploits0References4
Rows per page
Query Builder