85 matches found
EUVD-2026-44805
CVE-2026-55399 is a resource exhaustion vulnerability in the Secure Access publisher prior to 14.55. Attackers with valid credentials to the Secure Access tunnel can create a non-persistent DoS against the publisher...
CVE-2026-40955
CVE-2026-40955 is an integer underflow vulnerability in the traffic parsing function of Secure Access clients prior to 14.55. Attackers with intimate knowledge of and total control over the tunnel protocol can create a non-persistent DoS against their client...
CVE-2026-40953
CVE-2026-40953 is a heap overflow in the certificate parsing function of Secure Access clients prior to 14.55. Attackers with local access and administrator permissions can create a denial of service attack against the client over which they have control...
EUVD-2026-44799
CVE-2026-33444 is a memory management vulnerability in Secure Access servers prior to 14.55. Attackers with intimate knowledge of and total control over the tunnel protocol can create a non-persistent DoS against the server...
CVE-2026-33444
The CVE-2026-33444 entry describes a memory management vulnerability in Secure Access servers prior to version 14.55. The issue allows attackers who have intimate knowledge and total control over the tunnel protocol to cause a non-persistent DoS against the server. The CVSS score is 6.9 (Medium) ...
CVE-2026-40958
CVE-2026-40958 involves an input validation error in Secure Access clients prior to 14.55. The root cause is improper input validation in the tunnel protocol handling, allowing attackers with intimate knowledge and total control of the tunnel protocol to trigger a non-persistent DoS against the c...
EUVD-2026-44791
o CVE-2026-40957 is a frameable content vulnerability in the Secure Access server login page prior to 14.55. Attackers with control of a malicious web site could use it to potentially steal credentials from an unwary administrator...
CVE-2026-40952
The CVE-2026-40952 entry describes a privilege misconfiguration in the Windows Secure Access installer for the client and server prior to version 14.55. Local attackers with access to the affected system can elevate privileges to Administrator when Secure Access is installed in a non-default loca...
MINI-9VRC-RX55-HCCX
Bulletin has no description...
MINI-4PHM-RW55-PVJX
Bulletin has no description...
MINI-QCVP-XX92-5W55
Bulletin has no description...
MINI-Q874-55MG-PQXW
Bulletin has no description...
MINI-HCGJ-P55R-99RF
Bulletin has no description...
CVE-2026-40543
CVE-2026-40543 affects SOPlanning prior to v1.56, where backup functionalities lack authorization. An unauthenticated attacker can directly query backup endpoints to retrieve backup archives containing user databases (including usernames and password hashes) and the config.csv file with additiona...
MINI-55V3-VRC5-MP7X
Bulletin has no description...
MINI-M389-4C4H-2M55
Bulletin has no description...
GHSA-48M6-CH88-55MJ
creationtimestamp| type| source ---|---|--- 2026-04-23 21:26:31+00:00| seen| Telegram/BiTM4VWQdbYmMG43-mv447qo5-YjFbOvUme2BKAYDCNPPw...
CVE-2026-5586
creationtimestamp| type| source ---|---|--- 2026-04-05 19:36:30+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3miripfabr425...
EUVD-2026-14521
MailEnable versions prior to 10.55 contain a reflected cross-site scripting vulnerability in the webmail interface that allows remote attackers to execute arbitrary JavaScript in a victim's browser by crafting a malicious URL. Attackers can inject malicious code through the StartDate parameter in...
Infinite loop
Overview Affected versions of this package are vulnerable to Infinite loop in the FileTypeParser class. This is triggered when the ASF WMV/WMA parser receives input including an ASF sub-header with a size value of 0. An attacker can interrupt service with a 55-byte payload. Remediation Upgrade...