Lucene search
K

4 matches found

EUVD
EUVD
added 2026/05/27 3:48 p.m.15 views

EUVD-2026-32578

free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's NEF mounts the nnef-callback route group without inbound OAuth2/bearer-token authorization. A forged or arbitrary bearer token e.g. Authorization: Bearer not-a-real-token is enough to reach the SMF-callback...

7.3CVSS5.9AI score0.00241EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/05/27 3:40 p.m.46 views

CVE-2026-44327 free5GC: NEF nnef-oam route group is unauthenticated; no-token requests reach the OAM handler

free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's NEF mounts the nnef-oam route group without inbound OAuth2/bearer-token authorization. A network attacker who can reach NEF on the SBI can hit the OAM route with no Authorization header at all and the handl...

10CVSS0.00311EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/02/04 7:27 p.m.9 views

CVE-2026-24671

The Open eClass platform formerly known as GUnet eClass is a complete course management system. Prior to version 4.2, a Stored Cross-Site Scripting XSS vulnerability allows authenticated high-privileged users teachers or administrators to inject malicious JavaScript into multiple user-controllabl...

6.1CVSS5.3AI score0.00182EPSS
Exploits1References1
NVD
NVD
added 2025/10/02 8:15 p.m.29 views

CVE-2025-61595

MANTRA is a purpose-built RWA Layer 1 Blockchain, capable of adherence to real world regulatory requirements. Versions 4.0.1 and below do not enforce the tx gas limit in its send hooks. Send hooks can spend more gas than what remains in tx, combined with recursive calls in the wasm contract,...

8.8CVSS0.00312EPSS
Exploits0References2
Rows per page
Query Builder