Lucene search
K

1089 matches found

CVE
CVE
added yesterday7 views

CVE-2026-50721

CVE-2026-50721 concerns Libreswan where the function RSA_authenticate_hash_signature_raw_rsa() does not properly verify the authentication hash length when the SIG payload of an IKEv1 packet is encoded using PKCS#1 RSA Encryption per RFC 2313. This enables a remote attacker to leverage a Bleichen...

8.1CVSS6.3AI score
Exploits0References4
EUVD
EUVD
added yesterday10 views

EUVD-2026-36322

OpenClaw: Paired nodes could forge exec lifecycle events without system.run provenance...

8.6CVSS5.8AI score0.00342EPSS
Exploits0References3
OSV
OSV
added 3 days ago6 views

ROOT-APP-NPM-CVE-2025-12816 CVE-2025-12816 in @rootio/node-forge - Patched by Root

Root has patched CVE-2025-12816 in the @rootio/node-forge package for Root:npm. Multiple fixed versions available...

8.6CVSS5.4AI score0.00689EPSS
Exploits1
OSV
OSV
added 3 days ago8 views

ROOT-APP-NPM-CVE-2020-7720 CVE-2020-7720 in @rootio/node-forge - Patched by Root

Root has patched CVE-2020-7720 in the @rootio/node-forge package for Root:npm. Multiple fixed versions available...

9.8CVSS7.1AI score0.03162EPSS
Exploits1
OSV
OSV
added 3 days ago7 views

ROOT-APP-NPM-CVE-2025-66031 CVE-2025-66031 in @rootio/node-forge - Patched by Root

Root has patched CVE-2025-66031 in the @rootio/node-forge package for Root:npm. Multiple fixed versions available...

7.5CVSS5.4AI score0.00373EPSS
Exploits0
OSV
OSV
added 3 days ago6 views

ROOT-APP-NPM-CVE-2022-24773 CVE-2022-24773 in @rootio/node-forge - Patched by Root

Root has patched CVE-2022-24773 in the @rootio/node-forge package for Root:npm. Multiple fixed versions available...

5.3CVSS6.7AI score0.00875EPSS
Exploits0
OSV
OSV
added 3 days ago6 views

ROOT-APP-NPM-CVE-2026-33895 CVE-2026-33895 in @rootio/node-forge - Patched by Root

Root has patched CVE-2026-33895 in the @rootio/node-forge package for Root:npm. Multiple fixed versions available...

7.5CVSS5.9AI score0.00338EPSS
Exploits0
OSV
OSV
added 3 days ago9 views

ROOT-APP-NPM-CVE-2022-24772 CVE-2022-24772 in @rootio/node-forge - Patched by Root

Root has patched CVE-2022-24772 in the @rootio/node-forge package for Root:npm. Multiple fixed versions available...

7.5CVSS6.8AI score0.01015EPSS
Exploits0
OSV
OSV
added 3 days ago5 views

ROOT-APP-NPM-CVE-2026-33896 CVE-2026-33896 in @rootio/node-forge - Patched by Root

Root has patched CVE-2026-33896 in the @rootio/node-forge package for Root:npm. Multiple fixed versions available...

7.4CVSS6.6AI score0.00303EPSS
Exploits1
OSV
OSV
added 3 days ago7 views

ROOT-APP-NPM-CVE-2022-0122 CVE-2022-0122 in @rootio/node-forge - Patched by Root

Root has patched CVE-2022-0122 in the @rootio/node-forge package for Root:npm. Multiple fixed versions available...

6.1CVSS6.4AI score0.00832EPSS
Exploits1
OSV
OSV
added 3 days ago8 views

ROOT-APP-NPM-CVE-2022-24771 CVE-2022-24771 in @rootio/node-forge - Patched by Root

Root has patched CVE-2022-24771 in the @rootio/node-forge package for Root:npm. Multiple fixed versions available...

7.5CVSS5.8AI score0.00717EPSS
Exploits0
OSV
OSV
added 3 days ago4 views

ROOT-APP-NPM-CVE-2026-33894 CVE-2026-33894 in @rootio/node-forge - Patched by Root

Root has patched CVE-2026-33894 in the @rootio/node-forge package for Root:npm. Multiple fixed versions available...

7.5CVSS5.9AI score0.00339EPSS
Exploits0
OSV
OSV
added 3 days ago5 views

ROOT-APP-NPM-CVE-2025-66030 CVE-2025-66030 in @rootio/node-forge - Patched by Root

Root has patched CVE-2025-66030 in the @rootio/node-forge package for Root:npm. Multiple fixed versions available...

5.3CVSS5AI score0.00276EPSS
Exploits0
OSV
OSV
added 3 days ago5 views

ROOT-APP-NPM-CVE-2026-33891 CVE-2026-33891 in @rootio/node-forge - Patched by Root

Root has patched CVE-2026-33891 in the @rootio/node-forge package for Root:npm. Multiple fixed versions available...

7.5CVSS5.9AI score0.0058EPSS
Exploits1
NVD
NVD
added 2026/06/24 1:16 p.m.9 views

CVE-2026-56223

Capgo before 12.128.2 contains a cross-domain SSO account takeover vulnerability in the provision-user endpoint that allows attackers to merge arbitrary victim accounts based on email match without validating SSO provider domain authorization. An attacker with enterprise org admin access and a...

9.3CVSS0.00244EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/24 11:53 a.m.5 views

CVE-2026-56223

Capgo before 12.128.2 contains a cross-domain SSO account takeover vulnerability in the provision-user endpoint that allows attackers to merge arbitrary victim accounts based on email match without validating SSO provider domain authorization. An attacker with enterprise org admin access and a...

9.3CVSS6AI score0.00244EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/06/23 7:40 p.m.7 views

CVE-2026-11807

A missing authorization vulnerability was found in the Event-Driven Ansible EDA websocket API. The /api/eda/ws/ansible-rulebook endpoint does not verify user permissions when processing Worker messages. Any authenticated user can send a forged message with an arbitrary activationid to receive...

9.6CVSS5.9AI score0.0037EPSS
Exploits0References3
NVD
NVD
added 2026/06/23 4:17 p.m.11 views

CVE-2026-56694

NanoClaw before 2.1.0 contains a privilege escalation vulnerability in the channel-registration approval flow where handleChannelApprovalResponse fails to validate admin privileges over target agent groups. Scoped admins can submit forged or stale connect callback values to wire messaging channel...

5.4CVSS0.00171EPSS
Exploits0References3
VulnCheck KEV
VulnCheck KEV
added 2026/06/21 12:0 a.m.9 views

VulnCheck KEV: CVE-2026-36356

The GoAhead web server on MeiG Smart FORGESLT711 devices firmware MDM9607.LE.1.0-00110-STD.PROD-1 allows unauthenticated OS command injection via the /action/SetRemoteAccessCfg endpoint...

9.1CVSS5.8AI score0.15394EPSS
In wildExploits3References3
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.7 views

Astra Linux – Vulnerability in Ruby 2.5

A vulnerability was discovered in Ruby. The Ruby interpreter is vulnerable to the Marvin Attack. This attack allows the attacker to decrypt previously encrypted messages or forge signatures by exchanging a large number of messages with the vulnerable service...

7.4CVSS7.1AI score0.00626EPSS
Exploits0References2
Rows per page
Query Builder