CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

54 matches found

RedhatCVE•added 2026/03/26 2:58 p.m.•0 views

CVE-2026-4640

Vitals ESP developed by Galaxy Software Services has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to execute certain functions to obtain sensitive information...

8.7CVSS5.9AI score0.00118EPSS

Exploits0References1

RedhatCVE•added 2026/03/26 2:58 p.m.•0 views

CVE-2026-4639

Vitals ESP developed by Galaxy Software Services has a Incorrect Authorization vulnerability, allowing authenticated remote attackers to perform certain administrative functions, thereby escalating privileges...

8.8CVSS5.8AI score0.00154EPSS

Exploits0References1

EUVD•added 2026/03/24 6:31 a.m.•1 views

EUVD-2026-14742

Vitals ESP developed by Galaxy Software Services has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to execute certain functions to obtain sensitive information...

8.7CVSS5.9AI score0.00118EPSS

Exploits0References3

EUVD•added 2026/03/24 6:31 a.m.•0 views

EUVD-2026-14740

8.8CVSS5.8AI score0.00154EPSS

Exploits0References3

NVD•added 2026/03/24 5:16 a.m.•0 views

CVE-2026-4640

Vitals ESP developed by Galaxy Software Services has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to execute certain functions to obtain sensitive information...

8.7CVSS0.00118EPSS

Exploits0References2

NVD•added 2026/03/24 5:16 a.m.•1 views

CVE-2026-4639

8.8CVSS0.00154EPSS

Exploits0References2

CVE•added 2026/03/24 4:20 a.m.•3 views

CVE-2026-4640

The CVE-2026-4640 entry concerns Vitals ESP from Galaxy Software Services, identified in multiple sources (NVD/NIST and CVE List) as a Missing Authentication vulnerability. Unauthenticated remote attackers can access certain functions to obtain sensitive information. Public metrics from TWCERT in...

8.7CVSS5.9AI score0.00118EPSS

Exploits0References2Affected Software1

ATTACKERKB•added 2026/03/24 4:20 a.m.•1 views

CVE-2026-4640

Vitals ESP developed by Galaxy Software Services has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to execute certain functions to obtain sensitive information...

8.7CVSS5.9AI score0.00118EPSS

Exploits0References3

Cvelist•added 2026/03/24 4:20 a.m.•16 views

CVE-2026-4640 Galaxy Software Services｜Vitals ESP - Missing Authentication

Vitals ESP developed by Galaxy Software Services has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to execute certain functions to obtain sensitive information...

8.7CVSS0.00118EPSS

Exploits0References2

Vulnrichment•added 2026/03/24 4:17 a.m.•1 views

CVE-2026-4639 Galaxy Software Services｜Vitals ESP - Incorrect Authorization

8.8CVSS5.8AI score0.00154EPSS

Exploits0References2

Cvelist•added 2026/03/24 4:17 a.m.•18 views

CVE-2026-4639 Galaxy Software Services｜Vitals ESP - Incorrect Authorization

8.8CVSS0.00154EPSS

Exploits0References2

CVE•added 2026/03/24 4:17 a.m.•2 views

CVE-2026-4639

CVE-2026-4639 affects Vitals ESP by Galaxy Software Services. The vulnerability is described as Incorrect Authorization, enabling authenticated remote attackers to perform administrative functions and escalate privileges. The NVD/NVD-derived entries provide CVSS 4.0/3.1 values with HIGH severity ...

8.8CVSS5.8AI score0.00154EPSS

Exploits0References2Affected Software1

ATTACKERKB•added 2026/03/24 4:17 a.m.•2 views

CVE-2026-4639

8.8CVSS5.8AI score0.00154EPSS

Exploits0References3

Positive Technologies•added 2026/03/24 12:0 a.m.•1 views

PT-2026-27329

8.8CVSS5.8AI score0.00154EPSS

Exploits0References3

RedhatCVE•added 2025/12/09 8:27 a.m.•4 views

CVE-2025-14253

Vitals ESP developed by Galaxy Software Services has an Arbitrary File Read vulnerability, allowing privileged remote attackers to exploit Absolute Path Traversal to download arbitrary system files...

6.9CVSS7.1AI score0.00058EPSS

Exploits0References1

RedhatCVE•added 2025/12/09 8:27 a.m.•2 views

CVE-2025-14255