CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2026/05/06 10:19 a.m.•4 views

CVE-2026-6420 Keylime: keylime: security bypass due to hardcoded tpm quote nonce

ATTACKERKB•added 2026/05/06 10:19 a.m.•5 views

CVE-2026-6420

CVE•added 2026/05/06 10:19 a.m.•21 views

CVE-2026-6420

CVE-2026-6420 affects Keylime: a flaw in the verifier uses a hardcoded TPM quote nonce instead of a cryptographically random value. An attacker with root on an enrolled monitored machine where the Keylime agent runs can stockpile valid TPM quotes and replay them to evade detection after compromis...

Cvelist•added 2026/05/06 10:19 a.m.•31 views

CVE-2026-6420 Keylime: keylime: security bypass due to hardcoded tpm quote nonce

6.3CVSS0.00115EPSS

Tenable Nessus•added 2026/05/06 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2026-6420

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in Keylime. An attacker with root access on an enrolled monitored machine, where the Keylime agent runs, can exploit a vulnerability in the...

CNNVD•added 2026/05/06 12:0 a.m.•5 views

Exploits0References2

Keylime 安全漏洞

Keylime is an open-source scalable trust system developed using TPM technology. Keylime has a security vulnerability, which stems from the verifier using hardcoded challenge random numbers for TPM reference proofs instead of encrypted random values. This allows attackers to accumulate valid TPM...

Positive Technologies•added 2026/05/06 12:0 a.m.•5 views

Exploits0References2

PT-2026-37443

Name of the Vulnerable Software and Affected Versions Keylime affected versions not specified Description A flaw in the Keylime verifier allows an attacker with root access on an enrolled monitored machine to bypass security. The verifier uses a hardcoded challenge nonce for Trusted Platform Modu...

CNNVD•added 2026/05/06 12:0 a.m.•8 views

Exploits0References12

PicoTronica e-Clinic Healthcare System ECHS 安全漏洞

PicoTronica e-Clinic Healthcare System ECHS is a medical clinic management system developed by the British company PicoTronica. Version 5.7 of the PicoTronica e-Clinic Healthcare System ECHS contains a security vulnerability. This vulnerability stems from an issue with the parameter ADMINKEY in t...

7.5CVSS7.1AI score0.00284EPSS

Exploits0References2

ATTACKERKB•added 2026/05/04 5:42 p.m.•2 views

CVE-2026-41571

Note Mark is an open-source note-taking application. In version 0.19.2, IsPasswordMatch in backend/db/models.go falls back to a hard-coded bcrypt"null" placeholder whenever a user has no stored password. OIDC-registered users are created with an empty password, so anyone who submits password:...

9.4CVSS5.7AI score0.00296EPSS

ATTACKERKB•added 2026/05/04 5:39 p.m.•5 views

CVE-2026-32834

Easy PayPal Events & Tickets plugin for WordPress before version 1.4 contains a hardcoded authentication bypass vulnerability in the QR code scanning functionality that allows unauthenticated remote attackers to bypass hash verification by supplying 'test' as the hash parameter. Attackers can...

8.7CVSS5.9AI score0.00448EPSS

Exploits0References4

Vulnrichment•added 2026/05/04 5:39 p.m.•2 views

CVE-2026-32834 Easy PayPal Events & Tickets < 1.4 Authentication Bypass via QR Code Scanning

8.7CVSS5.9AI score0.00448EPSS

NVD•added 2026/05/04 5:16 p.m.•11 views

CVE-2026-42376

D-Link DIR-456U Hardware Revision A1 End-of-Life, EOL contains a hardcoded telnet backdoor. The device starts a telnet daemon at boot via /etc/init0.d/S80telnetd.sh with the username "Alphanetworks" and the static password "whdrv01dlobdir456U" read from /etc/config/imagesign. The custom telnetd...

9.8CVSS0.00461EPSS

NVD•added 2026/05/04 5:16 p.m.•13 views

CVE-2026-42373

D-Link DIR-605L Hardware Revision B2 End-of-Life, EOL contains a hardcoded telnet backdoor. The device starts a telnet daemon at boot via /bin/telnetd.sh with the username "Alphanetworks" and the static password "wrgn76dlwbrdir605L" read from /etc/alphaconfig/imagesign. The custom telnetd binary...

9.8CVSS0.00472EPSS

NVD•added 2026/05/04 5:16 p.m.•8 views

CVE-2026-42372

D-Link DIR-605L Hardware Revision A1 End-of-Life, EOL contains a hardcoded telnet backdoor. The device starts a telnet daemon at boot via /bin/telnetd.sh with the username "Alphanetworks" and the static password "wrgn35dlwbrdir605l" read from /etc/alphaconfig/imagesign. The custom telnetd binary...

8.8CVSS0.003EPSS

NVD•added 2026/05/04 5:16 p.m.•11 views

CVE-2026-42375

D-Link DIR-600L Hardware Revision A1 End-of-Life contains a hardcoded telnet backdoor. The device starts a telnet daemon at boot via /bin/telnetd.sh with the username "Alphanetworks" and the static password "wrgn35dlwbrdir600l" read from /etc/alphaconfig/imagesign. The custom telnetd binary accep...

9.8CVSS0.00472EPSS

CVE•added 2026/05/04 4:3 p.m.•13 views

CVE-2026-42376

CVE-2026-42376 affects D-Link DIR-456U hardware revision A1 (End-of-Life). The description reports a hardcoded telnet backdoor: at boot a telnet daemon runs with username “Alphanetworks” and password read from /etc/config/image_sign; a -u user:password flag is accepted by the custom telnetd, and ...

9.8CVSS5.8AI score0.00461EPSS

Exploits1References1Affected Software1

Vulnrichment•added 2026/05/04 4:3 p.m.•4 views

CVE-2026-42376 D-Link DIR-456U A1 Hardcoded Telnet Backdoor Credentials

9.8CVSS5.8AI score0.00461EPSS

Cvelist•added 2026/05/04 4:3 p.m.•31 views

CVE-2026-42376 D-Link DIR-456U A1 Hardcoded Telnet Backdoor Credentials

9.8CVSS0.00461EPSS