CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1012 matches found

CVE-2026-10801

CVE-2026-10801 affects modelscope ms-swift up to 4.2.0 and targets the PIL Image Cache Key Handler, specifically the function Template._save_pil_image in swift/template/base.py. The issue is a manipulation that results in the use of a weak hash, enabling a local attack. The CVE notes a high attac...

3.6CVSS5AI score

Exploits0References8

Talos Blog•added 2026/05/28 10:0 a.m.•11 views

DICOM, Pydicom, GDCM, and Orthanc: A technical tour of what really happens in the heap

Over the last decade, DICOM parsing has become an active research topic. The reason is simple: DICOM is both critical and complicated. Hospitals rely on DICOM-based PACS systems, and those systems often automatically ingest files received over the network. That means malformed data could directly...

5.9AI score

Exploits0

Schneier on Security•added 2026/05/26 3:2 p.m.•9 views

Identifying People Using Wi-Fi Routers

Not identifying people based on their use of Wi-Fi routers, but identifying people using Wi-Fi signals. This is accomplished through what is known as WiFi sensing, or the use of WiFi signals to infer information about a physical environment. When radio signals like WiFi travel through a space, th...

5.8AI score

Exploits0

CVE•added 2026/05/25 2:15 p.m.•13 views

CVE-2018-25374

CVE-2018-25374 affects Softneta MedDream PACS Server Premium 6.7.1.1. A directory-traversal vulnerability allows unauthenticated attackers to read arbitrary files by manipulating the path parameter, using requests to nocache.php with encoded backslash sequences. This can expose sensitive files in...

8.7CVSS5.9AI score0.00683EPSS

Exploits0References3

Cvelist•added 2026/05/25 2:15 p.m.•15 views

CVE-2018-25372 MedDream PACS Server Premium 6.7.1.1 SQL Injection via email

MedDream PACS Server Premium 6.7.1.1 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the email parameter. Attackers can submit crafted POST requests to the userSignup.php endpoint with SQL payloads ...

8.8CVSS0.00081EPSS

Exploits0References2

CVE•added 2026/05/25 2:15 p.m.•11 views

CVE-2018-25372

CVE-2018-25372 : MedDream PACS Server Premium 6.7.1.1 contains an unauthenticated SQL injection in the email parameter of the userSignup.php endpoint. Crafting POST requests with SQL payloads can extract sensitive information from the backend MySQL database. The description explicitly states the ...

8.8CVSS6.1AI score0.00081EPSS

Exploits0References2

Tenable Nessus•added 2026/05/25 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-8631

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A potential security vulnerability has been identified in the HP Linux Imaging and Printing Software. This potential vulnerability may allow escalation of...

9.8CVSS6.4AI score0.00023EPSS

Exploits0References2

SUSE CVE•added 2026/05/22 2:22 a.m.•3 views

SUSE CVE-2025-43023

A potential security vulnerability has been identified in the HP Linux Imaging and Printing Software documentation. This potential vulnerability is due to the use of a weak code signing key, Digital Signature Algorithm DSA...

7.5CVSS5.8AI score0.00124EPSS

Exploits0References4

Tenable Nessus•added 2026/05/22 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-8632

8.5CVSS6.3AI score0.0001EPSS

Exploits0References3

RedhatCVE•added 2026/05/21 12:51 p.m.•4 views

CVE-2026-8632

A flaw was found in the HP Linux Imaging and Printing Software HPLIP. This vulnerability may allow a local attacker to achieve escalation of privileges and/or arbitrary code execution through operating system command injection. This could lead to an attacker gaining unauthorized control over the...

8.5CVSS6.3AI score0.0001EPSS

Exploits0References4

OSV•added 2026/05/20 9:16 p.m.•1 views

DEBIAN-CVE-2026-8632

A potential security vulnerability has been identified in the HP Linux Imaging and Printing Software. This potential vulnerability may allow escalation of privileges and/or arbitrary code execution via operating system command injection...

7.8CVSS6.3AI score0.0001EPSS

Exploits0References1

NVD•added 2026/05/20 9:16 p.m.•8 views

CVE-2026-8631

9.8CVSS0.00023EPSS

Exploits0References1

NVD•added 2026/05/20 9:16 p.m.•7 views

CVE-2026-8632

8.5CVSS0.0001EPSS

Exploits0References1

OSV•added 2026/05/20 9:16 p.m.•1 views

DEBIAN-CVE-2026-8631

9.8CVSS6.3AI score0.00023EPSS

Exploits0References1

Cvelist•added 2026/05/20 8:14 p.m.•22 views

CVE-2026-8632 HP Linux Imaging and Printing Software – Potential Escalation of Privilege and Arbitrary Code Execution

8.5CVSS0.0001EPSS

Exploits0References1

EUVD•added 2026/05/20 8:14 p.m.•5 views

EUVD-2026-31194

8.5CVSS6.3AI score0.0001EPSS

Exploits0References1

CVE•added 2026/05/20 8:14 p.m.•7 views

CVE-2026-8632

HP Linux Imaging and Printing Software is reported to contain a potential vulnerability that may allow local privilege escalation and arbitrary code execution through operating system command injection. The affected software is identified as HP Linux Imaging and Printing Software; the vulnerabili...

8.5CVSS6.3AI score0.0001EPSS

Exploits0References1Affected Software1