Lucene search
K

4018 matches found

CVE
CVE
added 2026/06/19 1:19 p.m.15 views

CVE-2026-49872

The CVE-2026-49872 entry concerns Apache APISIX and its cas-auth plugin. Affected versions are 3.0.0 through 3.16.0; the issue is an improper authentication flaw where, when cas-auth is used on a route, an attacker may authenticate using credentials from a different source. The public documentati...

8.1CVSS5.9AI score0.0032EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/06/19 1:19 p.m.30 views

CVE-2026-49872 Apache APISIX: Improper authentication in cas-auth plugin

Improper Authentication vulnerability in Apache APISIX. When the cas-auth plugin is used in a route, an attacker can possibly authenticate itself with credentials from a different source. This issue affects Apache APISIX: from 3.0.0 through 3.16.0. Users are recommended to upgrade to version...

5.3CVSS0.0032EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/19 12:31 a.m.9 views

EUVD-2026-37945

Improper authentication in Azure Bot Service allows an authorized attacker to elevate privileges over a network...

7.7CVSS5.3AI score0.00411EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/19 12:0 a.m.21 views

PT-2026-51031

Name of the Vulnerable Software and Affected Versions Azure Active Directory affected versions not specified Description Improper authentication allows an unauthorized attacker to elevate privileges over a network. Recommendations At the moment, there is no information about a newer version that...

10CVSS5.9AI score0.00562EPSS
Exploits0References9
NVD
NVD
added 2026/06/18 10:16 p.m.12 views

CVE-2026-32174

Improper authentication in Azure Bot Service allows an authorized attacker to elevate privileges over a network...

8.8CVSS0.00411EPSS
Exploits0References1
Snyk
Snyk
added 2026/06/18 2:27 p.m.5 views

Improper Authentication

Overview PraisonAI is a PraisonAI is an AI Agents Framework with Self Reflection. PraisonAI application combines PraisonAI Agents, AutoGen, and CrewAI into a low-code solution for building and managing multi-agent LLM systems, focusing on simplicity, customisation, and efficient human-agent...

8.8CVSS5.8AI score
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2026/06/18 2:0 p.m.9 views

Azure Bot Service Elevation of Privilege Vulnerability

Improper authentication in Azure Bot Service allows an authorized attacker to elevate privileges over a network...

8.8CVSS5.9AI score0.00411EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/06/18 2:0 p.m.13 views

Azure Active Directory Elevation of Privilege Vulnerability

Improper authentication in Azure Active Directory allows an unauthorized attacker to elevate privileges over a network...

10CVSS5.9AI score0.00562EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/06/18 12:0 a.m.15 views

PT-2026-50798

Name of the Vulnerable Software and Affected Versions Azure Bot Service affected versions not specified Description Improper authentication in Azure Bot Service allows an authorized attacker to elevate privileges over a network. Recommendations At the moment, there is no information about a newer...

8.8CVSS5.9AI score0.00411EPSS
Exploits0References6
NVD
NVD
added 2026/06/17 3:16 p.m.9 views

CVE-2026-49502

Dell PowerFlex Manager, versions prior to 5.1.0.1, contains an Improper Authentication vulnerability. An unauthenticated attacker with adjacent network access could potentially exploit this vulnerability, leading to Information disclosure, Information tampering, and Unauthorized access...

8.1CVSS0.0021EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 3:16 p.m.8 views

CVE-2026-32804

Dell PowerFlex Manager, versions prior to 5.1.0.1, contains an Improper Authentication vulnerability. An unauthenticated attacker with adjacent network access could potentially exploit this vulnerability, leading to Unauthorized access...

8.1CVSS0.00216EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/17 2:36 p.m.20 views

CVE-2026-32804

Dell PowerFlex Manager, versions prior to 5.1.0.1, contains an Improper Authentication vulnerability. An unauthenticated attacker with adjacent network access could potentially exploit this vulnerability, leading to Unauthorized access...

8.1CVSS0.00216EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/17 2:36 p.m.8 views

EUVD-2026-37731

Dell PowerFlex Manager, versions Versions, contains an Improper Authentication vulnerability. An unauthenticated attacker with adjacent network access could potentially exploit this vulnerability, leading to Unauthorized access...

8.1CVSS5.3AI score0.00216EPSS
Exploits0References1
CVE
CVE
added 2026/06/17 2:36 p.m.19 views

CVE-2026-32804

This CVE concerns Dell PowerFlex Manager. Affected component: PowerFlex Manager (version(s) [Versions]). Vulnerability: Improper Authentication allowing an unauthenticated attacker with adjacent network access to potentially gain Unauthorized access. Evidence indicates a high-severity impact with...

8.1CVSS5.9AI score0.00216EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/17 2:36 p.m.10 views

CVE-2026-32804

Dell PowerFlex Manager, versions prior to 5.1.0.1, contains an Improper Authentication vulnerability. An unauthenticated attacker with adjacent network access could potentially exploit this vulnerability, leading to Unauthorized access...

8.1CVSS5.9AI score0.00216EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/17 2:30 p.m.19 views

CVE-2026-49502

Dell PowerFlex Manager, versions prior to 5.1.0.1, contains an Improper Authentication vulnerability. An unauthenticated attacker with adjacent network access could potentially exploit this vulnerability, leading to Information disclosure, Information tampering, and Unauthorized access...

7.4CVSS0.0021EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/17 2:30 p.m.10 views

CVE-2026-49502

Dell PowerFlex Manager, versions prior to 5.1.0.1, contains an Improper Authentication vulnerability. An unauthenticated attacker with adjacent network access could potentially exploit this vulnerability, leading to Information disclosure, Information tampering, and Unauthorized access...

7.4CVSS5.9AI score0.0021EPSS
Exploits0References1
CVE
CVE
added 2026/06/17 2:30 p.m.12 views

CVE-2026-49502

Dell PowerFlex Manager is reported vulnerable to an Improper Authentication issue. An unauthenticated attacker with adjacent network access could potentially cause Information disclosure, Information tampering, and Unauthorized access. CVSS v3.1 base score 7.4 (HIGH); attack vector ADJACENT; no u...

8.1CVSS5.9AI score0.0021EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2026/06/17 2:30 p.m.10 views

EUVD-2026-37729

Dell PowerFlex Manager, versions Versions, contains an Improper Authentication vulnerability. An unauthenticated attacker with adjacent network access could potentially exploit this vulnerability, leading to Information disclosure, Information tampering, and Unauthorized access...

7.4CVSS5.3AI score0.0021EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/17 12:0 a.m.16 views

PT-2026-50443

Name of the Vulnerable Software and Affected Versions Dell PowerFlex Manager affected versions not specified Description Improper Authentication allows an unauthenticated attacker with adjacent network access to potentially gain unauthorized access, leading to information disclosure and informati...

8.1CVSS5.8AI score0.0021EPSS
Exploits0References4
Rows per page
Query Builder