CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2026/06/01 3:33 a.m.•8 views

CVE-2026-48189 Bypass DedicatedAgentToCustomerGroups Setting

EUVD•added 2026/06/01 3:33 a.m.•10 views

EUVD-2026-33551

ATTACKERKB•added 2026/06/01 3:33 a.m.•7 views

CVE-2026-48189

Exploits0References2Affected Software1

CVE•added 2026/06/01 3:33 a.m.•14 views

CVE-2026-48189

Technical details about CVE-2026-48189 are not provided in the supplied documents; no affected versions, vectors, or patches are specified. Monitor for updates from official advisories.

RedHat Linux•added 2026/06/01 2:1 a.m.•15 views

webkitgtk: Processing maliciously crafted web content may bypass Same Origin Policy

A flaw was found in WebKitGTK. Processing malicious web content can cause a cross-origin issue in the Navigation API due to improper input validation and result in a bypass of the same origin policy...

5.4CVSS6AI score0.00031EPSS

Exploits2References5

CNNVD•added 2026/06/01 12:0 a.m.•5 views

Orca Energija Orca heat pump security vulnerabilities

Orca Energija Orca heat pump is a series of air-to-water heat pump systems developed by Orca Energija. There are security vulnerabilities in Orca Energija Orca heat pumps. These vulnerabilities stem from the lack of authentication and plaintext data transmission. Combined with the absence of...

6.3CVSS5.8AI score0.00017EPSS

CNNVD•added 2026/06/01 12:0 a.m.•7 views

Qualcomm Chipsets: Input validation error vulnerability

Qualcomm Chipsets are a series of chipset developed by Qualcomm Incorporation. Qualcomm Chipsets have a vulnerability related to input validation, which arises from the lack of boundary checks when using Strongbox...

8.8CVSS5.8AI score0.00013EPSS

3.9CVSS5.8AI score0.00084EPSS

Capsule Input Validation Vulnerability

Capsule is an open-source Kubernetes framework developed by Project Capsule. Versions of Capsule prior to 0.13.0 contained a vulnerability related to input validation errors. This vulnerability stemmed from rules for intercepting sub-resources named namespace/finalize and namespace/status that we...

Exploits1References2

Positive Technologies•added 2026/06/01 12:0 a.m.•14 views

PT-2026-45591

In applySimpleFieldMaxSize of DataRowHandler.java, there is a possible way to insert a large contact name due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

5.9AI score0.00006EPSS

Exploits0References2

OSV•added 2026/06/01 12:0 a.m.•2 views

PUB-A-485031572

In avbrsapublickeyheadervalidateandbyteswap of libavb/avbcrypto.c, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

5.7AI score

OSV•added 2026/06/01 12:0 a.m.•6 views

ASB-A-475228205

In multiple functions of DevicePolicyManagerService.java, there is a possible desync from persistence due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS5.9AI score0.00006EPSS

Exploits0References2

Positive Technologies•added 2026/06/01 12:0 a.m.•13 views

PT-2026-45574

In multiple functions of ubsan throwing runtime.cpp, there is a possible way to cause a system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

5.9AI score0.00118EPSS

Exploits0References2

5.5CVSS5.8AI score0.00006EPSS

Google Android security vulnerabilities

Google Android is an open-source operating system based on Linux, developed by Google Inc. There is a security vulnerability in Google Android, which stems from improper input validation in the applySimpleFieldMaxSize function within DataRowHandler.java. This vulnerability may lead to local denia...

CNNVD•added 2026/06/01 12:0 a.m.•5 views

WordPress plugin LearnPress has a cross-site scripting vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

7.1CVSS5.6AI score0.00036EPSS

CNNVD•added 2026/06/01 12:0 a.m.•5 views

Google Android security vulnerabilities

Google Android is an open-source operating system based on Linux, developed by Google Inc. There are security vulnerabilities in Google Android, which stem from improper input validation in multiple functions within DevicePolicyManagerService.java. These vulnerabilities may lead to local...

5.5CVSS5.8AI score0.00006EPSS

5.5CVSS5.8AI score0.00005EPSS

Google Android security vulnerabilities

Google Android is an open-source operating system based on Linux, developed by Google Inc. There is a security vulnerability in Google Android, which stems from improper input validation in multiple functions within AccessibilityManagerService.java. This vulnerability may lead to local persistent...

6.7CVSS6AI score0.00014EPSS

Qualcomm Chipsets Buffer Error Vulnerability

Qualcomm Chipsets are a series of chipset developed by Qualcomm Incorporated in the United States. Qualcomm Chipsets have a buffer error vulnerability, which stems from insufficient input validation in the diagnostic service, leading to memory corruption...