CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 7 hours ago•5 views

CVE-2026-49194

Technical details about CVE-2026-49194 are not publicly available in the provided documents; monitor for updates.

ATTACKERKB•added 7 hours ago•3 views

CVE-2026-49194

The debugging routine SCREENCLICK5053 enables a connection to skip the standard device login prompt entirely and directly enter an interactive shell interface...

EUVD•added 7 hours ago•2 views

Exploits0References2

EUVD-2026-34213

The debugging routine SCREENCLICK5053 enables a connection to skip the standard device login prompt entirely and directly enter an interactive shell interface...

Cvelist•added 7 hours ago•4 views

CVE-2026-49194 SCREEN_CLICK Authentication Bypass

The debugging routine SCREENCLICK5053 enables a connection to skip the standard device login prompt entirely and directly enter an interactive shell interface...

9.4CVSS

Vulnrichment•added 7 hours ago•2 views

CVE-2026-49194 SCREEN_CLICK Authentication Bypass

The debugging routine SCREENCLICK5053 enables a connection to skip the standard device login prompt entirely and directly enter an interactive shell interface...

Positive Technologies•added 14 hours ago•8 views

PT-2026-46152

The debugging routine SCREEN CLICK5053 enables a connection to skip the standard device login prompt entirely and directly enter an interactive shell interface...

CNNVD•added 2026/05/26 12:0 a.m.•4 views

Exploits0References2

Dozzle 访问控制错误漏洞

Dozzle is a small, lightweight application developed by Amir Raminfar as an individual project. Versions of Dozzle prior to 10.5.2 contained an access control vulnerability. This vulnerability stemmed from the WebSocket upgrade mechanism used by the /exec and /attach endpoints, which accepted...

9.6CVSS5.7AI score0.00007EPSS

Exploits1References3

GithubExploit•added 2026/05/20 8:2 a.m.•44 views

Exploit for Incorrect Implementation of Authentication Algorithm in Google Android

ADB TLS Auth Bypass Exploit CVE-2026-0073 An automated netw...

8.8CVSS6AI score0.00009EPSS

Exploits10

Snyk•added 2026/05/06 5:5 p.m.•5 views

Missing Authentication for Critical Function

Overview Affected versions of this package are vulnerable to Missing Authentication for Critical Function in the UI server WebSocket. An attacker can gain unauthorized access to sensitive endpoints, such as streaming real-time pod logs, opening an interactive shell inside a running pod, or...

7.8CVSS5.8AI score0.00005EPSS

Exploits0References2

Github Security Blog•added 2026/05/06 5:5 p.m.•4 views

DevSpace UI Server WebSocket CheckOrigin does not validate source

Description DevSpace's UI server WebSocket accepts connections from all origins by default, and therefore several endpoints are exposed via this WebSocket. When a developer runs the DevSpace UI and at the same time uses a browser to access the internet, a malicious website they visit can use thei...

7.8CVSS5.9AI score0.00005EPSS

Exploits0References3Affected Software1

Packet Storm News•added 2026/05/05 12:0 a.m.•4 views

Joern 4.0.533

Joern is the bug hunter's workbench. With this tool, you can uncover attack surface, sloppy coding practices, and variants of known vulnerabilities using an interactive code analysis shell. Joern supports C, C++, LLVM bitcode, x86 binaries via Ghidra, JVM bytecode via Soot, and Javascript...

5.9AI score

Packet Storm News•added 2026/05/04 12:0 a.m.•2 views

Joern 4.0.532

5.9AI score

GithubExploit•added 2026/04/30 8:38 p.m.•55 views

Exploit for CVE-2026-31431

Copy Fail PoC English Python PoC for CVE-2026-31431,...

7.8CVSS5.7AI score0.02235EPSS

Exploits225

Packet Storm News•added 2026/04/27 12:0 a.m.•3 views

Joern 4.0.528

5.3AI score

Packet Storm News•added 2026/04/20 12:0 a.m.•4 views

Joern 4.0.524

5.8AI score