Lucene search
K

765 matches found

NVD
NVD
added 2026/04/16 1:16 a.m.8 views

CVE-2026-40960

Luanti 5 before 5.15.2 sometimes allows unintended access to an insecure environment. If at least one mod is listed as secure.trustedmods or secure.httpmods, then a crafted mod can intercept the request for the insecure environment or HTTP API, and also receive access to it...

8.1CVSS0.00171EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/04/16 12:54 a.m.3 views

CVE-2026-40960

Luanti 5 before 5.15.2 sometimes allows unintended access to an insecure environment. If at least one mod is listed as secure.trustedmods or secure.httpmods, then a crafted mod can intercept the request for the insecure environment or HTTP API, and also receive access to it...

8.1CVSS5.2AI score0.00171EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/04/16 12:0 a.m.6 views

PT-2026-33198

Name of the Vulnerable Software and Affected Versions Luanti 5 versions prior to 5.15.2 Description An issue exists where unintended access to an insecure environment may occur. If at least one mod is listed as secure.trusted mods or secure.http mods, a crafted mod can intercept and gain access t...

8.1CVSS5.8AI score0.00171EPSS
Exploits0References14
CNNVD
CNNVD
added 2026/04/16 12:0 a.m.11 views

Luanti 安全漏洞

Luanti is an open-source voxel game engine developed by Luanti itself, supporting mods and game creation. Versions of Luanti prior to 5.5.2 contained security vulnerabilities. These vulnerabilities were caused by improper security environment configuration, which could allow custom modules to...

8.1CVSS5.8AI score0.00171EPSS
Exploits0References2
OSV
OSV
added 2026/04/13 12:7 p.m.8 views

USN-8167-1 xdg-dbus-proxy vulnerability

It was discovered that xdg-dbus-proxy incorrectly handled eavesdropping in policy rules. A local attacker could possibly use this issue to intercept certain D-Bus messages...

6.8CVSS5.8AI score0.00175EPSS
Exploits0References2
NVD
NVD
added 2026/04/09 10:16 p.m.9 views

CVE-2026-33779

An Improper Following of a Certificate's Chain of Trust vulnerability in J-Web of Juniper Networks Junos OS on SRX Series allows a PITM to intercept the communication of the device and get access to confidential information and potentially modify it. When an SRX device is provisioned to connect t...

8.3CVSS0.00121EPSS
Exploits0References1
ICS
ICS
added 2026/04/02 1:54 p.m.11 views

Zscaler Client Connector hard-coded proxy configuration domain

RISK EVALUATION ZScaler Client Connector 4.7 and 4.8 on Microsoft Windows hard codes a domain used to retrieve proxy configuration information. An attacker with control of this domain could provide arbitrary proxy configurations and intercept, redirect or disrupt traffic. 2. RECOMMENDED...

5.4CVSS6AI score0.00178EPSS
Exploits0References1
NVD
NVD
added 2026/03/11 9:16 p.m.3 views

CVE-2026-1068

An improper certificate validation vulnerability was reported in the Lenovo Filez application that could allow a user capable of intercepting network traffic to obtain sensitive user data from the application...

6CVSS0.00078EPSS
Exploits0References1
NVD
NVD
added 2026/03/02 7:16 p.m.7 views

CVE-2025-48574

In validateAddingWindowLw of DisplayPolicy.java, there is a possible way for an app to intercept drag-and-drop events due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.4CVSS0.00097EPSS
Exploits0References1
CNVD
CNVD
added 2026/03/02 12:0 a.m.1 views

Security Bypass Vulnerability in Multiple Apple Products (CNVD-2026-14492)

Apple iOS is an operating system developed for mobile devices.Apple macOS is a specialized operating system developed for Mac computers.Apple iPadOS is an operating system for iPad tablets. A security bypass vulnerability exists in multiple Apple products and is caused by a logic issue in a kerne...

3.1CVSS5.9AI score0.00319EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/16 12:0 a.m.7 views

PT-2026-8330

Name of the Vulnerable Software and Affected Versions Nanobot versions prior to v0.1.3.post7 Description The WhatsApp bridge component in Nanobot binds the WebSocket server to all network interfaces 0.0.0.0 on port 3001 by default and does not require authentication for incoming connections. An...

10CVSS5.5AI score0.00645EPSS
Exploits0References14
RedhatCVE
RedhatCVE
added 2026/02/13 1:30 a.m.6 views

CVE-2026-20671

A logic issue was addressed with improved checks. This issue is fixed in iOS 18.7.5 and iPadOS 18.7.5, iOS 26.3 and iPadOS 26.3, macOS Sequoia 15.7.4, macOS Sonoma 14.8.4, macOS Tahoe 26.3, tvOS 26.3, visionOS 26.3, watchOS 26.3. An attacker in a privileged network position may be able to interce...

3.1CVSS5.8AI score0.00319EPSS
Exploits0References1
OSV
OSV
added 2026/02/11 11:16 p.m.5 views

CVE-2026-20671

A logic issue was addressed with improved checks. This issue is fixed in watchOS 26.3, tvOS 26.3, macOS Tahoe 26.3, macOS Sonoma 14.8.4, macOS Sequoia 15.7.4, iOS 18.7.5 and iPadOS 18.7.5, visionOS 26.3, iOS 26.3 and iPadOS 26.3. An attacker in a privileged network position may be able to interce...

3.1CVSS5.7AI score0.00319EPSS
Exploits0References8
NVD
NVD
added 2026/02/11 11:16 p.m.10 views

CVE-2026-20671

A logic issue was addressed with improved checks. This issue is fixed in iOS 18.7.5 and iPadOS 18.7.5, iOS 26.3 and iPadOS 26.3, macOS Sequoia 15.7.4, macOS Sonoma 14.8.4, macOS Tahoe 26.3, tvOS 26.3, visionOS 26.3, watchOS 26.3. An attacker in a privileged network position may be able to interce...

3.1CVSS0.00319EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/02/11 10:58 p.m.7 views

CVE-2026-20671

A logic issue was addressed with improved checks. This issue is fixed in iOS 18.7.5 and iPadOS 18.7.5, iOS 26.3 and iPadOS 26.3, macOS Sequoia 15.7.4, macOS Sonoma 14.8.4, macOS Tahoe 26.3, tvOS 26.3, visionOS 26.3, watchOS 26.3. An attacker in a privileged network position may be able to interce...

3.1CVSS5.8AI score0.00319EPSS
Exploits0References9
Cvelist
Cvelist
added 2026/02/11 10:58 p.m.25 views

CVE-2026-20671

A logic issue was addressed with improved checks. This issue is fixed in iOS 18.7.5 and iPadOS 18.7.5, iOS 26.3 and iPadOS 26.3, macOS Sequoia 15.7.4, macOS Sonoma 14.8.4, macOS Tahoe 26.3, tvOS 26.3, visionOS 26.3, watchOS 26.3. An attacker in a privileged network position may be able to interce...

0.00319EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2026/02/11 10:58 p.m.4 views

CVE-2026-20671

A logic issue was addressed with improved checks. This issue is fixed in watchOS 26.3, tvOS 26.3, macOS Tahoe 26.3, macOS Sonoma 14.8.4, macOS Sequoia 15.7.4, iOS 18.7.5 and iPadOS 18.7.5, visionOS 26.3, iOS 26.3 and iPadOS 26.3. An attacker in a privileged network position may be able to interce...

5.5AI score0.00319EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2026/01/24 3:17 a.m.15 views

CVE-2025-9290

An authentication weakness was identified in Omada Controllers, Gateways and Access Points, controller-device adoption due to improper handling of random values. Exploitation requires advanced network positioning and allows an attacker to intercept adoption traffic and forge valid authentication...

6CVSS5.5AI score0.00201EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/13 6:30 p.m.3 views

EUVD-2025-203256

Encryption is missing on the configuration interface for Growatt ShineLan-X and MIC 3300TL-X. This allows an attacker with access to the network to intercept and potentially manipulate communication requests between the inverter and its cloud endpoint...

9.4CVSS6.3AI score0.00064EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2025/12/12 12:0 a.m.27 views

Unbreakable Enterprise kernel security update

5.15.0-315.196.5.1 - netfilter: nftables: reject duplicate device on updates Pablo Neira Ayuso Orabug: 38744086 CVE-2025-38678 - Reapply 'cpuidle: menu: Avoid discarding useful information' Harshvardhan Jha Orabug: 38744084 - rtc: expose RTCFEATUREUPDATEINTERRUPT Alexandre Belloni Orabug: 3874408...

7.1CVSS7.9AI score0.00274EPSS
Exploits5
Rows per page
Query Builder