Lucene search
+L

5 matches found

osv
osv
added 2026/05/14 9:7 p.m.2 views

CVE-2026-44427 MCP Registry: Open Redirect

The MCP Registry provides MCP clients with a list of MCP servers, like an app store for MCP servers. From 1.1.0 to 1.7.4, the TrailingSlashMiddleware in internal/api/server.go is vulnerable to an open redirect attack. An attacker can craft a URL with a protocol-relative path e.g., //evil.com/ tha...

6AI score0.00409EPSS
Exploits0References3
nvd
nvd
added 2025/12/04 8:16 p.m.5 views

CVE-2025-12996

Medtronic CareLink Network allows a local attacker with access to log files on an internal API server to view plaintext passwords from errors logged under certain circumstances. This issue affects CareLink Network: before December 4, 2025...

4.1CVSS0.00095EPSS
Exploits0References1
euvd
euvd
added 2025/12/04 8:4 p.m.4 views

EUVD-2025-201287

Medtronic CareLink Network allows a local attacker with access to log files on an internal API server to view plaintext passwords from errors logged under certain circumstances. This issue affects CareLink Network: before December 4, 2025...

4.1CVSS6AI score0.00095EPSS
Exploits0References2
cvelist
cvelist
added 2025/12/04 8:4 p.m.31 views

CVE-2025-12996

Medtronic CareLink Network allows a local attacker with access to log files on an internal API server to view plaintext passwords from errors logged under certain circumstances. This issue affects CareLink Network: before December 4, 2025...

4.1CVSS0.00095EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/12/04 12:0 a.m.10 views

PT-2025-49126

Name of the Vulnerable Software and Affected Versions Medtronic CareLink Network versions prior to December 4, 2025 Description A local attacker gaining access to log files on an internal API server can view passwords in plaintext due to errors logged under specific conditions. Recommendations...

4.1CVSS6.3AI score0.00095EPSS
Exploits0References4
Rows per page
Query Builder