CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2026/06/05 7:29 p.m.•6 views

CVE-2026-20169

A vulnerability in the web-based management interface of Cisco IoT Field Network Director could allow an authenticated, remote attacker with low privileges to access files and execute commands on a remote router. This vulnerability is due to insufficient input validation of user-supplied data. An...

6.4CVSS5.7AI score0.00205EPSS

Packet Storm News•added 2026/06/02 12:0 a.m.•10 views

Towards Intrusion Detection Systems for RPL-Based IoT Networks Using Foundation Models

AI-based intrusion detection systems IDS have shown promise in detecting attacks on IoT systems. In this work, we explore the use of foundation models to detect and identify attacks, with a specific focus on RPL-based IoT networks. We study multiple attack types, attack variations, and network...

Cvelist•added 2026/05/29 5:11 p.m.•31 views

CVE-2026-7786 Jinan USR IOT Technology Limited (PUSR) USR-W610 RS232/485 to Wi-Fi/Ethernet Converter Use of Hard-coded Credentials

Jinan USR IOT Technology Limited PUSR USR-W610 RS232/485 to Wi-Fi/Ethernet Converter device firmware contains plaintext administrative credentials embedded in the firmware image. These credentials can be extracted through firmware analysis and used to authenticate to device services...

9.8CVSS0.00529EPSS

Exploits0References2

Packet Storm News•added 2026/05/21 12:0 a.m.•6 views

BYOT-CPS: A Hybrid Cyber-Physical Systems Testbed for IoT Security Assessment and Platform Evaluation

Internet of Things IoT security research continues to face a methodological gap between scalable virtual experimentation and realistic device behaviour. While pure simulation and emulation platforms provide control, repeatability, and scale, they do not fully reproduce firmware-specific behaviour...

Packet Storm News•added 2026/05/15 12:0 a.m.•7 views

Security Analysis of a Communication Protocol: MQTT

This paper analyzes the security of the Message Queuing Telemetry Transport MQTT protocol in the context of the Internet of Things IoT. The main objective consists of identifying vulnerabilities and proposing security improvements. Adopting a hybrid methodology, a theoretical review was combined...

The Hacker News•added 2026/05/12 11:58 a.m.•8 views

Webinar: What the Riskiest SOC Alerts Go Unanswered - and How Radiant Security Can Help

Why do the Riskiest SOC Alerts Go Unanswered? Security operations teams are drowning in alerts. But the real problem isn't always alert volume; it's the blind spots. The most dangerous alerts are the ones no one is investigating. A recent report from The Hacker News examined why certain high-risk...

5.9AI score

GithubExploit•added 2026/05/09 3:38 a.m.•33 views

IoT_vul

...

CNNVD•added 2026/05/08 12:0 a.m.•6 views

UltraDAG 访问控制错误漏洞

UltraDAG is a lightweight IoT blockchain developed by the UltraDAGcom team. Prior versions of UltraDAG had an access control vulnerability caused by a logical flaw in the policy execution pipeline implemented in SmartTransferTx. This flaw allowed the system to check expenditure policies without...

8.8CVSS5.9AI score0.00375EPSS

GithubExploit•added 2026/05/07 7:39 a.m.•50 views

IOT_Vul_Public

IOTVul...

EUVD•added 2026/05/06 6:30 p.m.•6 views

EUVD-2026-27850

A vulnerability in the web-based management interface of Cisco IoT Field Network Director could allow an authenticated, remote attacker with low privileges to cause a DoS condition on a remotely managed router. This vulnerability is due to improper error handling. An attacker could exploit this...

7.7CVSS5.8AI score0.00272EPSS

Exploits0References2

Vulnrichment•added 2026/05/06 4:15 p.m.•7 views

CVE-2026-20167 Cisco IoT Field Network Director Remote Device Denial of Service Vulnerability

7.7CVSS5.8AI score0.00272EPSS

CVE•added 2026/05/06 4:15 p.m.•6 views

CVE-2026-20169

Cisco IoT Field Network Director exposes a CVE-2026-20169 vulnerability in its web-based management interface. The issue stems from insufficient input validation of user-supplied data, allowing an authenticated, low-privilege attacker to access files and execute limited commands on a remote route...

6.4CVSS5.9AI score0.00205EPSS

Vulnrichment•added 2026/05/06 4:15 p.m.•5 views

CVE-2026-20169 Cisco IoT Field Network Director Command Injection Vulnerability

6.4CVSS5.9AI score0.00205EPSS

Cisco•added 2026/05/06 4:0 p.m.•14 views

Cisco IoT Field Network Director Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco IoT Field Network Director Software could allow an authenticated, remote attacker to access files, execute commands, and cause denial of service DoS conditions on managed routers. For more information about these...

7.7CVSS5.9AI score0.00272EPSS

CNNVD•added 2026/05/06 12:0 a.m.•7 views

Cisco IoT Field Network Director 访问控制错误漏洞

The Cisco IoT Field Network Director is an end-to-end IoT management system developed by Cisco, Inc. This system offers features such as device management, asset tracking, and intelligent metering. There is an access control vulnerability present in the Cisco IoT Field Network Director. This...

7.7CVSS5.8AI score0.00272EPSS