Lucene search
+L

4005 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/22 12:0 a.m.25 views

Grafana Labs < 11.6.14+security-04 / 12.2.0 < 12.2.8+security-04 / 12.3.0 < 12.3.6+security-04 / 12.4.0 < 12.4.3+security-02 / 13.0.0 < 13.0.1+security-01 Multiple Vulnerabilities

The version of Grafana Labs installed on the remote host is affected by multiple vulnerabilities, including: - A broken access control flaw in the Snapshot API allows any Editor to delete dashboard snapshots, even those they have no read or write access to. CVE-2026-28380 - When using an IPv6...

8.1CVSS5.4AI score0.00328EPSS
Exploits0References20
GithubExploit
GithubExploit
added 2026/05/20 3:11 p.m.118 views

Exploit for CVE-2026-42945

NGINX CVE-2026-42945 Rift — local defensive lab Two Dockeri...

9.2CVSS6AI score0.61469EPSS
Exploits40
Circl
Circl
added 2026/05/20 10:36 a.m.9 views

CVE-2026-42960

creationtimestamp| type| source ---|---|--- 2026-05-20 10:36:25+00:00| seen| https://social.nlnetlabs.nl/users/nlnetlabs/statuses/116606458492280712 2026-05-20 10:58:34+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmbqqjqwms2i 2026-06-20 13:23:38+00:00| seen|...

10CVSS5.8AI score0.00249EPSS
Exploits0References4
Circl
Circl
added 2026/05/20 10:36 a.m.13 views

CVE-2026-41292

creationtimestamp| type| source ---|---|--- 2026-05-20 10:36:25+00:00| seen| https://social.nlnetlabs.nl/users/nlnetlabs/statuses/116606458492280712 2026-05-20 10:55:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmbqlnf6vp2k...

8.7CVSS5.8AI score0.00556EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2026/05/15 9:46 p.m.138 views

disclosures

Delphos Labs - Vulnerability Disclosures Public vulnerability...

5.9AI score
Exploits0
CNNVD
CNNVD
added 2026/05/14 12:0 a.m.12 views

Silicon Labs RS9116 SDK 安全漏洞

Silicon Labs RS9116 SDK is an embedded development toolkit developed by Silicon Labs Corporation for wireless connectivity modules. The Silicon Labs RS9116 SDK has a security vulnerability, which stems from the time limit of HRNG when power saving mode is enabled, resulting in predictable values...

7.4CVSS5.8AI score0.00159EPSS
Exploits0References1
Circl
Circl
added 2026/05/13 3:1 p.m.8 views

CVE-2026-44968

creationtimestamp| type| source ---|---|--- 2026-05-13 15:01:21+00:00| published-proof-of-concept| https://github.com/dbt-labs/dbt-mcp/security/advisories/GHSA-xpww-f6pm-cfhq...

6.3CVSS5.8AI score0.00018EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2026/05/13 2:35 a.m.198 views

security-skills

Security Skills Security Skills is a Hermes Agent skill pack...

5.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/07 12:0 a.m.20 views

Malicious code in camelotlabs-config (npm)

Five packages camelotlabs-sdk, camelotlabs-core, camelotlabs-config, camelotlabs-worker, and camelotlabs-utils were published to the public npm registry at version 99.0.0 by the actor madman0619 as a dependency confusion attack targeting the internal npm packages of Camelot Labs. The inflated...

5.9AI score
Exploits0
OSV
OSV
added 2026/05/07 12:0 a.m.8 views

MAL-2026-3642 Malicious code in camelotlabs-sdk (npm)

Five packages camelotlabs-sdk, camelotlabs-core, camelotlabs-config, camelotlabs-worker, and camelotlabs-utils were published to the public npm registry at version 99.0.0 by the actor madman0619 as a dependency confusion attack targeting the internal npm packages of Camelot Labs. The inflated...

5.9AI score
Exploits0
EUVD
EUVD
added 2026/05/05 6:33 p.m.11 views

EUVD-2026-27337

The traceroute diagnostic handler in /bin/httpdclientside for ALTICE LABS / SFR France GR140DG and GR140IG fibre CPE/Router/Gateway, inserts unsanitized user input into a system call, allowing authenticated remote attackers to execute arbitrary commands as root via crafted destAddr parameters usi...

6.1AI score0.01275EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/05/05 12:0 a.m.7 views

CVE-2026-31195

OS command injection vulnerability in the ping diagnostic handler in /bin/httpdclientside in ALTICE LABS / SFR France GR140DG Fibre Router with firmware 3GN8020801R13, 3GN8020802R0A, or 3GN8020803R0A inserts unsanitized user input into a system call, allowing authenticated remote attackers to...

5.9AI score0.01275EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/05 12:0 a.m.6 views

CVE-2026-31196

The traceroute diagnostic handler in /bin/httpdclientside for ALTICE LABS / SFR France GR140DG and GR140IG fibre CPE/Router/Gateway, inserts unsanitized user input into a system call, allowing authenticated remote attackers to execute arbitrary commands as root via crafted destAddr parameters usi...

6.1AI score0.01275EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/05 12:0 a.m.12 views

Altice Labs GR140DG和Altice Labs GR140IG 安全漏洞

Both Altice Labs GR140DG and Altice Labs GR140IG are fiber-optic access gateway devices from the Portuguese company Altice Labs. Both devices have security vulnerabilities. The vulnerability stems from the traceroute diagnostic handler in /bin/httpdclientside, which allows uncleaned user input to...

8.8CVSS6.1AI score0.01275EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/05 12:0 a.m.42 views

CVE-2026-31195

OS command injection vulnerability in the ping diagnostic handler in /bin/httpdclientside in ALTICE LABS / SFR France GR140DG Fibre Router with firmware 3GN8020801R13, 3GN8020802R0A, or 3GN8020803R0A inserts unsanitized user input into a system call, allowing authenticated remote attackers to...

0.01275EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/05 12:0 a.m.7 views

CVE-2026-31195

The ping diagnostic handler in /bin/httpdclientside for ALTICE LABS / SFR France GR140DG and GR140IG fibre CPE/Router/Gateway, inserts unsanitized user input into a system call, allowing authenticated remote attackers to execute arbitrary commands as root via crafted destAddr parameters using she...

6.1AI score0.01275EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/05 12:0 a.m.10 views

Altice Labs GR140DG和Altice Labs GR140IG 安全漏洞

Altice Labs GR140DG and Altice Labs GR140IG are fiber-optic access gateway devices from the Portuguese company Altice Labs. Both devices have security vulnerabilities. The vulnerability stems from the ping diagnostic handler in /bin/httpdclientside, which inserts uncleaned user inputs into the...

8.8CVSS6.1AI score0.01275EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/05 12:0 a.m.13 views

PT-2026-37057

Name of the Vulnerable Software and Affected Versions ALTICE LABS / SFR France GR140DG affected versions not specified ALTICE LABS / SFR France GR140IG affected versions not specified Description The ping diagnostic handler in the '/bin/httpd clientside' endpoint allows authenticated remote...

8.8CVSS6.1AI score0.01275EPSS
Exploits0References8
CVE
CVE
added 2026/05/05 12:0 a.m.19 views

CVE-2026-31196

The vulnerability CVE-2026-31196 affects ALTICE LABS / SFR France GR140DG and GR140IG fibre CPE/Router/Gateway. The traceroute diagnostic handler (/bin/httpd_clientside) unsafely inserts user-supplied destAddr input into a system() call, enabling authenticated remote attackers to execute arbitrar...

8.8CVSS5.9AI score0.01275EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/04 8:21 p.m.10 views

CVE-2026-7593

A security vulnerability has been detected in Sunwood-ai-labs command-executor-mcp-server up to 0.1.0. This impacts the function executecommand of the file src/index.ts of the component MCP Interface. The manipulation leads to os command injection. Remote exploitation of the attack is possible. T...

7.5CVSS6.6AI score0.01362EPSS
Exploits0References1
Rows per page
Query Builder