CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

164 matches found

EUVD-2026-35453

Insufficient input validation vulnerability in NETGEAR JR6150 AC750 WiFi Router 802.11ac Dual Band Gigabit released in 2014 allows administrators connected to the local network to make unauthorized modification of router software and functionality. NETGEAR JR6150 reached End-of-Support status in...

6.8CVSS5.4AI score

Exploits0References2

Cvelist•added 6 hours ago•5 views

CVE-2026-0413 Buffer overflow vulnerability in certain NETGEAR Nighthawk routers

Insufficient input validation of buffers vulnerability in the listed NETGEAR models allows authenticated administrators connected to the local network to make unauthorized modification of router software and functionality...

6.8CVSS

Exploits0References14

CVE•added 6 hours ago•5 views

CVE-2026-0417

The CVE affects NETGEAR devices where the vulnerability arises from insufficient input validation in certain routers. The root cause is input validation issues that allow authenticated administrators connected to the local network to tamper with the router’s integrity. Reported impact centers on ...

6.8CVSS5.5AI score

Exploits0References27

CVE•added 6 hours ago•3 views

CVE-2026-0416

CVE-2026-0416 affects Netgear RAXE450 and RAXE500 routers. Authenticated administrators on the local network can modify router functionality beyond what is intended via the standard management interface. Documented CVSS shows adjacent access, high privileges, no user interaction, and integrity im...

6.8CVSS5.5AI score

Exploits0References2

Cvelist•added 6 hours ago•4 views

CVE-2026-0416 RAXE450 and RAXE500 routers allow administrators to modify router functionality beyond intended limits

Authenticated administrators connected to the local network can modify router functionality beyond what is intended through the standard management interface...

6.8CVSS

Exploits0References2

Vulnrichment•added 6 hours ago•2 views

CVE-2026-0416 RAXE450 and RAXE500 routers allow administrators to modify router functionality beyond intended limits

Authenticated administrators connected to the local network can modify router functionality beyond what is intended through the standard management interface...

6.8CVSS5.4AI score

Exploits0References2

Vulnrichment•added 6 hours ago•2 views

CVE-2026-0412 Insufficient input validation vulnerability in NETGEAR JR6150 Web UI

6.8CVSS5.4AI score

Exploits0References1

Vulnrichment•added 7 hours ago•3 views

CVE-2026-0410 Insufficient input validation in certain NETGEAR routers

Authenticated administrators connected to the local network can gain elevated access to the router and make unauthorized changes to router software and functionality...

5.7CVSS5.4AI score

Exploits0References19

CNNVD•added 2026/04/13 12:0 a.m.•1 views

Palo Alto Networks Cortex XDR Agent 安全漏洞

Palo Alto Networks Cortex XDR Agent is a terminal security software developed by Palo Alto Networks, Inc. There is a security vulnerability present in the Palo Alto Networks Cortex XDR Agent. This vulnerability stems from issues with the protection mechanisms, and it may cause local administrator...

6.7CVSS5.8AI score0.00019EPSS

Exploits0References1

EUVD•added 2026/03/11 9:31 a.m.•1 views

EUVD-2024-55471

An improper certificate validation vulnerability has been reported to affect Video Station. If an attacker gains local network access who have also gained an administrator account, they can then exploit the vulnerability to compromise the security of the system. We have already fixed the...

1CVSS5.7AI score0.0001EPSS

Exploits0References3

RedhatCVE•added 2026/01/09 12:38 p.m.•3 views

CVE-2023-50359

An unchecked return value vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow local authenticated administrators to place the system in a state that could lead to a crash or other unintended behaviors via unspecified vector...

6.7CVSS6.4AI score0.00025EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 12:36 p.m.•4 views

CVE-2023-49944

The Challenge Response feature of BeyondTrust Privilege Management for Windows PMfW before 2023-07-14 allows local administrators to bypass this feature by decrypting the shared key, or by locating the decrypted shared key in process memory. The threat is mitigated by the Agent Protection feature...

6.7CVSS6.8AI score0.00011EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:59 a.m.•6 views

CVE-2023-49692

A vulnerability has been identified in RUGGEDCOM RM1224 LTE4G EU 6GK6108-4AM00-2BA2 All versions V7.2.2, RUGGEDCOM RM1224 LTE4G NAM 6GK6108-4AM00-2DA2 All versions V7.2.2, SCALANCE M804PB 6GK5804-0AP00-2AA2 All versions V7.2.2, SCALANCE M812-1 ADSL-Router 6GK5812-1AA00-2AA2 All versions V7.2.2,...

7.2CVSS6.7AI score0.00135EPSS

Exploits0References1

RedhatCVE•added 2025/11/12 1:6 p.m.•4 views

CVE-2025-5317

An improper access restriction to a folder in Bitdefender Endpoint Security Tools for Mac BEST before 7.20.52.200087 allows local users with administrative privileges to bypass the configured uninstall password protection. An unauthorized user with sudo privileges can manually remove the...

6.8CVSS6.6AI score0.00013EPSS

Exploits0References1