CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Access of Resource Using Incompatible Type 'Type Confusion' vulnerability in Salesforce Tableau Server, Tableau Desktop on Windows, Linux File Upload modules allows Local Code Inclusion.This issue affects Tableau Server, Tableau Desktop: before 2025.1.3, before 2024.2.12, before 2023.3.19...

9.3CVSS7.2AI score0.00054EPSS

Exploits0References3

RedhatCVE•added 2025/08/24 8:11 p.m.•4 views

CVE-2025-26496

9.3CVSS7.4AI score0.00054EPSS

Exploits0References1

OSV•added 2025/08/22 9:15 p.m.•0 views

CVE-2025-26496

9.3CVSS7.6AI score0.17513EPSS

Exploits2References2

NVD•added 2025/08/22 9:15 p.m.•2 views

CVE-2025-26496

9.3CVSS0.00054EPSS

Exploits0References2

CVE•added 2025/08/22 8:10 p.m.•44 views

CVE-2025-26496

CVE-2025-26496 concerns a Type Confusion vulnerability in Salesforce Tableau Server and Tableau Desktop (Windows, Linux) within their File Upload modules, enabling Local Code Inclusion. Affected versions include Tableau Server/Desktop: before 2025.1.3, before 2024.2.12, before 2023.3.19. The issu...

9.3CVSS9.8AI score0.00054EPSS

Exploits0References2Affected Software1

Cvelist•added 2025/08/22 8:10 p.m.•5 views

CVE-2025-26496

0.00054EPSS

Exploits0References2

Vulnrichment•added 2025/08/22 8:10 p.m.•3 views

CVE-2025-26496

7.3AI score0.17513EPSS

Exploits2References2

Positive Technologies•added 2025/08/22 12:0 a.m.•3 views

PT-2025-34490 · Salesforce · Tableau Desktop +1

Name of the Vulnerable Software and Affected Versions: Tableau Server and Tableau Desktop versions prior to 2025.1.3 Tableau Server and Tableau Desktop versions prior to 2024.2.12 Tableau Server and Tableau Desktop versions prior to 2023.3.19 Description: A 'Type Confusion' vulnerability exists i...

9.3CVSS10AI score0.17513EPSS

Exploits2References19

RedhatCVE•added 2025/05/23 7:35 a.m.•4 views

CVE-2024-13502

Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in Newtec/iDirect NTC2218, NTC2250, NTC2299 on Linux, PowerPC, ARM allows Local Code Inclusion.This issue affects NTC2218, NTC2250, NTC2299: from 1.0.1.1 through 2.2.6.19. The commitmulticast pa...

9.3CVSS6.8AI score0.00199EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 12:10 p.m.•4 views

CVE-2024-52496

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AbsolutePlugins Absolute Addons For Elementor absolute-addons allows Local Code Inclusion.This issue affects Absolute Addons For Elementor: from n/a through = 1.0.14...

7.5CVSS7.3AI score0.00956EPSS

Exploits0References1

NVD•added 2025/01/17 2:15 p.m.•8 views

CVE-2024-13502

9.3CVSS0.00199EPSS

Exploits0References2

CVE•added 2025/01/17 2:1 p.m.•52 views

CVE-2024-13502

CVE-2024-13502 affects Newtec/iDirect NTC2218, NTC2250, NTC2299 on Linux, PowerPC, ARM. The issue is an OS command injection caused by improper neutralization: the commit_multicast web interface page passes untrusted input to an eval in a bash script, enabling arbitrary shell commands (Local Code...

9.3CVSS7.2AI score0.00199EPSS

Exploits0References2

Cvelist•added 2025/01/17 2:1 p.m.•6 views

CVE-2024-13502 A command injection in the NTC2218, NTC2250, NTC2299 modems' web interfaces allows to exeucte arbitrary shell commands.

9.3CVSS0.00199EPSS

Exploits0References2

Positive Technologies•added 2025/01/17 12:0 a.m.•2 views

PT-2025-2192 · Newtec · Newtec/Idirect Ntc2299 +2

Name of the Vulnerable Software and Affected Versions: Newtec/iDirect NTC2218, NTC2250, NTC2299 versions 1.0.1.1 through 2.2.6.19 Description: The issue affects the commit multicast page in the modem's web administration interface, which improperly parses incoming data from the request before...

9.3CVSS6.8AI score0.00199EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by