Lucene search
K

1315 matches found

cve
cve
added 2026/06/03 12:0 a.m.16 views

CVE-2026-36612

CVE-2026-36612 affects Mercusys AC12G (EU) V1 with firmware AC12G(EU)_V1_200909. The issue: WPS 2.0 is enabled by default and a weak lockout policy allows 60-second lockouts after 10 attempts, per connected records. CVSSv3.1 base score 6.4 (MEDIUM) with attack vector: Adjacent, attack complexity:...

6.4CVSS5.8AI score0.00139EPSS
Exploits0References1
euvd
euvd
added 2026/06/03 12:0 a.m.14 views

EUVD-2026-34151

Mercusys AC12G EU V1 with firmware AC12GEUV1200909 enables WPS 2.0 by default with a weak lockout policy 60-second lockout after 10 attempts...

5.8AI score0.00139EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/06/03 12:0 a.m.22 views

PT-2026-46000

Mercusys AC12G EU V1 with firmware AC12GEU V1 200909 enables WPS 2.0 by default with a weak lockout policy 60-second lockout after 10 attempts...

5.8AI score0.00139EPSS
Exploits0References2
nvd
nvd
added 2026/06/02 4:16 p.m.65 views

CVE-2026-44367

Klaw is a self-service Apache Kafka Topic Management/Governance tool/portal. Prior to version 2.10.4, a vulnerability exists in the user registration and login mechanisms due to inconsistent handling of username case sensitivity, leading to a targeted Denial of Service DoS and complete account...

2.7CVSS0.00236EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2026/06/02 3:29 p.m.13 views

CVE-2026-44367 Klaw: user lockout due to case sensitivity inconsistency

Klaw is a self-service Apache Kafka Topic Management/Governance tool/portal. Prior to version 2.10.4, a vulnerability exists in the user registration and login mechanisms due to inconsistent handling of username case sensitivity, leading to a targeted Denial of Service DoS and complete account...

2.7CVSS5.7AI score0.00236EPSS
Exploits0References2
euvd
euvd
added 2026/06/02 3:29 p.m.12 views

EUVD-2026-33961

Klaw is a self-service Apache Kafka Topic Management/Governance tool/portal. Prior to version 2.10.4, a vulnerability exists in the user registration and login mechanisms due to inconsistent handling of username case sensitivity, leading to a targeted Denial of Service DoS and complete account...

2.7CVSS5.7AI score0.00236EPSS
Exploits0References2
cvelist
cvelist
added 2026/06/02 3:29 p.m.47 views

CVE-2026-44367 Klaw: user lockout due to case sensitivity inconsistency

Klaw is a self-service Apache Kafka Topic Management/Governance tool/portal. Prior to version 2.10.4, a vulnerability exists in the user registration and login mechanisms due to inconsistent handling of username case sensitivity, leading to a targeted Denial of Service DoS and complete account...

2.7CVSS0.00236EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/06/02 3:29 p.m.13 views

CVE-2026-44367

Klaw is a self-service Apache Kafka Topic Management/Governance tool/portal. Prior to version 2.10.4, a vulnerability exists in the user registration and login mechanisms due to inconsistent handling of username case sensitivity, leading to a targeted Denial of Service DoS and complete account...

2.7CVSS5.7AI score0.00236EPSS
Exploits0References3Affected Software1
cve
cve
added 2026/06/02 3:29 p.m.18 views

CVE-2026-44367

Klaw (self-service Apache Kafka Topic Management/Governance tool) is affected prior to v2.10.4 by inconsistent case-sensitivity handling in user registration and login, enabling targeted DoS and complete account lockout. Root cause: username case handling leads to lockout conditions. Impact: Deni...

2.7CVSS5.7AI score0.00236EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/06/02 12:0 a.m.24 views

PT-2026-45781

Klaw is a self-service Apache Kafka Topic Management/Governance tool/portal. Prior to version 2.10.4, a vulnerability exists in the user registration and login mechanisms due to inconsistent handling of username case sensitivity, leading to a targeted Denial of Service DoS and complete account...

2.7CVSS5.7AI score0.00236EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2026/06/01 12:0 a.m.17 views

PT-2026-45248

A vulnerability was detected in unitedbyai droidclaw up to 0.5.3. The affected element is an unknown function of the file server/src/routes/pairing.ts of the component claim Endpoint. The manipulation results in improper restriction of excessive authentication attempts. The attack may be launched...

6.3CVSS5.2AI score0.00406EPSS
Exploits0References8
github
github
added 2026/05/29 10:57 p.m.28 views

praisonai-platform: Missing authorization on member removal enables full workspace takeover by any user regardless of role

Summary Type: Authorization bypass enabling owner lockout. The DELETE /workspaces/workspaceid/members/userid endpoint is gated only by requireworkspacememberworkspaceid default minrole="member". Any member can remove any other member, including the workspace owner, using a single DELETE. There is...

5.8AI score0.00041EPSS
Exploits0References2Affected Software1
nvd
nvd
added 2026/05/29 1:16 p.m.23 views

CVE-2026-49324

Uncontrolled resource consumption in the Wireless Control Module WCM of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent-network attacker with write access to the in-vehicle network to permanently immobilize the motorcycle. The WCM enforces a brute-force lockout on the...

4.6CVSS0.00174EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/05/29 12:32 p.m.10 views

CVE-2026-49324

Uncontrolled resource consumption in the Wireless Control Module WCM of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent-network attacker with write access to the in-vehicle network to permanently immobilize the motorcycle. The WCM enforces a brute-force lockout on the...

4.6CVSS5.8AI score0.00174EPSS
Exploits0References3Affected Software1
vulnrichment
vulnrichment
added 2026/05/29 12:32 p.m.12 views

CVE-2026-49324 Indian Scout Bobber 2025 WCM brute-force

Uncontrolled resource consumption in the Wireless Control Module WCM of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent-network attacker with write access to the in-vehicle network to permanently immobilize the motorcycle. The WCM enforces a brute-force lockout on the...

4.6CVSS5.8AI score0.00174EPSS
Exploits0References1
euvd
euvd
added 2026/05/29 12:32 p.m.14 views

EUVD-2026-33289

Uncontrolled resource consumption in the Wireless Control Module WCM of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent-network attacker with write access to the in-vehicle network to permanently immobilize the motorcycle. The WCM enforces a brute-force lockout on the...

4.6CVSS5.8AI score0.00174EPSS
Exploits0References1
cve
cve
added 2026/05/29 12:32 p.m.24 views

CVE-2026-49324

The CVE-2026-49324 affects the Wireless Control Module (WCM) in the Indian Motorcycle Scout Bobber + Tech 2025 model year. The root cause is an exploitable brute‑force lockout that is reachable via any unauthenticated in‑vehicle network message, with no session binding and no reset on power cycle...

4.6CVSS5.8AI score0.00174EPSS
Exploits0References1
cvelist
cvelist
added 2026/05/29 12:32 p.m.41 views

CVE-2026-49324 Indian Scout Bobber 2025 WCM brute-force

Uncontrolled resource consumption in the Wireless Control Module WCM of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent-network attacker with write access to the in-vehicle network to permanently immobilize the motorcycle. The WCM enforces a brute-force lockout on the...

4.6CVSS0.00174EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/05/29 12:0 a.m.15 views

PT-2026-44830

Name of the Vulnerable Software and Affected Versions Indian Motorcycle Scout Bobber + Tech 2025 model year Description Uncontrolled resource consumption in the Wireless Control Module WCM allows an adjacent-network attacker with write access to the in-vehicle network to permanently immobilize th...

4.6CVSS5.8AI score0.00174EPSS
Exploits0References5
githubexploit
githubexploit
added 2026/05/28 7:7 p.m.68 views

LTD_Communication

LTD Communication — Cybersecurity Course Project Vulnerable...

6AI score
Exploits0
Rows per page
Query Builder