CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2026/06/05 5:40 a.m.•5 views

BIT-AIRFLOW-2026-46764 Apache Airflow: Event Log detail endpoint bypasses DAG-scoped event log permission filter

The Event Log detail endpoint GET /api/v2/eventLogs/eventlogid in Apache Airflow fetched audit-log rows directly by numeric ID after only the generic Audit Log permission check, while the collection endpoint GET /api/v2/eventLogs applied per-Dag scoping. An authenticated UI/API user with audit-lo...

4.3CVSS5.5AI score0.00352EPSS

RedhatCVE•added 2026/06/02 10:3 p.m.•10 views

CVE-2026-46764

4.3CVSS5.8AI score0.00352EPSS

NVD•added 2026/06/01 9:16 a.m.•14 views

CVE-2026-46764

4.3CVSS0.00352EPSS

Exploits0References3

ATTACKERKB•added 2026/06/01 7:47 a.m.•8 views

CVE-2026-45426

Exploitation requires the attacker to already be an authenticated Airflow worker holding a valid Log-server JWT issued for at least one Dag. Apache Airflow's Log server authorized JWT tokens against Dag IDs by applying Python's str.lstrip to the requested path segment when verifying the JWT's sub...

5.8AI score0.00344EPSS

Exploits0References3Affected Software1

Cvelist•added 2026/06/01 7:47 a.m.•31 views

CVE-2026-45426 Apache Airflow: Log server JWT authorization bypass via Python lstrip() character stripping allows cross-Dag log access

0.00344EPSS

ATTACKERKB•added 2026/06/01 7:45 a.m.•7 views

CVE-2026-46764

5.8AI score0.00352EPSS

Exploits0References3

CNNVD•added 2026/06/01 12:0 a.m.•5 views

Apache Airflow 安全漏洞

Apache Airflow is an open-source platform developed by the Apache Foundation in the United States. It allows for the creation, management, and monitoring of workflows. Versions of Apache Airflow prior to 3.2.2 contained security vulnerabilities. These vulnerabilities stemmed from a lack of checks...

4.3CVSS5.3AI score0.00352EPSS

Snyk•added 2026/05/28 6:25 p.m.•9 views

Insertion of Sensitive Information into Log File

Overview Affected versions of this package are vulnerable to Insertion of Sensitive Information into Log File via the logging of the entire unmarshaled configuration map at INFO level to /var/log/calico/cni/cni.log during each CNI ADD and DEL invocation. An attacker can obtain sensitive...

7.7CVSS5.8AI score0.00323EPSS

Cvelist•added 2026/05/28 3:47 p.m.•27 views

CVE-2026-41184 ServiceAccount token disclosure via install-cni container logs

In Calico, the install-cni init container logs the rendered CNI configuration to standard output. When the configuration template uses the SERVICEACCOUNTTOKEN placeholder Canal/Flannel-Calico deployments, the installer substitutes the live Kubernetes ServiceAccount bearer token before logging,...

6CVSS0.00504EPSS

EUVD•added 2026/05/23 6:30 p.m.•10 views

EUVD-2018-21869

userSpice 4.3.24 contains a cross-site scripting vulnerability that allows attackers to inject malicious scripts through the X-Forwarded-For HTTP header. Attackers can send crafted requests to the backup.php endpoint with XSS payloads in the X-Forwarded-For header that execute when administrators...

6.1CVSS5.7AI score0.00203EPSS

ATTACKERKB•added 2026/05/22 4:0 p.m.•4 views

CVE-2026-28444

Typebot is a chatbot builder tool. In versions 3.15.2 and prior, the getResultLogs API endpoint authorizes the caller against the provided typebotId but fetches logs solely by resultId without verifying that the result belongs to the authorized typebot, leading to IDOR. An authenticated attacker...

6.5CVSS5.9AI score0.00405EPSS

Exploits0References4Affected Software1

CNNVD•added 2026/05/14 12:0 a.m.•9 views

Kubetail 安全漏洞

Kubetail is an open-source Kubernetes real-time log monitoring dashboard developed by Kubetail. Versions of Kubetail prior to 0.14.0 contained security vulnerabilities. These vulnerabilities stemmed from insufficient validation of the Origin header at WebSocket endpoints, which could lead to...

6.5CVSS5.7AI score0.0017EPSS

NVD•added 2026/05/12 6:16 p.m.•7 views

CVE-2026-25690

An improper neutralization of argument delimiters in a command 'argument injection' vulnerability in Fortinet FortiDeceptor 6.0.0 through 6.0.2, FortiDeceptor 5.3.0 through 5.3.3, FortiDeceptor 5.2.0 through 5.2.1, FortiDeceptor 5.1 all versions, FortiDeceptor 5.0 all versions may allow an...

6.5CVSS0.00241EPSS

Veracode•added 2026/04/30 9:40 a.m.•8 views

Sensitive Information Disclosure

Apache Kafka is vulnerable to Sensitive Information Disclosure. The vulnerability is due to logging of sensitive request and response data at DEBUG level in the NetworkClient component, which allows an attacker with log access to obtain sensitive information...

5.3CVSS5.2AI score0.00535EPSS

Exploits0References3Affected Software1

Positive Technologies•added 2026/04/25 12:0 a.m.•4 views

PT-2026-37190

Name of the Vulnerable Software and Affected Versions n8n-mcp versions prior to 2.47.13 Description When running in HTTP transport mode, authenticated tools/call requests have their full arguments and JSON-RPC parameters written to server logs by the request dispatcher and related code paths befo...

4.3CVSS5.9AI score0.0025EPSS

Exploits0References12

CNNVD•added 2026/04/24 12:0 a.m.•6 views

Rocket.Chat 访问控制错误漏洞

Rocket.Chat is a chat software developed by the Rocket.Chat company. Vulnerabilities in access control existed in versions prior to 8.4.0, 8.3.2, 8.2.2, 8.1.3, 8.0.4, 7.13.6, 7.12.7, 7.11.7, and 7.10.10. These vulnerabilities stem from spelling errors in the permission checks for the /api/apps/lo...

4.3CVSS5.8AI score0.00182EPSS

RedhatCVE•added 2026/04/10 7:7 a.m.•6 views

CVE-2026-34487

A flaw was found in Apache Tomcat. The cloud membership for clustering component was vulnerable to the insertion of sensitive information into log files. This vulnerability could lead to the exposure of the Kubernetes bearer token, which is a credential used for authentication within a Kubernetes...

7.5CVSS5.8AI score0.00447EPSS