Lucene search
K

3142 matches found

ATTACKERKB
ATTACKERKB
added 2026/04/08 10:30 p.m.4 views

CVE-2026-5812

A security flaw has been discovered in SourceCodester Pharmacy Product Management System 1.0. This affects an unknown part of the file add-sales.php of the component POST Parameter Handler. Performing a manipulation of the argument txtqty results in business logic errors. It is possible to initia...

5.5CVSS5.8AI score0.00241EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/08 10:30 p.m.3 views

CVE-2026-5812 SourceCodester Pharmacy Product Management System POST Parameter add-sales.php logic error

A security flaw has been discovered in SourceCodester Pharmacy Product Management System 1.0. This affects an unknown part of the file add-sales.php of the component POST Parameter Handler. Performing a manipulation of the argument txtqty results in business logic errors. It is possible to initia...

5.5CVSS5.8AI score0.00241EPSS
Exploits0References5
CVE
CVE
added 2026/04/08 10:30 p.m.14 views

CVE-2026-5812

CVE-2026-5812 – SourceCodester Pharmacy Product Management System 1.0 : A flaw in add-sales.php (POST Parameter Handler) allows manipulation of the txtqty parameter, triggering business-logic errors. Exploitation can be remote; exploit publicly released. No explicit patch/version details or vendo...

5.5CVSS5.6AI score0.00241EPSS
Exploits0References5
EUVD
EUVD
added 2026/04/07 6:30 a.m.7 views

EUVD-2026-19564

In Modem, there is a possible system crash due to a logic error. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID:...

6.5CVSS6.1AI score0.00309EPSS
Exploits0References2
NVD
NVD
added 2026/04/07 4:16 a.m.9 views

CVE-2026-20431

In Modem, there is a possible system crash due to a logic error. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID:...

6.5CVSS0.00309EPSS
Exploits0References1
CVE
CVE
added 2026/04/07 3:25 a.m.17 views

CVE-2026-20431

Summary: CVE-2026-20431 affects MediaTek-based Modem functionality where a logic error can cause a system crash, potentially enabling remote denial of service when a UE connects to a rogue base station. Exploitation reportedly requires no user interaction and can occur with adjacent access; no ad...

6.5CVSS6.1AI score0.00309EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/07 3:25 a.m.2 views

CVE-2026-20431

In Modem, there is a possible system crash due to a logic error. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID:...

6.1AI score0.00309EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/07 3:25 a.m.3 views

CVE-2026-20431

In Modem, there is a possible system crash due to a logic error. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID:...

6.1AI score0.00309EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/03/26 3:14 p.m.7 views

CVE-2026-0118

In oobconfig, there is a possible bypass of carrier restrictions due to a logic error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.4CVSS5.9AI score0.00085EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/22 1:2 p.m.3 views

CVE-2026-4547 mickasmt next-saas-stripe-starter Checkout generate-user-stripe.ts generateUserStripe logic error

A security vulnerability has been detected in mickasmt next-saas-stripe-starter 1.0.0. Affected is the function generateUserStripe of the file actions/generate-user-stripe.ts of the component Checkout Handler. The manipulation of the argument priceId leads to business logic errors. The attack may...

5.3CVSS5.4AI score0.00209EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/03/20 8:35 p.m.10 views

CRL Distribution Point Scope Check Logic Error in AWS-LC

Summary AWS-LC is an open-source, general-purpose cryptographic library. Impact A logic error in CRL distribution point matching in AWS-LC allows a revoked certificate to bypass revocation checks during certificate validation, when the application enables CRL checking and uses partitioned CRLs wi...

5.9AI score
Exploits0References5Affected Software2
ATTACKERKB
ATTACKERKB
added 2026/03/13 9:20 p.m.5 views

CVE-2026-32713

PX4 autopilot is a flight control solution for drones. Prior to 1.17.0-rc2, A logic error in the PX4 Autopilot MAVLink FTP session validation uses incorrect boolean logic && instead of ||, allowing BurstReadFile and WriteFile operations to proceed with invalid sessions or closed file descriptors...

4.3CVSS5.8AI score0.00387EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2026/03/10 9:32 p.m.5 views

EUVD-2026-10847

In oobconfig, there is a possible bypass of carrier restrictions due to a logic error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

5.9AI score0.00085EPSS
Exploits0References2
NVD
NVD
added 2026/03/10 9:16 p.m.5 views

CVE-2026-0118

In oobconfig, there is a possible bypass of carrier restrictions due to a logic error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.4CVSS0.00085EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/10 8:46 p.m.3 views

CVE-2026-0118

In oobconfig, there is a possible bypass of carrier restrictions due to a logic error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

5.9AI score0.00085EPSS
Exploits0References1
CVE
CVE
added 2026/03/10 8:46 p.m.12 views

CVE-2026-0118

Technical details about CVE-2026-0118 are not publicly provided in the supplied documents. Monitor for updates from the sources listed; the available descriptions indicate a local privilege escalation via oobconfig bypass but lack specifics.

8.4CVSS5.9AI score0.00085EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/10 12:0 a.m.5 views

PT-2026-24447

Name of the Vulnerable Software and Affected Versions oobconfig affected versions not specified Description A logic error in oobconfig may allow a bypass of carrier restrictions. Successful exploitation could lead to local escalation of privilege without requiring additional execution privileges ...

8.4CVSS5.7AI score0.00085EPSS
Exploits0References8
CNVD
CNVD
added 2026/03/09 12:0 a.m.2 views

Google Android suffers from unspecified vulnerability (CNVD-2026-14646)

Google Android is a Linux-based open source operating system from Google. A security vulnerability exists in Google Android, which originates from a logic error in the jumptopayload function of payload.rs, which can be exploited by an attacker to cause a local information disclosure...

5.5CVSS5.9AI score0.00094EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/07 1:43 a.m.5 views

CVE-2026-22723

Inappropriate user token revocation due to a logic error in the token revocation endpoint implementation in Cloudfoundry UAA v77.30.0 to v78.7.0 and in Cloudfoundry Deployment v48.7.0 to v54.10.0...

6.5CVSS5.8AI score0.00224EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/05 9:30 p.m.6 views

EUVD-2026-9877

Inappropriate user token revocation due to a logic error in the token revocation endpoint implementation in Cloudfoundry UAA v77.30.0 to v78.7.0 and in Cloudfoundry Deployment v48.7.0 to v54.10.0...

6.5CVSS5.9AI score0.00224EPSS
Exploits0References2
Rows per page
Query Builder