Lucene search
+L

3144 matches found

RedhatCVE
RedhatCVE
added 2026/03/07 1:43 a.m.5 views

CVE-2026-22723

Inappropriate user token revocation due to a logic error in the token revocation endpoint implementation in Cloudfoundry UAA v77.30.0 to v78.7.0 and in Cloudfoundry Deployment v48.7.0 to v54.10.0...

6.5CVSS5.8AI score0.00224EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/05 9:30 p.m.7 views

EUVD-2026-9877

Inappropriate user token revocation due to a logic error in the token revocation endpoint implementation in Cloudfoundry UAA v77.30.0 to v78.7.0 and in Cloudfoundry Deployment v48.7.0 to v54.10.0...

6.5CVSS5.9AI score0.00224EPSS
Exploits0References2
NVD
NVD
added 2026/03/05 9:16 p.m.4 views

CVE-2026-22723

Inappropriate user token revocation due to a logic error in the token revocation endpoint implementation in Cloudfoundry UAA v77.30.0 to v78.7.0 and in Cloudfoundry Deployment v48.7.0 to v54.10.0...

6.5CVSS0.00224EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/05 8:40 p.m.3 views

CVE-2026-22723

Inappropriate user token revocation due to a logic error in the token revocation endpoint implementation in Cloudfoundry UAA v77.30.0 to v78.7.0 and in Cloudfoundry Deployment v48.7.0 to v54.10.0...

6.5CVSS5.9AI score0.00224EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/05 8:40 p.m.2 views

CVE-2026-22723 UAA User Token Revocation logic error

Inappropriate user token revocation due to a logic error in the token revocation endpoint implementation in Cloudfoundry UAA v77.30.0 to v78.7.0 and in Cloudfoundry Deployment v48.7.0 to v54.10.0...

6.5CVSS5.8AI score0.00224EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/05 8:40 p.m.36 views

CVE-2026-22723 UAA User Token Revocation logic error

Inappropriate user token revocation due to a logic error in the token revocation endpoint implementation in Cloudfoundry UAA v77.30.0 to v78.7.0 and in Cloudfoundry Deployment v48.7.0 to v54.10.0...

6.5CVSS0.00224EPSS
Exploits0References1
OSV
OSV
added 2026/03/05 8:40 p.m.5 views

CVE-2026-22723 UAA User Token Revocation logic error

Inappropriate user token revocation due to a logic error in the token revocation endpoint implementation in Cloudfoundry UAA v77.30.0 to v78.7.0 and in Cloudfoundry Deployment v48.7.0 to v54.10.0...

6.5CVSS5.9AI score0.00224EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/03/04 1:57 a.m.6 views

CVE-2025-48642

In jumptopayload of payload.rs, there is a possible information disclosure due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS6.1AI score0.00094EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/04 1:57 a.m.10 views

CVE-2025-48602

In exitKeyguardAndFinishSurfaceBehindRemoteAnimation of KeyguardViewMediator.java, there is a possible lockscreen bypass due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitati...

8.4CVSS6.1AI score0.0011EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/04 1:57 a.m.7 views

CVE-2025-48654

In onStart of CompanionDeviceManagerService.java, there is a possible confused deputy due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS6.1AI score0.00098EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/04 1:57 a.m.7 views

CVE-2025-48653

In loadDataAndPostValue of multiple files, there is a possible way to obscure permission usage due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.4CVSS6.1AI score0.00098EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/04 1:57 a.m.8 views

CVE-2026-0032

In multiple functions of memprotect.c, there is a possible out-of-bounds write due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS6.1AI score0.00093EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/04 1:57 a.m.8 views

CVE-2026-0038

In multiple functions of memprotect.c, there is a possible way to execute arbitrary code due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.4CVSS6.5AI score0.00233EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/04 1:57 a.m.7 views

CVE-2026-0026

In removePermission of PermissionManagerServiceImpl.java, there is a possible way to override any system permission due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation...

7.8CVSS6.1AI score0.00096EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/04 12:0 a.m.13 views

PT-2026-23010

A vulnerability in the Snort 2 and Snort 3 deep packet inspection of Cisco Secure Firewall Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass configured Snort rules and allow traffic onto the network that should have been dropped. This vulnerability is due to a...

5.8CVSS6AI score0.00247EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/03/03 1:37 p.m.4 views

CVE-2026-20435

In preloader, there is a possible read of device unique identifiers due to a logic error. This could lead to local information disclosure, if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID:...

4.6CVSS6.1AI score0.00115EPSS
Exploits0References1
NVD
NVD
added 2026/03/02 7:16 p.m.11 views

CVE-2026-0029

In pkvminitvm of pkvm.c, there is a possible memory corruption due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.4CVSS0.00107EPSS
Exploits0References4
NVD
NVD
added 2026/03/02 7:16 p.m.8 views

CVE-2026-0037

In multiple functions of ffa.c, there is a possible memory corruption due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.4CVSS0.00153EPSS
Exploits0References2
NVD
NVD
added 2026/03/02 7:16 p.m.7 views

CVE-2026-0038

In multiple functions of memprotect.c, there is a possible way to execute arbitrary code due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.4CVSS0.00233EPSS
Exploits0References8
NVD
NVD
added 2026/03/02 7:16 p.m.8 views

CVE-2026-0026

In removePermission of PermissionManagerServiceImpl.java, there is a possible way to override any system permission due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation...

7.8CVSS0.00096EPSS
Exploits0References1
Rows per page
Query Builder