CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

24053 matches found

CVE-2026-50266

In OpenStack Neutron before 28.0.1, a project manager can create or update a port on a shared network owned by another project and set deviceowner to a value that has "network:" at the beginning "network:dhcp" for example. The default port RBAC policies incorrectly included PROJECTMANAGER without...

2.2CVSS

Exploits0References6

RedHat Linux•added 7 hours ago•1 views

kernel: netfilter: ip6t_eui64: reject invalid MAC header for all packets

A flaw was found in the Linux kernel's netfilter component. This vulnerability occurs because the eui64mt6 function, which processes IPv6 packets, does not properly validate the MAC header for all packets. Specifically, packets with a zero fragment offset could bypass an existing guard, allowing...

9.4CVSS5.8AI score0.00076EPSS

Exploits0References5

OSV•added 8 hours ago•2 views

RLSA-2026:21557 Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: can: j1939: j1939sessionnew: fix skb reference counting CVE-2024-56645 kernel: ima: don't clear IMADIGSIG flag when setting or removing non-IMA xattr CVE-2025-68183 kernel: mm: thp: deny...

7.5CVSS7.1AI score0.00076EPSS

Exploits0References19

RedHat Linux•added 10 hours ago•2 views

kernel: netfilter: ip6t_eui64: reject invalid MAC header for all packets

9.4CVSS5.8AI score0.00076EPSS

Exploits0References5

SUSE CVE•added 18 hours ago•3 views

SUSE CVE-2026-28904

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5, iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Processing maliciously crafted web content may lead to an unexpected process crash...

7.5CVSS5.8AI score0.00049EPSS

Exploits0References3

NVD•added yesterday•6 views

CVE-2025-14774

Incorrect Authorization vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24...

7.4CVSS0.00028EPSS

Exploits0References1

NVD•added yesterday•6 views

CVE-2025-14772

Authorization bypass through User-Controlled key vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24...

8.8CVSS0.00039EPSS

Exploits0References1

NVD•added yesterday•5 views

CVE-2025-14771

Files or directories accessible to external parties vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24...

9.9CVSS0.00042EPSS

Exploits0References1

Cvelist•added yesterday•27 views

CVE-2025-14774 Communication analysis between the Card Reader and TP2CardReaderService daemon

Incorrect Authorization vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24...

7.4CVSS0.00028EPSS

Exploits0References1

Vulnrichment•added yesterday•5 views

CVE-2025-14774 Communication analysis between the Card Reader and TP2CardReaderService daemon

Incorrect Authorization vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24...

7.4CVSS5.8AI score0.00028EPSS

Exploits0References1

ATTACKERKB•added yesterday•3 views

CVE-2025-14774

Incorrect Authorization vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24...

7.4CVSS5.8AI score0.00028EPSS

Exploits0References2Affected Software1

EUVD•added yesterday•6 views

EUVD-2025-210047

Incorrect Authorization vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24...

7.4CVSS5.8AI score0.00028EPSS

Exploits0References1

ATTACKERKB•added yesterday•4 views

CVE-2025-14773

Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24...

8CVSS5.8AI score0.00041EPSS

Exploits0References2Affected Software1

EUVD•added yesterday•4 views

EUVD-2025-210046

Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24...

8CVSS5.8AI score0.00041EPSS

Exploits0References1

CVE•added yesterday•22 views

CVE-2025-14773

CVE-2025-14773 is a stored cross-site scripting (XSS) vulnerability in ABB T-MAC Plus web application, affecting T-MAC Plus 4.0-24. The issue stems from improper neutralization of input during web page generation. CVSS metrics from ABB indicate a HIGH severity (CVSS v4.0 base 7.2; v3.1 base 8.0),...

8CVSS5.8AI score0.00041EPSS

Exploits0References1

Vulnrichment•added yesterday•3 views

CVE-2025-14773 Stored Cross-Site Scripting in ABB T-MAC Plus web application

Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24...

8CVSS5.8AI score0.00041EPSS

Exploits0References1

Cvelist•added yesterday•27 views

CVE-2025-14773 Stored Cross-Site Scripting in ABB T-MAC Plus web application

Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24...

8CVSS0.00041EPSS

Exploits0References1

CVE•added yesterday•5 views

CVE-2025-14772

CVE-2025-14772 concerns ABB T-MAC Plus, affected version 4.0-24. The issue is described as an authorization bypass via a User-Controlled key, indicating a broken access control vulnerability in the web application. Connected documents (NVD and CVE records) corroborate the same title and descripti...

8.8CVSS5.8AI score0.00039EPSS

Exploits0References1

Cvelist•added yesterday•27 views

CVE-2025-14772 Broken Access Control in ABB T-MAC Plus web application

Authorization bypass through User-Controlled key vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24...

8.8CVSS0.00039EPSS

Exploits0References1

ATTACKERKB•added yesterday•3 views

CVE-2025-14772

Authorization bypass through User-Controlled key vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24...

8.8CVSS5.8AI score0.00039EPSS

Exploits0References2Affected Software1