Lucene search
+L

3966 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: ARM: fixed the cacheflush issue with PAN. It appears that the cacheflush syscall became corrupted when the LPAE PAN mechanism was implemented. User access was not enabled during the cache maintenance process, which caused the iss...

5.5CVSS5.3AI score0.00176EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.1 views

Astra Linux – Vulnerability in PostgresSQL 11

A flaw was discovered in PostgreSQL. There is an issue where insufficient efforts are made to ensure safe operation when a privileged user is managing objects of another user. The Autovacuum, REINDEX, CREATE INDEX, REFRESH MATERIALIZED VIEW, CLUSTER, and pgamcheck commands activate relevant...

8.8CVSS7.2AI score0.12403EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.11 views

Astra Linux – Vulnerability in Zabbix

Zabbix Frontend offers a feature that enables administrators to manage the installation and ensure that only certain IP addresses can access it. This way, no user will be able to access the Zabbix Frontend during maintenance, and sensitive data will be protected from being disclosed. An attacker...

9.8CVSS8.2AI score0.01207EPSS
Exploits1References2
HackRead
HackRead
added 2026/05/19 4:37 p.m.12 views

How Parts Inventory Management Software Fixes Inventory Challenges

Why do maintenance teams struggle? Is it because they lack skills? Or do they need more advanced resources?…...

5.8AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/05/18 6:57 p.m.16 views

CVE-2026-23926

A flaw was found in Zabbix. An authenticated administrator can inject a malicious script into a maintenance period. When another user views the tooltip for this maintenance period in the Host navigator widget, the script executes. This Cross-Site Scripting XSS vulnerability allows the attacker to...

7.3CVSS5.8AI score0.00285EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/18 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-23926

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An authenticated non-super administrator can create a maintenance period with a JavaScript payload that is executed by any user that opens tooltip for that...

7.3CVSS7.2AI score0.00285EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/15 12:0 a.m.7 views

Zabbix 7.0.x < 7.0.24 / 7.4.x < 7.4.8 XSS (ZBX-27758)

The version of Zabbix Server installed on the remote host is prior to 7.0.24, 7.4.8. It is, therefore, affected by a stored cross-site scripting XSS vulnerability. An authenticated non-super administrator can create a maintenance period with a JavaScript payload that is executed by any user that...

7.3CVSS5.7AI score0.00285EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/14 12:0 a.m.12 views

GitLab 安全漏洞

GitLab is an end-to-end software development platform provided by the American company GitLab. It includes built-in features such as version control, issue tracking, code review, and CI/CD Continuous Integration and Delivery. Security vulnerabilities exist in versions of GitLab EE from 16.10 to...

2.7CVSS5.9AI score0.00219EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/13 6:30 p.m.14 views

EUVD-2026-29907

Improper input validation in Routines prior to SMR May-2026 Release 1 allows physical attackers to launch privileged activity...

6.8CVSS5.8AI score0.00211EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/13 6:30 p.m.9 views

EUVD-2026-29903

Incorrect privilege assignment in LocationManager prior to SMR May-2026 Release 1 allows local attackers to access sensitive information...

5.5CVSS5.8AI score0.00093EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/13 12:0 a.m.18 views

Garmin WDU 安全漏洞

Garmin WDU is a wireless data unit developed by Garmin Corporation, designed for data updates and maintenance of aviation electronic devices. Versions 1.1.6 and 2.5.0 of Garmin WDU contain security vulnerabilities. These vulnerabilities stem from the ability to allow symbolic link attacks, which...

7.5CVSS5.8AI score0.00387EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/12 3:31 a.m.16 views

EUVD-2026-29360

Due to missing authorization check in SAP S/4HANA Condition Maintenance, an authenticated attacker could gain unauthorized access to view and modify condition table records, resulting in low impact on the confidentiality and integrity of the data. Additionally, this vulnerability may prevent the...

6.3CVSS5.8AI score0.00216EPSS
Exploits0References3
NVD
NVD
added 2026/05/12 3:16 a.m.16 views

CVE-2026-40133

Due to missing authorization check in SAP S/4HANA Condition Maintenance, an authenticated attacker could gain unauthorized access to view and modify condition table records, resulting in low impact on the confidentiality and integrity of the data. Additionally, this vulnerability may prevent the...

6.3CVSS0.00216EPSS
Exploits0References2
CVE
CVE
added 2026/05/12 2:21 a.m.19 views

CVE-2026-40133

SAP S/4HANA Condition Maintenance is affected by a missing authorization check, enabling an authenticated attacker to view and modify condition table records. The impact is described as low for confidentiality, integrity, and availability. The CVE entries (CVE-2026-40133) reference SAP S/4HANA Co...

6.3CVSS5.8AI score0.00216EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/12 2:21 a.m.47 views

CVE-2026-40133 Missing Authorization check in SAP S/4HANA Condition Maintenance

Due to missing authorization check in SAP S/4HANA Condition Maintenance, an authenticated attacker could gain unauthorized access to view and modify condition table records, resulting in low impact on the confidentiality and integrity of the data. Additionally, this vulnerability may prevent the...

6.3CVSS0.00216EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/12 2:21 a.m.15 views

CVE-2026-40133

Due to missing authorization check in SAP S/4HANA Condition Maintenance, an authenticated attacker could gain unauthorized access to view and modify condition table records, resulting in low impact on the confidentiality and integrity of the data. Additionally, this vulnerability may prevent the...

6.3CVSS5.8AI score0.00216EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/12 2:21 a.m.13 views

CVE-2026-40133 Missing Authorization check in SAP S/4HANA Condition Maintenance

Due to missing authorization check in SAP S/4HANA Condition Maintenance, an authenticated attacker could gain unauthorized access to view and modify condition table records, resulting in low impact on the confidentiality and integrity of the data. Additionally, this vulnerability may prevent the...

6.3CVSS5.8AI score0.00216EPSS
Exploits0References2
Packet Storm News
Packet Storm News
added 2026/05/12 12:0 a.m.12 views

From Controlled to the Wild: Evaluation of Pentesting Agents for the Real-World

AI pentesting agents are increasingly credible as offensive security systems, but current benchmarks still provide limited guidance on which will perform best in real-world targets. Existing evaluation protocols assess and optimize for predefined goals such as capture-the-flag, remote code...

6.1AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/12 12:0 a.m.17 views

PT-2026-39926

Due to missing authorization check in SAP S/4HANA Condition Maintenance, an authenticated attacker could gain unauthorized access to view and modify condition table records, resulting in low impact on the confidentiality and integrity of the data. Additionally, this vulnerability may prevent the...

6.3CVSS5.8AI score0.00216EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.14 views

SAP S/4HANA Condition Maintenance 安全漏洞

SAP S/4HANA Condition Maintenance is a conditional maintenance function module developed by SAP, a German company, dedicated to enterprise sales, procurement, and pricing rule management. There is a security vulnerability in SAP S/4HANA Condition Maintenance. This vulnerability stems from the lac...

6.3CVSS5.8AI score0.00216EPSS
Exploits0References1
Rows per page
Query Builder