Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:19 p.m.11 views

CVE-2026-50206

Incoming VPN network profile settings fail to process special characters safely, enabling command injection via malicious config files...

8.5CVSS5.5AI score0.0072EPSS
Exploits0References1
CVE
CVE
added 2026/06/04 6:46 a.m.30 views

CVE-2026-50206

CVE-2026-50206 affects VPN network profile handling where special characters in config files are not safely processed, enabling command injection. Root cause: improper sanitization or parsing of config entries leads to execution of injected commands when reading malicious config files. Documented...

8.5CVSS5.8AI score0.0072EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/04 6:46 a.m.10 views

CVE-2026-50206 VPN Command Injection Vulnerability

Incoming VPN network profile settings fail to process special characters safely, enabling command injection via malicious config files...

8.5CVSS5.8AI score0.0072EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/04/16 1:22 p.m.6 views

CVE-2025-61260

A vulnerability was identified in OpenAI Codex CLI v0.23.0 and before that enables code execution through malicious MCP Model Context Protocol configuration files. The attack is triggered when a user runs the codex command inside a malicious or compromised repository. Codex automatically loads...

9.8CVSS6.5AI score0.06583EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-24937

Malware in sbrugna...

8.8CVSS8.6AI score0.0087EPSS
Exploits0References2
Snyk
Snyk
added 2025/06/03 5:43 p.m.4 views

Uncontrolled Search Path Element

Overview Affected versions of this package are vulnerable to Uncontrolled Search Path Element due to the shared %PROGRAMDATA% directory being searched for configuration files. An attacker can introduce unintended behavior and affect other users by creating malicious configuration files in the...

7.3CVSS6.9AI score0.00154EPSS
Exploits0References3
OSV
OSV
added 2021/10/22 2:15 p.m.6 views

CVE-2021-38485

The affected product is vulnerable to improper input validation in the restore file. This enables an attacker to provide malicious config files to replace any file on disk...

8.8CVSS5.8AI score0.0087EPSS
Exploits0References1
NVD
NVD
added 2021/10/22 2:15 p.m.15 views

CVE-2021-38485

The affected product is vulnerable to improper input validation in the restore file. This enables an attacker to provide malicious config files to replace any file on disk...

8.8CVSS0.0087EPSS
Exploits0References1
Prion
Prion
added 2021/10/22 2:15 p.m.19 views

Input validation

The affected product is vulnerable to improper input validation in the restore file. This enables an attacker to provide malicious config files to replace any file on disk...

6.5CVSS8.6AI score0.0087EPSS
Exploits0References1Affected Software3
Cvelist
Cvelist
added 2021/10/22 1:23 p.m.26 views

CVE-2021-38485 Emerson WirelessHART Gateway

The affected product is vulnerable to improper input validation in the restore file. This enables an attacker to provide malicious config files to replace any file on disk...

8CVSS8.8AI score0.0087EPSS
Exploits0References1
Rows per page
Query Builder