Lucene search
K

50 matches found

Cvelist
Cvelist
added 2026/06/18 1:47 p.m.15 views

CVE-2026-42489 domctl lock open to abuse

This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. To create and manage guests, domctl operations are used by the control domain, a possible Xenstore domain, or by a domain controlling a particular guest. Some of these...

0.00078EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/08 12:0 a.m.9 views

VMware Cloud Foundation Operations 安全漏洞

VMware Cloud Foundation Operations is a private cloud operations management platform provided by the American company VMware. There is a security vulnerability in VMware Cloud Foundation Operations. This vulnerability stems from multiple storage-based cross-site scripting vulnerabilities, which...

8CVSS5.1AI score0.00399EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/04 12:0 a.m.8 views

Acer M6E 安全漏洞

The Acer M6E is a portable 5G mobile hotspot device from Acer, a company based in Taiwan, China. The Acer M6E has a security vulnerability, which stems from public access rights that are not checked by the core Broadcast Receiver. This vulnerability may allow unauthorized local software component...

8.5CVSS5.4AI score0.00098EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/15 12:0 a.m.10 views

Nozomi Networks CMC和Nozomi Networks Guardian 安全漏洞

Nozomi Networks CMC and Nozomi Networks Guardian are both products of Nozomi Networks, a company based in the United States. Nozomi Networks CMC is a network management platform. Nozomi Networks Guardian is a security software. Both Nozomi Networks CMC and Nozomi Networks Guardian have security...

8.1CVSS5.8AI score0.00325EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/31 2:53 p.m.2 views

CVE-2026-4818

In Search Guard FLX versions from 3.0.0 up to 4.0.1, there exists an issue which allows users without the necessary privileges to execute some management operations against data streams...

6.8CVSS5.9AI score0.00189EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/03/31 2:53 p.m.22 views

CVE-2026-4818 Some management operations on data streams are not properly restricted when user does not have the necessary privileges

In Search Guard FLX versions from 3.0.0 up to 4.0.1, there exists an issue which allows users without the necessary privileges to execute some management operations against data streams...

6.8CVSS0.00189EPSS
Exploits0References2
Hacker One
Hacker One
added 2026/03/22 4:50 a.m.11 views

AWS VDP: Encryption context keys and values logged at INFO level

Component: cmd/server/main.go:101-106 Affected Version: aws-encryption-provider @ 4341c70 all versions Found by: Source audit TLP: TLP:Amber --- Summary The server startup code logs all encryption context key-value pairs at INFO level. Encryption context is metadata associated with KMS operations...

5.9AI score
Exploits0
CNNVD
CNNVD
added 2026/02/25 12:0 a.m.7 views

VMware Aria Operations 安全漏洞

VMware Aria Operations is a unified, AI-driven automated IT operations management platform provided by the American company VMware. It is suitable for private cloud, hybrid cloud, and multi-cloud environments. There is a security vulnerability in VMware Aria Operations, which stems from a...

9CVSS7.3AI score0.00411EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/06 12:0 a.m.10 views

Keylime 安全漏洞

Keylime is an open-source scalable trust system developed using TPM technology. Versions of Keylime 7.12.0 and earlier contain security vulnerabilities. These vulnerabilities stem from the lack of enforcement of client-side TLS authentication, which may allow unverified clients to execute...

9.8CVSS5.9AI score0.0575EPSS
Exploits0References2
OSV
OSV
added 2026/01/14 7:15 p.m.20 views

GO-2025-4251 Ollama has missing authentication enabling attackers to perform model management operations in github.com/ollama/ollama

Ollama has missing authentication enabling attackers to perform model management operations in github.com/ollama/ollama...

9.8CVSS7AI score0.00632EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2025/11/18 1:1 a.m.4 views

net: phy: allow MDIO bus PM ops to start/stop state machine for phylink-controlled PHY

...

5.5CVSS8.8AI score0.00159EPSS
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-13775

Malware in sbrugna...

4CVSS4.2AI score0.00738EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-30227

Malicious code in bioql PyPI...

8.8CVSS6.5AI score0.00363EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-30228

Malicious code in bioql PyPI...

8.6CVSS6.5AI score0.00184EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.12 views

EUVD-2025-19825

Malicious code in bioql PyPI...

7.6AI score0.0016EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-30188

Malicious code in bioql PyPI...

7.7CVSS6.5AI score0.00125EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/09/20 10:22 p.m.8 views

CVE-2025-54860

Cognex In-Sight Explorer and In-Sight Camera Firmware expose a telnet-based service on port 23 in order to allow management operations on the device such as firmware upgrades and device reboot requiring an authentication. A wrong management of login failures of the service allows a...

7.7CVSS6.8AI score0.00125EPSS
Exploits0References1
NVD
NVD
added 2025/09/18 10:15 p.m.10 views

CVE-2025-54497

Cognex In-Sight Explorer and In-Sight Camera Firmware expose a telnet-based service on port 23 to allow management operations such as firmware upgrades and device reboots, which require authentication. A user with protected privileges can successfully invoke the SetSerialPort functionality to...

8.1CVSS0.00293EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/18 9:30 p.m.7 views

CVE-2025-53969 Cognex In-Sight Explorer and In-Sight Camera Firmware Client-Side Enforcement of Server-Side Security

Cognex In-Sight Explorer and In-Sight Camera Firmware expose a service implementing a proprietary protocol on TCP port 1069 to allow the client-side software, such as the In-Sight Explorer tool, to perform management operations such as changing network settings or modifying users' access to the...

8.8CVSS0.00363EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/18 9:26 p.m.9 views

CVE-2025-54818 Cognex In-Sight Explorer and In-Sight Camera Firmware Cleartext Transmission of Sensitive Information

Cognex In-Sight Explorer and In-Sight Camera Firmware expose a proprietary protocol on TCP port 1069 to perform management operations such as modifying system properties. The user management functionality handles sensitive data such as registered usernames and passwords over an unencrypted channe...

8.6CVSS0.00137EPSS
Exploits0References1
Rows per page
Query Builder