Lucene search
K

7109 matches found

Positive Technologies
Positive Technologies
added 2026/06/10 12:0 a.m.12 views

PT-2026-48539

Name of the Vulnerable Software and Affected Versions opentelemetry-operator affected versions not specified Description The TargetAllocator in the OpenTelemetry Operator processes ServiceMonitor resources and converts endpoints into Prometheus scrape configurations. A tenant with permissions to...

7.7CVSS6AI score0.00017EPSS
Exploits0References5
NVD
NVD
added 2026/06/09 5:17 p.m.9 views

CVE-2026-42981

Integer underflow wrap or wraparound in Windows Performance Monitor allows an unauthorized attacker to execute code over a network...

8.1CVSS0.0064EPSS
Exploits0References1
NVD
NVD
added 2026/06/09 5:17 p.m.8 views

CVE-2026-42974

Integer underflow wrap or wraparound in Windows Performance Monitor allows an unauthorized attacker to execute code over a network...

8.1CVSS0.0064EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/09 5:6 p.m.32 views

EUVD-2026-35736

Integer underflow wrap or wraparound in Windows Performance Monitor allows an unauthorized attacker to execute code over a network...

8.1CVSS5.7AI score0.0064EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/09 5:6 p.m.23 views

EUVD-2026-35735

Integer underflow wrap or wraparound in Windows Performance Monitor allows an unauthorized attacker to execute code over a network...

8.1CVSS5.7AI score0.0064EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/09 5:6 p.m.30 views

CVE-2026-42974 Windows Performance Monitor Remote Code Execution Vulnerability

...

8.1CVSS0.0064EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/09 5:6 p.m.30 views

CVE-2026-42981 Windows Performance Monitor Remote Code Execution Vulnerability

...

8.1CVSS0.0064EPSS
Exploits0References1
CVE
CVE
added 2026/06/09 5:6 p.m.42 views

CVE-2026-42981

The provided documents identify CVE-2026-42981 as a Windows Performance Monitor remote code execution vulnerability caused by an integer underflow (wrap/wraparound). The issue is exploitable over the network without user interaction and with no privileges required (AV:N/PR:N/UI:N), as indicated b...

8.1CVSS5.7AI score0.0064EPSS
Exploits0References1Affected Software6
CVE
CVE
added 2026/06/09 5:6 p.m.31 views

CVE-2026-42974

CVE-2026-42974 affects Windows Performance Monitor. The issue is an Integer underflow (wrap/wraparound) in a component used by Performance Monitor, enabling a remote attacker to execute code over a network. Exploitation details are not provided in the documents; the CVSS base score is 8.1 (Networ...

8.1CVSS5.7AI score0.0064EPSS
Exploits0References1Affected Software6
Vulnrichment
Vulnrichment
added 2026/06/09 5:6 p.m.7 views

CVE-2026-42974 Windows Performance Monitor Remote Code Execution Vulnerability

...

8.1CVSS5.4AI score0.0064EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/09 5:6 p.m.8 views

CVE-2026-42981 Windows Performance Monitor Remote Code Execution Vulnerability

...

8.1CVSS5.4AI score0.0064EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2026/06/09 2:0 p.m.12 views

Windows Performance Monitor Remote Code Execution Vulnerability

Integer underflow wrap or wraparound in Windows Performance Monitor allows an unauthorized attacker to execute code over a network...

8.1CVSS5.7AI score0.0064EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/06/09 2:0 p.m.9 views

Windows Performance Monitor Remote Code Execution Vulnerability

Integer underflow wrap or wraparound in Windows Performance Monitor allows an unauthorized attacker to execute code over a network...

8.1CVSS5.7AI score0.0064EPSS
Exploits0
NVD
NVD
added 2026/06/09 10:16 a.m.10 views

CVE-2026-41031

A Stored Cross-Site Scripting vulnerability in Vinna Process Monitor Version 4.0 Service Pack 1 Build 63255 allows an authenticated remote attacker with low privileges to inject malicious JavaScript code into the application. This enables attackers to steal administrative access tokens and sessio...

9.3CVSS0.00242EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/09 9:51 a.m.49 views

CVE-2026-41031 A Stored Cross-Site Scripting (XSS) vulnerability occurs in Vinna Process Monitor

A Stored Cross-Site Scripting vulnerability in Vinna Process Monitor Version 4.0 Service Pack 1 Build 63255 allows an authenticated remote attacker with low privileges to inject malicious JavaScript code into the application. This enables attackers to steal administrative access tokens and sessio...

9.3CVSS0.00242EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/09 9:51 a.m.8 views

CVE-2026-41031 A Stored Cross-Site Scripting (XSS) vulnerability occurs in Vinna Process Monitor

A Stored Cross-Site Scripting vulnerability in Vinna Process Monitor Version 4.0 Service Pack 1 Build 63255 allows an authenticated remote attacker with low privileges to inject malicious JavaScript code into the application. This enables attackers to steal administrative access tokens and sessio...

9.3CVSS5.6AI score0.00242EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/09 9:51 a.m.19 views

EUVD-2026-35390

A Stored Cross-Site Scripting vulnerability in Vinna Process Monitor Version 4.0 Service Pack 1 Build 63255 allows an authenticated remote attacker with low privileges to inject malicious JavaScript code into the application. This enables attackers to steal administrative access tokens and sessio...

9.3CVSS5.6AI score0.00242EPSS
Exploits0References1
CVE
CVE
added 2026/06/09 9:51 a.m.26 views

CVE-2026-41031

CVE-2026-41031 describes a Stored Cross-Site Scripting vulnerability in Vinna Process Monitor 4.0 SP1 (Build 63255) . An authenticated, low-privilege attacker can inject malicious JavaScript to access tokens and session credentials. Public metadata lists CVSS v3.1 base score 8.7 (HIGH) with netwo...

9.3CVSS5.6AI score0.00242EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/09 12:0 a.m.16 views

PT-2026-47731

A Stored Cross-Site Scripting vulnerability in Vinna Process Monitor Version 4.0 Service Pack 1 Build 63255 allows an authenticated remote attacker with low privileges to inject malicious JavaScript code into the application. This enables attackers to steal administrative access tokens and sessio...

9.3CVSS5.6AI score0.00242EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/09 12:0 a.m.13 views

Skilja Vinna Process Monitor 跨站脚本漏洞

Skilja Vinna Process Monitor is a business process monitoring platform developed by Skilja Corporation. The Skilja Vinna Process Monitor 4.0 Service Pack 1 version contains a cross-site scripting vulnerability. This vulnerability stems from a storage-based cross-site scripting flaw, which could...

9.3CVSS5.1AI score0.00242EPSS
Exploits0References2
Rows per page
Query Builder