Lucene search
K

84 matches found

NVD
NVD
added yesterday16 views

CVE-2026-54118

Deserialization of untrusted data in SQL Server allows an authorized attacker to execute code over a network...

8.8CVSS
Exploits0References1
NVD
NVD
added yesterday3 views

CVE-2026-48561

Improper neutralization of special elements used in a command 'command injection' in Microsoft Copilot allows an unauthorized attacker to execute code over a network...

9.6CVSS
Exploits0References1
CVE
CVE
added yesterday26 views

CVE-2026-54117

CVE-2026-54117 affects Microsoft SQL Server and is caused by deserialization of untrusted data, enabling an authorized attacker to execute code over a network. The CVSS v3.1 base score is 8.8 (HIGH) with network access, low attack complexity, and privileges required as LOW; impact to confidential...

8.8CVSS6.2AI score
Exploits0References1
NVD
NVD
added 2026/07/03 9:17 p.m.12 views

CVE-2026-58287

Use after free in Microsoft Edge Chromium-based allows an unauthorized attacker to execute code over a network...

8.3CVSS0.00438EPSS
Exploits0References1
NVD
NVD
added 2026/07/03 9:17 p.m.6 views

CVE-2026-57984

Use after free in Microsoft Edge Chromium-based allows an unauthorized attacker to execute code over a network...

7.5CVSS0.00429EPSS
Exploits0References1
NVD
NVD
added 2026/07/03 9:17 p.m.12 views

CVE-2026-57974

Integer overflow or wraparound in Microsoft Edge Chromium-based allows an unauthorized attacker to execute code over a network...

8.8CVSS0.00556EPSS
Exploits0References1
EUVD
EUVD
added 2026/07/03 8:35 p.m.10 views

EUVD-2026-41571

Use after free in Microsoft Edge Chromium-based allows an unauthorized attacker to execute code over a network...

8.3CVSS6.1AI score0.00438EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/07/01 12:0 a.m.20 views

PT-2026-54783

Name of the Vulnerable Software and Affected Versions Microsoft Edge Chromium-based versions prior to 149.0.4022.98 Description A use-after-free issue exists in Microsoft Edge Chromium-based. This flaw allows an authorized attacker to execute arbitrary code over a network. Use-after-free is a...

8.3CVSS6.1AI score0.00823EPSS
Exploits0References8
EUVD
EUVD
added 2026/06/09 12:11 p.m.13 views

EUVD-2026-35413

In the Linux kernel, the following vulnerability has been resolved: net: gro: don't merge zcopy skbs skbgroreceive can currently copy frags between the source and GRO skb, without checking the zerocopy status, and in particular the SKBFLMANAGEDFRAGREFS flag. When SKBFLMANAGEDFRAGREFS is set, the...

5.4AI score0.00137EPSS
Exploits0References5
NVD
NVD
added 2026/06/04 11:17 p.m.14 views

CVE-2026-45497

Improper neutralization of special elements used in a command 'command injection' in Microsoft Copilot allows an authorized attacker to execute code over a network...

8.8CVSS0.00452EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/26 2:12 p.m.16 views

CVE-2026-40412

Unrestricted upload of file with dangerous type in Azure Orbital Spatio allows an unauthorized attacker to execute code over a network...

10CVSS6AI score0.00534EPSS
Exploits0References1
OSV
OSV
added 2026/05/26 12:30 p.m.7 views

SUSE-SU-2026:21836-1 Security update for cups

This update for cups fixes the following issues - CVE-2026-27447: Authorization bypass via case-insensitive group-member lookup bsc1261572. - CVE-2026-34978: Path traversal in RSS notify-recipient-uri enables file write outside CacheDir/rss bsc1261571. - CVE-2026-34979: Heap overflow in getoption...

7.8CVSS6.5AI score0.00502EPSS
Exploits8References17
OSV
OSV
added 2026/05/26 11:41 a.m.10 views

SUSE-SU-2026:21871-1 Security update for cups

This update for cups fixes the following issues - CVE-2026-27447: Authorization bypass via case-insensitive group-member lookup bsc1261572. - CVE-2026-34978: Path traversal in RSS notify-recipient-uri enables file write outside CacheDir/rss bsc1261571. - CVE-2026-34979: Heap overflow in getoption...

7.8CVSS6.5AI score0.00502EPSS
Exploits8References17
NVD
NVD
added 2026/05/07 10:16 p.m.69 views

CVE-2026-33844

Improper access control in Azure Managed Instance for Apache Cassandra allows an authorized attacker to execute code over a network...

9CVSS0.00988EPSS
Exploits0References1
NVD
NVD
added 2026/04/14 6:17 p.m.7 views

CVE-2026-33120

Untrusted pointer dereference in SQL Server allows an authorized attacker to execute code over a network...

8.8CVSS0.00706EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:4 p.m.5 views

CVE-2026-25172

Integer overflow or wraparound in Windows Routing and Remote Access Service RRAS allows an authorized attacker to execute code over a network...

8CVSS6AI score0.00904EPSS
Exploits0References1
OSV
OSV
added 2026/03/10 6:18 p.m.5 views

CVE-2026-25173

Integer overflow or wraparound in Windows Routing and Remote Access Service RRAS allows an authorized attacker to execute code over a network...

8CVSS6AI score0.00886EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/10 5:5 p.m.5 views

CVE-2026-26111

Integer overflow or wraparound in Windows Routing and Remote Access Service RRAS allows an authorized attacker to execute code over a network...

8CVSS6AI score0.00836EPSS
Exploits3References2Affected Software21
Tenable Nessus
Tenable Nessus
added 2026/03/10 12:0 a.m.5 views

KB5078885: Windows 10 version 21H2 / Windows 10 Version 22H2 Security Update (March 2026)

The remote Windows host is missing security update 5078885. It is, therefore, affected by multiple vulnerabilities - Use after free in Broadcast DVR allows an authorized attacker to elevate privileges locally. CVE-2026-23667 - Use after free in Windows Print Spooler Components allows an authorize...

8.8CVSS7.2AI score0.04491EPSS
Exploits8References43
Microsoft CVE
Microsoft CVE
added 2026/02/10 4:0 p.m.8 views

Azure SDK for Python Remote Code Execution Vulnerability

Deserialization of untrusted data in Azure SDK allows an unauthorized attacker to execute code over a network...

9.8CVSS5.8AI score0.02344EPSS
Exploits0
Rows per page
Query Builder