CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 3 days ago•1 views

MAL-2026-5161 Malicious code in nrwl.angular-console (VSCode)

6.1AI score

OSV•added 3 days ago•1 views

MAL-2026-5162 Malicious code in nrwl.angular-console (VSCode:https://open-vsx.org)

6.1AI score

NVD•added 6 days ago•6 views

CVE-2026-10056

CORS misconfiguration in the REST API of Network Optix Nx Witness VMS before version 6.1.2, when running in the default Standard security mode, on Linux and Windows allows an unauthenticated remote attacker to steal the session token of an authenticated user and perform Administrator Account...

7.5CVSS0.00077EPSS

CVE•added 6 days ago•8 views

CVE-2026-10056

CVE-2026-10056 – Nx Witness VMS : A CORS misconfiguration in the REST API (pre-6.1.2) running in Standard security mode on Linux/Windows allows an unauthenticated attacker to exfiltrate a user session token and perform Administrator Account Takeover via a malicious cross-origin page. The High sec...

7.5CVSS5.8AI score0.00077EPSS

EUVD•added 6 days ago•4 views

EUVD-2026-33262

7.5CVSS5.8AI score0.00077EPSS

Positive Technologies•added 6 days ago•3 views

PT-2026-44762

7.5CVSS5.8AI score0.00077EPSS

Exploits0References2

CNNVD•added 6 days ago•4 views

Network Optix Nx Witness VMS 安全漏洞

Network Optix Nx Witness VMS is a video management system developed by the American company Network Optix. Versions of Network Optix Nx Witness VMS prior to version 6.1.2 contained security vulnerabilities. These vulnerabilities were caused by incorrect CORS configurations in the REST API, which...

7.5CVSS5.9AI score0.00077EPSS

CISA•added last week•8 views

Supply Chain Compromises Impact Nx Console and GitHub Repositories

CISA is prioritizing the response to multiple emerging software supply chain intrusion campaigns targeting developer ecosystems Continuous Integration/Continuous Development CI/CD pipelines. These recent incidents, including the GitHub compromise via a malicious Nx Console Visual Studio Code VS...

RedhatCVE•added 2026/05/27 8:10 p.m.•4 views

Exploits1References8

CVE-2026-46068

A flaw was found in the Linux kernel's crypto:nx component. This vulnerability involves incorrect memory management during the deallocation of bounce buffers, where an improper function is used. This can lead to memory leaks, which may result in system instability or a Denial of Service DoS...

5.5CVSS5.8AI score0.00024EPSS

NVD•added 2026/05/27 5:16 p.m.•5 views

CVE-2026-48027

Nx Console is the user interface for Nx & Lerna. On 19 May 2026, a malicious version of Nx Console, 18.95.0, was published at 12:30 PM UTC and removed soon after at 12:48 PM UTC, leaving it available for 18 minutes in Visual Studio Marketplace. For OpenVSX, the problem was detected later, and the...

9.8CVSS0.32065EPSS

Exploits1References5

Vulnrichment•added 2026/05/27 3:50 p.m.•3 views

CVE-2026-48027 Compromised Nx Console version 18.95.0

9.3CVSS5.8AI score0.32065EPSS

Exploits1References4

Cvelist•added 2026/05/27 3:50 p.m.•60 views

CVE-2026-48027 Compromised Nx Console version 18.95.0

9.3CVSS0.32065EPSS

Exploits1References4

CVE•added 2026/05/27 3:50 p.m.•20 views

CVE-2026-48027

Summary: CVE-2026-48027 affects Nx Console, a UI for Nx & Lerna. A malicious copy of Nx Console version 18.95.0 was published briefly in Visual Studio Marketplace (and OpenVSX) around 12:30–12:48 UTC (≈18 minutes) and 12:33–13:09 UTC (≈36 minutes) respectively. The compromised package allowed cod...

In wildExploits1References5Affected Software1

EUVD•added 2026/05/27 3:50 p.m.•4 views

EUVD-2026-32550

ATTACKERKB•added 2026/05/27 3:50 p.m.•5 views

Exploits1References4

CVE-2026-48027

9.3CVSS5.8AI score0.32065EPSS

Exploits1References5

CISA•added 2026/05/27 12:0 p.m.•37 views

CISA Adds Three Known Exploited Vulnerabilities to Catalog

CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2026-8398link is external Daemon Tools Lite Embedded Malicious Code Vulnerability CVE-2026-45321link is external TanStack Unspecified Vulnerability...

9.8CVSS6AI score0.32065EPSS

In wildExploits5References8

CNNVD•added 2026/05/27 12:0 a.m.•5 views

Nx Console 安全漏洞

Nx Console is an open-source repository management interface that supports visual workflows and AI enhancements. Version Nx Console 18.95.0 contains a security vulnerability. This vulnerability stems from the release of a malicious version on the Visual Studio Marketplace and OpenVSX, which could...

Positive Technologies•added 2026/05/27 12:0 a.m.•4 views

Exploits1References5

PT-2026-44044

Name of the Vulnerable Software and Affected Versions Nx Console version 18.95.0 Description A supply chain compromise occurred where a malicious version of Nx Console, the user interface for Nx and Lerna, was published to official marketplaces. The compromised version was available in the Visual...