CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2026/05/12 10:24 p.m.•4 views

CVE-2026-43685

6AI score0.00305EPSS

Cvelist•added 2026/05/12 10:24 p.m.•30 views

CVE-2026-43685

0.00305EPSS

NVD•added 2026/04/22 3:16 p.m.•1 views

CVE-2026-35548

An issue was discovered in guardsix formerly Logpoint ODBC Enrichment Plugins before 5.2.1 5.2.1 is used in guardsix 7.9.0.0. A logic flaw allowed stored database credentials to be reused after modification of the target Host, IP address, or Port. When editing an existing Enrichment Source,...

8.5CVSS0.00038EPSS

Exploits0References2

Positive Technologies•added 2026/04/22 12:0 a.m.•0 views

PT-2026-34451

Name of the Vulnerable Software and Affected Versions guardsix ODBC Enrichment Plugins versions prior to 5.2.1 Description A logic flaw exists where stored database credentials are retained after the target Host, IP address, or Port is modified. When editing an Enrichment Source, the system fails...

8.5CVSS5.8AI score0.00038EPSS

Exploits0References5

ATTACKERKB•added 2026/04/22 12:0 a.m.•0 views

CVE-2026-35548

8.5CVSS5.7AI score0.00038EPSS

Exploits0References3

Cvelist•added 2026/04/22 12:0 a.m.•23 views

CVE-2026-35548

0.00038EPSS

Exploits0References2

RedhatCVE•added 2026/04/06 10:57 a.m.•2 views

CVE-2026-35558

Improper neutralization of special elements in the authentication components in Amazon Athena ODBC driver before 2.1.0.0 might allow a threat actor to execute arbitrary code or redirect authentication flows by using specially crafted connection parameters that are processed by the driver during...

7.8CVSS6.3AI score0.00043EPSS

RedhatCVE•added 2026/04/06 10:57 a.m.•1 views

CVE-2026-35560

Improper certificate validation in the identity provider connection components in Amazon Athena ODBC driver before 2.1.0.0 might allow a man-in-the-middle threat actor to intercept authentication credentials due to insufficient default transport security when connecting to identity providers. Thi...

9.1CVSS5.9AI score0.00016EPSS

EUVD•added 2026/04/03 9:31 p.m.•3 views

EUVD-2026-18853

Out-of-bounds write in the query processing components in Amazon Athena ODBC driver before 2.1.0.0 might allow a threat actor to crash the driver by using specially crafted data that is processed by the driver during query operations. To remediate this issue, users should upgrade to version 2.1.0...

7.1CVSS5.9AI score0.0008EPSS

Exploits0References7

EUVD•added 2026/04/03 9:31 p.m.•2 views

EUVD-2026-18851

7.8CVSS6.3AI score0.00043EPSS

Exploits0References7

NVD•added 2026/04/03 9:17 p.m.•2 views

CVE-2026-35561

Insufficient authentication security controls in the browser-based authentication components in Amazon Athena ODBC driver before 2.1.0.0 might allow a threat actor to intercept or hijack authentication sessions due to insufficient protections in the browser-based authentication flows. To remediat...

9.8CVSS0.0003EPSS

CVE-2026-35562

Allocation of resources without limits in the parsing components in Amazon Athena ODBC driver before 2.1.0.0 might allow a threat actor to cause a denial of service by delivering crafted input that triggers excessive resource consumption during the driver's parsing operations. To remediate this...

8.7CVSS0.00114EPSS

CVE-2026-5485

OS command injection in the browser-based authentication component in Amazon Athena ODBC driver before 2.0.5.1 on Linux might allow a threat actor to execute arbitrary code by using specially crafted connection parameters that are loaded by the driver during a local user-initiated connection. To...

7.8CVSS0.00102EPSS

CVE-2026-35558

7.8CVSS0.00043EPSS

CVE-2026-35559

7.1CVSS0.0008EPSS