Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RedhatCVE
RedhatCVEadded 2 days ago4 views

CVE-2026-24468

OpenAEV is an open source platform allowing organizations to plan, schedule and conduct cyber adversary simulation campaign and tests. Starting in version 1.11.0 and prior to version 2.0.13, the /api/reset endpoint behaves differently depending on whether the supplied username exists in the syste...

5.3CVSS5.5AI score0.00085EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2 days ago5 views

CVE-2026-24467

OpenAEV is an open source platform allowing organizations to plan, schedule and conduct cyber adversary simulation campaign and tests. Starting in version 1.0.0 and prior to version 2.0.13, OpenAEV's password reset implementation contains multiple security weaknesses that together allow reliable...

9.8CVSS5.7AI score0.01311EPSS
Exploits1References1
EUVD
EUVDadded 2026/04/20 3:45 p.m.0 views

EUVD-2026-23883

OpenAEV is an open source platform allowing organizations to plan, schedule and conduct cyber adversary simulation campaign and tests. Starting in version 1.11.0 and prior to version 2.0.13, the /api/reset endpoint behaves differently depending on whether the supplied username exists in the syste...

5.3CVSS5.7AI score0.00085EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/04/20 3:40 p.m.1 views

CVE-2026-24467

OpenAEV is an open source platform allowing organizations to plan, schedule and conduct cyber adversary simulation campaign and tests. Starting in version 1.0.0 and prior to version 2.0.13, OpenAEV's password reset implementation contains multiple security weaknesses that together allow reliable...

9CVSS5.7AI score0.01311EPSS
Exploits1References5Affected Software1
EUVD
EUVDadded 2026/04/20 3:40 p.m.0 views

EUVD-2026-23882

OpenAEV is an open source platform allowing organizations to plan, schedule and conduct cyber adversary simulation campaign and tests. Starting in version 1.0.0 and prior to version 2.0.13, OpenAEV's password reset implementation contains multiple security weaknesses that together allow reliable...

9CVSS5.7AI score0.01311EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2026/04/20 12:0 a.m.2 views

PT-2026-33788

OpenAEV is an open source platform allowing organizations to plan, schedule and conduct cyber adversary simulation campaign and tests. Starting in version 1.11.0 and prior to version 2.0.13, the /api/reset endpoint behaves differently depending on whether the supplied username exists in the syste...

5.3CVSS5.7AI score0.00085EPSS
Exploits0References8
CNNVD
CNNVDadded 2026/04/20 12:0 a.m.4 views

OpenAEV 安全漏洞

OpenAEV is an open-source personal planning platform under the OpenAEV Platform project. Versions of OpenAEV from 1.0.0 to 2.0.13 contained security vulnerabilities. This vulnerability stemmed from the fact that password reset tokens did not expire and had a length of only 8 bits. This allowed...

9.8CVSS5.8AI score0.01311EPSS
Exploits1References1
Rows per page
Query Builder