CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

32 matches found

CVE-2026-52844

CVE-2026-52844 describes a Windows-specific path handling bug in Caddy prior to 2.11.4 where path matchers do not normalize backslashes, causing a request like /private%5csecret.txt to bypass path-scoped auth and reach the protected file, e.g., /private/*, through file_server. The issue is exploi...

7.5CVSS5.9AI score0.00038EPSS

Exploits0References1

Cvelist•added 4 days ago•22 views

CVE-2026-50559 Authentication/Authorization Bypass via Advanced Path Normalization Vulnerabilities

Quarkus is a Java framework for building cloud-native applications. Prior to versions 3.37.0, 3.36.3, 3.33.2.1, 3.33.3, 3.27.4.1, 3.27.5, and 3.20.6.2, Quarkus HTTP path-based authorization policies can be bypassed using encoded semicolons %3B to smuggle matrix parameters past the security layer,...

7.5CVSS

Exploits0References1

Positive Technologies•added 4 days ago•13 views

PT-2026-51029

Name of the Vulnerable Software and Affected Versions Quarkus versions prior to 3.37.0 Quarkus versions prior to 3.36.3 Quarkus versions prior to 3.33.3 Quarkus versions prior to 3.33.2.1 Quarkus versions prior to 3.27.5 Quarkus versions prior to 3.27.4.1 Quarkus versions prior to 3.20.6.2...

7.5CVSS5.9AI score

Exploits0References7

RedHat Linux•added 6 days ago•8 views

io.quarkus/quarkus-vertx-http: Quarkus: Authorization bypass in HTTP path-based policies via encoded characters

A flaw was found in Quarkus. A remote attacker could bypass HTTP path-based authorization policies by using specially crafted encoded semicolons, slashes, or backslashes in HTTP requests. This could allow unauthorized access to protected static resources, leading to information disclosure...

7.5CVSS5.3AI score

Exploits0References5

RedhatCVE•added 6 days ago•8 views

CVE-2026-50559

7.5CVSS5AI score

Exploits0References4

Github Security Blog•added 2026/06/16 9:28 p.m.•6 views

Caddy: Windows `file_server` path authorization bypass via encoded backslash

Summary On Windows, Caddy path matchers treat /private\secret.txt as outside /private/, but fileserver later resolves the same request path as private\secret.txt on disk. An unauthenticated remote client can request /private%5csecret.txt and bypass Caddy path-scoped auth/deny routes protecting...

8.2CVSS5.3AI score0.00274EPSS

Exploits1References2Affected Software2

Amazon•added 2026/04/14 12:0 a.m.•13 views

Important: docker

Issue Overview: url.Parse insufficiently validated the host/authority component and accepted some invalid URLs. CVE-2026-25679 On Unix platforms, when listing the contents of a directory using File.ReadDir or File.Readdir the returned FileInfo could reference a file outside of the Root in which t...

9.1CVSS7.3AI score0.00522EPSS

Exploits1

Amazon•added 2026/04/14 12:0 a.m.•11 views

Important: soci-snapshotter

9.1CVSS6AI score0.00522EPSS

Exploits1

Amazon•added 2026/04/14 12:0 a.m.•12 views

Important: cri-tools

Issue Overview: The Delete function fails to properly validate offsets when processing malformed JSON input. This can lead to a negative slice index and a runtime panic, allowing a denial of service attack. CVE-2026-32285 gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3...

9.1CVSS5.9AI score0.00542EPSS

Exploits2

OSV•added 2026/04/11 2:4 p.m.•4 views

OESA-2026-1866 kata-containers-go security update

This is core component of Kata Container, to make it work, you need a isulad/docker engine. Security Fixes: gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 :path pseudo-header. The...

9.1CVSS5.9AI score0.00522EPSS

Exploits1References2

OSV•added 2026/03/20 11:16 p.m.•6 views

DEBIAN-CVE-2026-33186

gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 :path pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the :path omitted the mandatory...

9.1CVSS7.6AI score0.00522EPSS

Exploits1References1

Tenable Nessus•added 2026/03/13 12:0 a.m.•4 views

ImageMagick < 6.9.13-41 / 7.x < 7.1.2-16 Multiple Vulnerabilities

The remote host has a version of ImageMagick installed that is prior to 6.9.13-41 and 7.x prior to 7.1.2-16. It is, therefore, affected by multiple vulnerabilities. - ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and...

7.8CVSS7.3AI score0.00258EPSS

Exploits0References8

SUSE CVE•added 2026/03/11 12:24 a.m.•1 views

SUSE CVE-2026-28689

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, domain="path" authorization is checked before final file open/use. A symlink swap between check-time and use-time bypasses policy-denied read/write. This...

6.3CVSS5.8AI score0.00108EPSS

Exploits0References8

EUVD•added 2026/03/10 9:2 p.m.•4 views

EUVD-2026-10381

ImageMagick has a Path Policy TOCTOU symlink race bypass...

6.3CVSS5.8AI score0.00108EPSS

Exploits0References3

OSV•added 2026/03/10 7:43 a.m.•2 views

DEBIAN-CVE-2026-28689

6.3CVSS7.7AI score0.00108EPSS

Exploits0References1

CNNVD•added 2026/03/10 12:0 a.m.•3 views

ImageMagick 安全漏洞

ImageMagick is a set of open-source image processing software developed by the ImageMagick project. It allows for reading, converting, and writing images in various formats. Versions of ImageMagick prior to 7.1.2-16 and 6.9.13-41 contained security vulnerabilities. These vulnerabilities stemmed...

6.3CVSS7.2AI score0.00108EPSS

Exploits0References1