CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2026/05/26 10:7 a.m.•4 views

RHSA-2026:20608 Red Hat Security Advisory: containernetworking-plugins security update

Bulletin has no description...

7.5CVSS7.2AI score0.00021EPSS

Exploits0References18

RedHat Linux•added 2026/05/26 5:46 a.m.•14 views

Important: Red Hat Security Advisory: containernetworking-plugins security update

An update for containernetworking-plugins is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

7.5CVSS7.2AI score0.00021EPSS

Exploits0References3

OSV•added 2026/05/26 2:50 a.m.•7 views

MAL-2026-4355 Malicious code in mistral-workflows-plugins-webhook (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 e87825efe9006ca3d435869b276f0d8526a1255ec71ac6e7aa0ea1bb068b6673 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

5.9AI score

OSSF Malicious Packages•added 2026/05/26 2:40 a.m.•9 views

Malicious code in mistral-workflows-plugins-mistralai (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 012c4d9df9467f9847a67be15a746ea186f36d3310d278ca9409d531f5026e12 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

5.9AI score

OSV•added 2026/05/26 2:40 a.m.•7 views

MAL-2026-4354 Malicious code in mistral-workflows-plugins-mistralai (PyPI)

5.9AI score

Amazon•added 2026/05/26 12:0 a.m.•14 views

Important: cni-plugins

Issue Overview: Actions which insert URLs into the content attribute of HTML meta tags are not escaped. This can allow XSS if the meta tag also has an http-equiv attribute with the value "refresh". A new GODEBUG setting has been added, htmlmetacontenturlescape, which can be used to disable escapi...

7.5CVSS7.2AI score0.00058EPSS

Exploits0

Tenable Nessus•added 2026/05/26 12:0 a.m.•14 views

RHEL 9 : containernetworking-plugins (RHSA-2026:20608)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2026:20608 advisory. The Container Network Interface CNI project consists of a specification and libraries for writing plug- ins for configuring network...

7.5CVSS5.9AI score0.00021EPSS

Exploits0References6

Amazon•added 2026/05/26 12:0 a.m.•11 views

Important: cni-plugins

7.5CVSS7.2AI score0.00058EPSS

Exploits0

EUVD•added 2026/05/25 9:54 p.m.•6 views

EUVD-2026-31757

Missing Authorization vulnerability in Kings Plugins B2BKing allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects B2BKing: from n/a before 5.2.10...

4.9CVSS5.8AI score0.00032EPSS

NVD•added 2026/05/24 9:16 a.m.•8 views

CVE-2026-9369

A security flaw has been discovered in NousResearch hermes-agent 2026.4.23. Affected is the function discoverdashboardplugins of the file hermescli/webserver.py of the component CLI web-dashboard Interface. Performing a manipulation of the argument HERMESENABLEPROJECTPLUGINS results in incorrect...

5.3CVSS0.00019EPSS

Vulnrichment•added 2026/05/24 9:0 a.m.•5 views

CVE-2026-9369 NousResearch hermes-agent CLI web-dashboard web_server.py _discover_dashboard_plugins comparison

Cvelist•added 2026/05/24 9:0 a.m.•13 views

CVE-2026-9369 NousResearch hermes-agent CLI web-dashboard web_server.py _discover_dashboard_plugins comparison

5.3CVSS0.00019EPSS

CVE•added 2026/05/24 9:0 a.m.•16 views

CVE-2026-9369

CVE-2026-9369 affects NousResearch hermes-agent 2026.4.23, specifically the CLI web-dashboard component. The vulnerability lies in the function _discover_dashboard_plugins within hermes_cli/web_server.py, where manipulating the argument HERMES_ENABLE_PROJECT_PLUGINS causes an incorrect comparison...

EUVD•added 2026/05/24 9:0 a.m.•17 views

EUVD-2026-31581

CNNVD•added 2026/05/24 12:0 a.m.•7 views

Hermes Agent 安全漏洞

Hermes Agent is an AI agent tool developed by Nous Research, featuring a self-learning mechanism. Version Hermes Agent 2026.4.23 contains a security vulnerability. This vulnerability stems from improper handling of the parameter HERSERENABLEPROJECTPLUGINS in the function discoverdashboardplugins ...

5.3CVSS6AI score0.00019EPSS

Positive Technologies•added 2026/05/24 12:0 a.m.•9 views

PT-2026-42929

A security flaw has been discovered in NousResearch hermes-agent 2026.4.23. Affected is the function discover dashboard plugins of the file hermes cli/web server.py of the component CLI web-dashboard Interface. Performing a manipulation of the argument HERMES ENABLE PROJECT PLUGINS results in...