CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Positive Technologies•added 2026/06/11 12:0 a.m.•11 views

PT-2026-48709

Garlic-Hub manages digital signage network — devices, content, and playlists — from a single self-hosted interface. Prior to version 1.1, authenticated users can cause the server to issue arbitrary HTTP requests to internal services via the uploadFromUrl endpoint. This allows internal port...

7.7CVSS5.5AI score0.00209EPSS

Exploits0References3

Positive Technologies•added 2026/06/11 12:0 a.m.•15 views

PT-2026-48682

Name of the Vulnerable Software and Affected Versions Netty versions prior to 4.1.135.Final Netty versions prior to 4.2.15.Final Description The RedisArrayAggregator handler permanently leaks pooled direct-memory buffers when a Redis pipeline connection closes before a RESP array aggregate...

8.7CVSS5.3AI score0.00435EPSS

Exploits0References25

RedhatCVE•added 2026/06/10 8:59 a.m.•7 views

CVE-2026-5068

A remote, unauthenticated BLE peer can trigger a 2-byte out-of-bounds write in the Bluetooth host during L2CAP LE CoC SDU reassembly. When the application enables segmentation via chanops.allocbuf and the chosen RX pool has a userdatasize smaller than 2 bytes, the segmentation counter stored in t...

7.6CVSS5.5AI score0.00166EPSS

Fedora•added 2026/06/08 1:24 a.m.•15 views

[SECURITY] Fedora 44 Update: haveged-1.9.22-1.fc44

A Linux entropy source using the HAVEGE algorithm Haveged is a user space entropy daemon which is not dependent upon the standard mechanisms for harvesting randomness for the system entropy pool. This is important in systems with high entropy needs or limited user interaction e.g. headless server...

7.8CVSS5.4AI score0.00185EPSS

Exploits0

The Hacker News•added 2026/06/06 8:29 a.m.•28 views

Free Apps Are Turning Smart TVs Into Web-Scraping Proxies for AI

A researcher has reverse-engineered the iOS SDK that Bright Data embeds in consumer apps and documented how, with the user's consent, it can turn devices, including always-on smart TVs, into exit nodes that relay web-scraping traffic for a data business Bright Data markets heavily to the AI...

5.5AI score

Exploits0

RedhatCVE•added 2026/06/05 7:47 p.m.•8 views

CVE-2026-6624

A weakness has been identified in BichitroGan ISP Billing Software 2025.3.20. Affected is an unknown function of the file /?\route=pool/add of the component Pool List Interface. Executing a manipulation can lead to cross site scripting. The attack may be performed from remote. The exploit has bee...

4.8CVSS3.5AI score0.00206EPSS

RedhatCVE•added 2026/06/05 7:27 p.m.•9 views

CVE-2026-40944

Oxia is a metadata store and coordination system. Prior to 0.16.2, the trustedCertPool function in the TLS configuration only parses the first PEM block from CA certificate files. When a CA bundle contains multiple certificates e.g., intermediate + root CA, only the first certificate is loaded...

6.9CVSS5.4AI score0.0016EPSS

RedhatCVE•added 2026/06/05 7:17 p.m.•8 views

CVE-2026-6912

Improperly controlled modification of dynamically-determined object attributes in the Cognito User Pool configuration in AWS Ops Wheel before PR 165 allows remote authenticated users to escalate to deployment admin privileges and manage Cognito user accounts via a crafted UpdateUserAttributes API...

8.8CVSS5.6AI score0.00419EPSS

RedhatCVE•added 2026/06/05 7:11 p.m.•9 views

CVE-2026-44321

free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's SMF mounts the UPI management route group without inbound OAuth2 middleware. The POST /upi/v1/upNodesLinks create-or-update handler accepts attacker-controlled JSON and passes it directly into...

7.5CVSS5.5AI score0.00364EPSS

Exploits1References1

RedhatCVE•added 2026/06/03 4:2 p.m.•10 views

CVE-2026-10548

A security flaw has been discovered in NousResearch hermes-agent up to 2026.4.23. This affects the function syncanthropicentryfromcredentialsfile of the file agent/credentialpool.py of the component Credential Pool Synchronization. The manipulation results in improper authentication. The attack...

5.3CVSS5.4AI score0.0014EPSS

NVD•added 2026/06/02 2:16 a.m.•16 views

CVE-2026-10548

5.3CVSS0.0014EPSS

CVE•added 2026/06/02 12:30 a.m.•38 views

CVE-2026-10548

CVE-2026-10548 affects NousResearch hermes-agent (up to 2026.4.23) in the Credential Pool Synchronization area. The flaw resides in the function _sync_anthropic_entry_from_credentials_file within agent/credential_pool.py and leads to improper authentication. Attack requires local access; exploita...

EUVD•added 2026/06/02 12:30 a.m.•13 views

EUVD-2026-33856

Vulnrichment•added 2026/06/02 12:30 a.m.•5 views

CVE-2026-10548 NousResearch hermes-agent Credential Pool Synchronization credential_pool.py _sync_anthropic_entry_from_credentials_file improper authentication

Cvelist•added 2026/06/02 12:30 a.m.•51 views

CVE-2026-10548 NousResearch hermes-agent Credential Pool Synchronization credential_pool.py _sync_anthropic_entry_from_credentials_file improper authentication

5.3CVSS0.0014EPSS

Positive Technologies•added 2026/06/02 12:0 a.m.•12 views

PT-2026-45677

A security flaw has been discovered in NousResearch hermes-agent up to 2026.4.23. This affects the function sync anthropic entry from credentials file of the file agent/credential pool.py of the component Credential Pool Synchronization. The manipulation results in improper authentication. The...

RedhatCVE•added 2026/06/01 4:3 p.m.•14 views

Exploits0References6

CVE-2026-10156

A vulnerability was determined in Open5GS up to 2.7.7. This affects the function handleamfinfo in the library /lib/sbi/nnrf-handler.c of the component nf-instances Endpoint. Executing a manipulation of the argument nfinfopool can lead to resource consumption. The attack may be performed from...

5.3CVSS5.4AI score0.00277EPSS

EUVD•added 2026/05/31 12:31 a.m.•14 views

EUVD-2026-33472

5.3CVSS5.4AI score0.00277EPSS

Exploits0References6

NVD•added 2026/05/31 12:16 a.m.•13 views

CVE-2026-10156

5.3CVSS0.00277EPSS