Lucene search
K

4 matches found

CVE
CVE
added 2026/06/30 7:59 p.m.16 views

CVE-2026-10129

CVE-2026-10129 affects IBM Langflow OSS 1.0.0–1.9.3. A SSRF protection bypass exists in the API Request component: with a low-privilege flow author, an attacker can enable follow_redirects and supply a public URL that redirects to internal/localhost addresses. The app validates only the initial U...

8.5CVSS5.8AI score0.00185EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2026/05/09 12:0 a.m.9 views

HCL BigFix WebUI 安全漏洞

HCL BigFix WebUI is a web-based administration page from HCL India. A security vulnerability exists in the HCL BigFix WebUI that stems from improper authorization and could allow authenticated users without Master Operator privileges to access internal data and bypass privilege requirements throu...

6.5CVSS5.8AI score0.00225EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/18 12:0 a.m.5 views

BullWall Server Intrusion Protection 安全漏洞

BullWall Server Intrusion Protection is a server security software from the Danish company BullWall. A security vulnerability exists in BullWall Server Intrusion Protection versions 4.6.0.0, 4.6.0.6, 4.6.0.7, and 4.6.1.4, which stems from a delayed MFA check and could lead to a privileged attacke...

7.7CVSS6.5AI score0.00311EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/23 3:38 a.m.6 views

EUVD-2025-35650

Client-Side Enforcement of Server-Side Security CWE-602 in the Command Centre Server allows a privileged operator to enter invalid competency data, bypassing expiry checks. This issue affects Command Centre Server: 9.30 prior to vEL9.30.2482 MR2, 9.20 prior to vEL9.20.2819 MR4, 9.10 prior to...

5.5CVSS6.4AI score0.00126EPSS
Exploits0References2
Rows per page
Query Builder