CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

EUVD•added 2026/04/20 3:31 p.m.•0 views

EUVD-2026-23862

An improper access control vulnerability in the canonical-livepatch snap client prior to version 10.15.0 allows a local unprivileged user to obtain a sensitive, root-level authentication token by sending an unauthenticated request to the livepatchd.sock Unix domain socket. This vulnerability is...

5.7CVSS5.8AI score0.0002EPSS

Exploits0References2

CVE•added 2026/04/20 1:38 p.m.•7 views

CVE-2026-6369

The CVE-2026-6369 entry concerns the canonical-livepatch snap client, affected before version 10.15.0. A local unprivileged user can exploit an improper access control by sending an unauthenticated request to the livepatchd.sock Unix domain socket to obtain a sensitive, root-level authentication ...

5.7CVSS5.8AI score0.0002EPSS

Exploits0References1Affected Software1

Cvelist•added 2026/04/20 1:38 p.m.•23 views

CVE-2026-6369 Exposed Session Token in canonical-livepatch client snap

5.7CVSS0.0002EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 2:52 a.m.•4 views

CVE-2023-0443

The AnyWhere Elementor WordPress plugin before 1.2.8 discloses a Freemius Secret Key which could be used by an attacker to purchase the pro subscription using test credit card numbers without actually paying the amount. Such key has been revoked...

5.3CVSS6.6AI score0.00393EPSS

Exploits2References1

OSV•added 2024/10/11 4:51 p.m.•1 views

USN-7063-1 ubuntu-advantage-desktop-daemon vulnerability

Marco Trevisan discovered that the Ubuntu Advantage Desktop Daemon leaked the Pro token to unprivileged users by passing the token as an argument in plaintext. An attacker could use this issue to gain unauthorized access to an Ubuntu Pro subscription. CVE-2024-6388...

5.9CVSS5.8AI score0.00022EPSS

Exploits0References2