5 matches found
EUVD-2026-31006
Microsoft is aware of a security feature bypass vulnerability in Windows publicly referred to as "YellowKey". The proof of concept for this vulnerability has been made public violating coordinated vulnerability best practices. We are issuing this CVE to provide mitigation guidance that can be...
PT-2026-42025
Name of the Vulnerable Software and Affected Versions Windows 11 Windows Server 2022 Windows Server 2025 Description A security feature bypass known as YellowKey affects the BitLocker component in Windows. This issue allows an attacker with physical access to a device to bypass full-disk encrypti...
PT-2026-30029
Name of the Vulnerable Software and Affected Versions Casdoor version 2.356.0 Description A flaw exists in the OAuth Authorization Request Handler component that allows for open redirect attacks. Manipulation of the redirect uri argument can be exploited remotely. The exploit is publicly availabl...
CVE-2026-3054
The CVE affects Alinto SOGo 5.12.3/5.12.4 . The vulnerability is in an unknown function where manipulating the argument hint leads to cross-site scripting (XSS) . It is described as injectable remotely with an exploit publicly available . The vendor was contacted but did not respond. The document...
CVE-2022-46953
creationtimestamp| type| source ---|---|--- 2025-04-07 19:45:38+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/10770...