Lucene search
K

21951 matches found

OSV
OSV
added 2026/04/14 2:30 p.m.5 views

MINI-PC5C-WJ3G-CGVW

Bulletin has no description...

7.5CVSS5.7AI score0.00535EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2026/04/14 2:0 p.m.4 views

MITRE: CVE-2026-25250 Secure Boot disable Eazy Fix

Missing cryptographic step in Windows Secure Boot allows an authorized attacker to bypass a security feature locally...

6CVSS6.2AI score
Exploits0
OSV
OSV
added 2026/04/14 12:58 p.m.6 views

JLSEC-2026-97

An internal reference count is held on the buffer pool, incremented every time a new buffer is created from the pool. The reference count is maintained as an int; on LP64 systems this can cause the reference count to overflow if the client creates a large number of wlshm buffer objects, or if it...

6.6CVSS7AI score0.00294EPSS
Exploits1References2
OSV
OSV
added 2026/04/14 12:0 p.m.5 views

ECHO-A92E-9791-007A

Bulletin has no description...

4.8CVSS5.7AI score0.00112EPSS
Exploits0References2
Friends Of PHP
Friends Of PHP
added 2026/04/14 9:42 a.m.10 views

Command injection via malicious Perforce source reference/url

Impact The Perforce::syncCodeBase method appended the $sourceReference parameter to a shell command without proper escaping, allowing an attacker to inject arbitrary commands through a crafted source reference containing shell metacharacters. Further as in GHSA-wg36-wvj6-r67p / CVE-2026-40176 the...

8.8CVSS6.3AI score0.01688EPSS
Exploits4Affected Software1
Circl
Circl
added 2026/04/14 2:35 a.m.3 views

CVE-2024-22000

creationtimestamp| type| source ---|---|--- 2026-04-14 02:35:41+00:00| seen| https://bsky.app/profile/madre-ia.bsky.social/post/3mjgduccc7l2d...

5.7AI score
Exploits0References1
Circl
Circl
added 2026/04/14 1:42 a.m.2 views

CVE-2026-6220

creationtimestamp| type| source ---|---|--- 2026-04-14 01:42:24+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjgauzyo6p2t...

5.8CVSS5.7AI score0.00218EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/04/14 1:1 a.m.5 views

Sigstore Timestamp Authority has Improper Certificate Validation in verifier

Authorization bypass via certificate bag manipulation in sigstore/timestamp-authority verifier An authorization bypass vulnerability exists in sigstore/timestamp-authority verifier timestamp-authority/v2/pkg/verification: VerifyTimestampResponse function correctly verifies the certificate chain b...

7.5CVSS5.7AI score0.00188EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2026/04/14 12:16 a.m.5 views

CVE-2026-27677

Due to missing authorization checks in the SAP S/4HANA OData Service Manage Reference Equipment, an attacker could update and delete child entities via OData services without proper authorization. This vulnerability has a high impact on integrity, while confidentiality and availability are not...

6.5CVSS0.00181EPSS
Exploits0References2
NVD
NVD
added 2026/04/14 12:16 a.m.4 views

CVE-2026-27678

Due to missing authorization checks in the SAP S/4HANA backend OData Service Manage Reference Structures, an attacker could update and delete child entities via exposed OData services without proper authorization. This vulnerability has a high impact on integrity, while confidentiality and...

6.5CVSS0.00181EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/04/14 12:7 a.m.30 views

CVE-2026-27679 Missing Authorization check in SAP S/4HANA Frontend OData Service (Manage Reference Structures)

Due to missing authorization checks in the SAP S/4HANA frontend OData Service Manage Reference Structures, an attacker could update and delete child entities via exposed OData services without proper authorization. This vulnerability has a high impact on integrity, while confidentiality and...

6.5CVSS0.00181EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/14 12:7 a.m.1 views

CVE-2026-27679

Due to missing authorization checks in the SAP S/4HANA frontend OData Service Manage Reference Structures, an attacker could update and delete child entities via exposed OData services without proper authorization. This vulnerability has a high impact on integrity, while confidentiality and...

6.5CVSS5.8AI score0.00181EPSS
Exploits0References3
EUVD
EUVD
added 2026/04/14 12:7 a.m.12 views

EUVD-2026-22152

Due to missing authorization checks in the SAP S/4HANA frontend OData Service Manage Reference Structures, an attacker could update and delete child entities via exposed OData services without proper authorization. This vulnerability has a high impact on integrity, while confidentiality and...

6.5CVSS5.8AI score0.00181EPSS
Exploits0References2
CVE
CVE
added 2026/04/14 12:7 a.m.8 views

CVE-2026-27678

CVE-2026-27678 affects SAP S/4HANA backend OData Service (Manage Reference Structures); missing authorization checks allow updating and deleting child entities via exposed OData. Impact: integrity high; no confidentiality/availability impact. See SAP notes and security patch day for mitigations.

6.5CVSS5.8AI score0.00181EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/14 12:7 a.m.2 views

CVE-2026-27678

Due to missing authorization checks in the SAP S/4HANA backend OData Service Manage Reference Structures, an attacker could update and delete child entities via exposed OData services without proper authorization. This vulnerability has a high impact on integrity, while confidentiality and...

6.5CVSS5.8AI score0.00181EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/14 12:7 a.m.24 views

CVE-2026-27678 Missing Authorization check in SAP S/4HANA Backend OData Service (Manage Reference Structures)

Due to missing authorization checks in the SAP S/4HANA backend OData Service Manage Reference Structures, an attacker could update and delete child entities via exposed OData services without proper authorization. This vulnerability has a high impact on integrity, while confidentiality and...

6.5CVSS0.00181EPSS
Exploits0References2
EUVD
EUVD
added 2026/04/14 12:7 a.m.8 views

EUVD-2026-22150

Due to missing authorization checks in the SAP S/4HANA backend OData Service Manage Reference Structures, an attacker could update and delete child entities via exposed OData services without proper authorization. This vulnerability has a high impact on integrity, while confidentiality and...

6.5CVSS5.8AI score0.00181EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/04/14 12:7 a.m.24 views

CVE-2026-27677 Missing Authorization check in SAP S/4HANA OData Service (Manage Reference Equipment)

Due to missing authorization checks in the SAP S/4HANA OData Service Manage Reference Equipment, an attacker could update and delete child entities via OData services without proper authorization. This vulnerability has a high impact on integrity, while confidentiality and availability are not...

6.5CVSS0.00181EPSS
Exploits0References2
CVE
CVE
added 2026/04/14 12:7 a.m.13 views

CVE-2026-27677

The CVE affects SAP S/4HANA OData Service (Manage Reference Equipment). Missing authorization checks allow an attacker to update and delete child entities via OData, leading to integrity impact with no confidentiality or availability effects. Reported under CVSS 3.1: Network vector, Low attack co...

6.5CVSS5.8AI score0.00181EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/14 12:7 a.m.2 views

CVE-2026-27677 Missing Authorization check in SAP S/4HANA OData Service (Manage Reference Equipment)

Due to missing authorization checks in the SAP S/4HANA OData Service Manage Reference Equipment, an attacker could update and delete child entities via OData services without proper authorization. This vulnerability has a high impact on integrity, while confidentiality and availability are not...

6.5CVSS5.8AI score0.00181EPSS
Exploits0References2
Rows per page
Query Builder