Lucene search
+L

4450 matches found

NVD
NVD
added 2026/03/10 6:18 p.m.6 views

CVE-2026-30897

A stack-based buffer overflow vulnerability in Fortinet FortiWeb 8.0.0 through 8.0.3, FortiWeb 7.6.0 through 7.6.6, FortiWeb 7.4.0 through 7.4.11, FortiWeb 7.2 all versions, FortiWeb 7.0 all versions may allow a remote authenticated attacker who can bypass stack protection and ASLR to execute...

6.6CVSS0.00632EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/10 4:44 p.m.3 views

CVE-2025-48418

A hidden functionality vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.3, FortiAnalyzer 7.4.0 through 7.4.7, FortiAnalyzer 7.2.0 through 7.2.10, FortiAnalyzer 7.0.0 through 7.0.14, FortiAnalyzer 6.4 all versions, FortiAnalyzer Cloud 7.6.2, FortiAnalyzer Cloud 7.4.1 through 7.4.7,...

6.7CVSS5.8AI score0.0052EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/10 12:0 a.m.7 views

PT-2026-24229

A hidden functionality vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.3, FortiAnalyzer 7.4.0 through 7.4.7, FortiAnalyzer 7.2.0 through 7.2.10, FortiAnalyzer 7.0.0 through 7.0.14, FortiAnalyzer 6.4 all versions, FortiAnalyzer Cloud 7.6.2, FortiAnalyzer Cloud 7.4.1 through 7.4.7,...

7.2CVSS5.8AI score0.0052EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/03/08 2:2 p.m.3 views

CVE-2026-3739

A security flaw has been discovered in suitenumerique messages 0.2.0. This issue affects the function ThreadAccessSerializer of the file src/backend/core/api/serializers.py of the component ThreadAccess. The manipulation results in improper authentication. The attack can be executed remotely. The...

6.5CVSS5.5AI score0.00319EPSS
Exploits0References8Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/08 12:0 a.m.7 views

PT-2026-23944

A security flaw has been discovered in suitenumerique messages 0.2.0. This issue affects the function ThreadAccessSerializer of the file src/backend/core/api/serializers.py of the component ThreadAccess. The manipulation results in improper authentication. The attack can be executed remotely. The...

6.5CVSS5.5AI score0.00319EPSS
Exploits0References9
GithubExploit
GithubExploit
added 2026/03/05 2:40 a.m.214 views

Exploit for Improper Authentication in Cisco Catalyst_Sd-Wan_Manager

CVE-2026‑20127 – Remote Authentication Bypass for Cisco Cataly...

10CVSS6.5AI score0.57793EPSS
Exploits10
RedhatCVE
RedhatCVE
added 2026/03/04 1:56 a.m.7 views

CVE-2026-23600

A remote authentication bypass vulnerability exists in HPE AutoPass License Server APLS...

10CVSS6AI score0.00953EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/03/03 9:29 a.m.2 views

Astra Linux – Vulnerability in inetutils

In GNU Inetutils, telnetd in version 2.7 allows remote authentication bypass by using the -f root value for the USER environment variable...

9.8CVSS7.5AI score0.98871EPSS
Exploits62References3
CVE
CVE
added 2026/03/03 12:0 a.m.14 views

CVE-2023-31044

Summary: CVE-2023-31044 affects Nokia Impact prior to Mobile 23_FP1. In Impact DM 19.11 and later, a remote authenticated user can exploit the Add Campaign function to inject a malicious payload within the Campaign Name. When exported to CSV, those payloads may execute via spreadsheet software, e...

8.8CVSS6AI score0.00237EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/03 12:0 a.m.13 views

PT-2026-22762

An issue was discovered in Nokia Impact before Mobile 23 FP1. In Impact DM 19.11 onwards, a remote authenticated user, using the Add Campaign functionality, can inject a malicious payload within the Campaign Name. This data can be exported to a CSV file. Attackers can populate data fields that ma...

2CVSS6AI score0.00237EPSS
Exploits0References3
NVD
NVD
added 2026/03/02 3:16 p.m.6 views

CVE-2026-23600

A remote authentication bypass vulnerability exists in HPE AutoPass License Server APLS...

10CVSS0.00953EPSS
Exploits0References1
CVE
CVE
added 2026/03/02 2:18 p.m.15 views

CVE-2026-23600

CVE-2026-23600 affects Hewlett Packard Enterprise AutoPass License Server (APLS). The vulnerability is a remote authentication bypass in the web service (port 5814 by default) where improper authentication prior to access enables misuse. Multiple sources (ZDI advisory) describe the flaw as an aut...

10CVSS6AI score0.00953EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/02 2:18 p.m.8 views

EUVD-2026-9179

A remote authentication bypass vulnerability exists in HPE AutoPass License Server APLS...

10CVSS6AI score0.00953EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/02 2:18 p.m.19 views

CVE-2026-23600

A remote authentication bypass vulnerability exists in HPE AutoPass License Server APLS...

10CVSS0.00953EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/02 2:18 p.m.2 views

CVE-2026-23600

A remote authentication bypass vulnerability exists in HPE AutoPass License Server APLS...

10CVSS6AI score0.00953EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/02 2:18 p.m.2 views

CVE-2026-23600

A remote authentication bypass vulnerability exists in HPE AutoPass License Server APLS...

10CVSS6AI score0.00953EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/02 12:0 a.m.13 views

PT-2026-22593

Name of the Vulnerable Software and Affected Versions HPE AutoPass License Server APLS affected versions not specified Description A remote authentication bypass issue exists in HPE AutoPass License Server. This allows unauthorized access. No information is available regarding the number of...

10CVSS6AI score0.00953EPSS
Exploits0References11
CNNVD
CNNVD
added 2026/03/02 12:0 a.m.8 views

HPE AutoPass License Server 安全漏洞

HPE AutoPass License Server is a license management system developed by the American company HPE. There is a security vulnerability in HPE AutoPass License Server, which stems from a bypass of remote authentication...

10CVSS7.4AI score0.00953EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/27 12:41 a.m.27 views

CVE-2026-3192

A security vulnerability has been detected in Chia Blockchain 2.1.0. This issue affects the function authenticate of the file rpcserverbase.py of the component RPC Credential Handler. The manipulation leads to improper authentication. The attack is possible to be carried out remotely. The attack ...

8.1CVSS4.8AI score0.00561EPSS
Exploits1References1
Packet Storm
Packet Storm
added 2026/02/26 12:0 a.m.186 views

📄 telnetd Environment Variable Bypass

It has been discovered that telnetd has further bypass issues relating to environment variables that can achieve remote root. For 27 years, this issue persists. From: Justin Swartz Date: Tue, 24 Feb 2026 03:17:02 +0200 Greetings, I have been reviewing the recent vulnerability report by Ron Ben...

10CVSS5.5AI score0.98871EPSS
Exploits62
Rows per page
Query Builder