Lucene search
K

17025 matches found

Ubuntu
Ubuntu
added 2026/06/10 1:49 p.m.10 views

USN-8419-1: HTTP-Daemon vulnerability

It was discovered that HTTP-Daemon incorrectly handled untrusted input under certain circumstances. A remote attacker could possibly use this issue to execute arbitrary commands, create or overwrite arbitrary files, or expose sensitive information...

9.1CVSS5.9AI score0.01231EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/10 12:39 p.m.34 views

CVE-2026-52751 Ghidra < 12.1 - Remote Code Execution via Unfiltered RMI Deserialization in Shared Project Connection

Ghidra before 12.1 contains an unsafe deserialization vulnerability in client-side Shared-Project RMI connection code that allows unauthenticated remote code execution. Attackers can craft a malicious project file with a ghidra:// URL that, when opened via File → Open Project, deserializes...

8.8CVSS0.0071EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2026/06/10 12:31 p.m.13 views

Critical: Red Hat Security Advisory: samba security update

An update for samba is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

9.8CVSS6AI score0.12797EPSS
Exploits9References7
IBM Security Bulletins
IBM Security Bulletins
added 2026/06/10 10:0 a.m.17 views

Security Bulletin: IBM Tivoli Composite Application Manager for Application Diagnostics installed IBM WebSphere Application Server traditional is affected by remote code execution.

Summary The security issue described in CVE-2026-9330 and CVE-2026-9311 as been identified in the WebSphere Application Server included as part of IBM Tivoli Composite Application Manager for Application Diagnostics. Vulnerability Details Refer to the security bulletins listed in the...

9CVSS5.4AI score0.00508EPSS
Exploits0Affected Software1
NVD
NVD
added 2026/06/10 4:17 a.m.12 views

CVE-2025-66279

A command injection vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to execute arbitrary commands. We have already fixed the vulnerability in the following versions: QTS...

8.6CVSS0.01049EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/10 3:14 a.m.11 views

EUVD-2026-35977

A command injection vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to execute arbitrary commands. We have already fixed the vulnerability in the following versions: QTS...

8.6CVSS6AI score0.00977EPSS
Exploits0References1
CVE
CVE
added 2026/06/10 3:14 a.m.45 views

CVE-2026-24719

CVE-2026-24719 affects QNAP operating systems QTS and QuTS hero. Description: a command-injection vulnerability that can be exploited by an attacker who has obtained an administrator account to execute arbitrary commands. Affected versions include QTS 5.2.9.3492 build 20260507 and later, and QuTS...

8.6CVSS6AI score0.00977EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichment
added 2026/06/10 3:6 a.m.8 views

CVE-2026-22893 QTS, QuTS hero

A command injection vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to execute arbitrary commands. We have already fixed the vulnerability in the following versions: QTS...

8.6CVSS6AI score0.00988EPSS
Exploits0References1
CVE
CVE
added 2026/06/10 3:4 a.m.39 views

CVE-2025-66273

CVE-2025-66273 is a command-injection vulnerability affecting several QNAP OS versions. If an attacker gains an administrator account, they can execute arbitrary commands. Fixed in QTS 5.2.9.3410 build 20260214 and later, QuTS hero h5.2.9.3410 build 20260214 and later, QuTS hero h5.3.4.3500 build...

8.6CVSS6AI score0.01049EPSS
Exploits0References1Affected Software2
CNNVD
CNNVD
added 2026/06/10 12:0 a.m.16 views

QNAP Systems QTS和QNAP Systems QuTS hero 操作系统命令注入漏洞

QNAP Systems QTS and QNAP Systems QuTS hero are software products with data storage and management functions developed by QNAP Systems, a company based in Taiwan, China. Both products have an operating system command injection vulnerability. This vulnerability stems from command injection, which...

8.6CVSS6AI score0.01049EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/10 12:0 a.m.16 views

QNAP Systems QTS和QNAP Systems QuTS hero 操作系统命令注入漏洞

QNAP Systems QTS and QNAP Systems QuTS hero are software products with data storage and management functions developed by QNAP Systems, a company based in Taiwan, China. Both products have an operating system command injection vulnerability. This vulnerability stems from command injection, which...

8.6CVSS6AI score0.01049EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2026/06/10 12:0 a.m.15 views

VulnCheck KEV: CVE-2026-10520

An OS Command Injection vulnerability in Ivanti Sentry before the R10.5.2, R10.6.2 and R10.7.1 versions allows a remote unauthenticated user to achieve root-level remote code execution...

10CVSS6.6AI score0.99041EPSS
In wildExploits6References23
Cvelist
Cvelist
added 2026/06/09 5:5 p.m.37 views

CVE-2026-45599 Windows UPnP Device Host Remote Code Execution Vulnerability

...

8.1CVSS0.0052EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/09 5:5 p.m.8 views

CVE-2026-45457 Microsoft Word Remote Code Execution Vulnerability

...

7.8CVSS5.4AI score0.00372EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/09 5:5 p.m.39 views

CVE-2026-47654 Remote Desktop Client Remote Code Execution Vulnerability

...

7.5CVSS0.0055EPSS
Exploits0References1
CVE
CVE
added 2026/06/09 5:4 p.m.144 views

CVE-2026-45583

CVE-2026-45583 involves Microsoft Exchange Server and is described as an improper control of generation of code (code injection) that enables an unauthenticated attacker to execute code over the network. The CVSS 3.1 base score is 7.5 (HIGH) with NETWORK attack vector, HIGH impact on confidential...

8.1CVSS5.7AI score0.00475EPSS
Exploits0References1Affected Software2
Microsoft CVE
Microsoft CVE
added 2026/06/09 2:0 p.m.10 views

Windows UPnP Device Host Remote Code Execution Vulnerability

Use after free in Universal Plug and Play upnp.dll allows an unauthorized attacker to execute code over a network...

8.1CVSS5.7AI score0.0052EPSS
Exploits0
EUVD
EUVD
added 2026/06/09 12:33 a.m.14 views

EUVD-2026-35249

Use after free in V8 in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00314EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/09 12:33 a.m.10 views

EUVD-2026-35250

Use after free in V8 in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00314EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2026/06/09 12:31 a.m.63 views

Exploit for Code Injection in Flowiseai Flowise

CVE-2025-59528: Flowise CustomMCP Remote Code Exe...

10CVSS7.7AI score0.90183EPSS
Exploits21
Rows per page
Query Builder