CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 3 hours ago•2 views

CVE-2026-42999

A flaw was found in OpenStack Keystone. This vulnerability allows an authenticated user to bypass Role-Based Access Control RBAC checks by injecting arbitrary policy target attributes into the request body. This enables the user to perform unauthorized operations on resources belonging to other...

8.8CVSS5.9AI score0.00041EPSS

Exploits1References5

RedhatCVE•added 3 hours ago•3 views

CVE-2026-47265

A flaw was found in AIOHTTP, an asynchronous HTTP client/server framework for asyncio and Python. This vulnerability allows a remote attacker to potentially gain access to sensitive information. When a developer uses the cookies parameter on a per-request basis, cookies are sent after following a...

8.7CVSS5.7AI score0.00019EPSS

Exploits0References5

RedhatCVE•added yesterday•4 views

CVE-2026-10215

A security vulnerability has been detected in Dolibarr ERP CRM up to 23.0.1. Impacted is the function checkUserAccessToObject of the file htdocs/holiday/class/apiholidays.class.php of the component Leave Request REST API. The manipulation leads to improper authorization. The attack may be initiat...

5.3CVSS5.3AI score0.00038EPSS

OSV•added yesterday•1 views

GHSA-HG6J-4RV6-33PG AIOHTTP is vulnerable to cross-origin redirect with per-request cookies

Summary Cookies set with the cookies parameter on requests are sent after following a cross-origin redirect. Impact If a developer uses the cookies parameter on a per-request basis then sensitive data might be leaked to an attacker if they manage to control a redirect. Workaround If unable to...

8.7CVSS5.8AI score0.00019EPSS

Exploits0References4

Github Security Blog•added yesterday•2 views

AIOHTTP is vulnerable to cross-origin redirect with per-request cookies

8.7CVSS5.8AI score0.00019EPSS

Exploits0References4Affected Software1

EUVD•added yesterday•4 views

EUVD-2026-34177

A vulnerability has been found in mlrun up to 1.12.0-rc3. This impacts the function mlrun.utils.helpers.calculatedataframehash of the file mlrun/utils/helpers.py of the component DataFrame Hash Handler. The manipulation leads to use of weak hash. The attack can only be performed from a local...

3.6CVSS4.7AI score

Exploits0References7

Metasploit•added yesterday•16 views

Gogs Git Rebase Argument Injection RCE

This module exploits an argument injection vulnerability in the pull request merge flow of Gogs is parsed by Git as the --exec flag rather than a positional argument, causing sh -c to run after each replayed commit during the rebase. Two exploitation methods are supported: - ownrepo: The attacker...

5.9AI score

Exploits0

NVD•added yesterday•4 views

CVE-2026-46247

In the Linux kernel, the following vulnerability has been resolved: clk: qcom: gfx3d: add parent to parent request map After commit d228ece36345 "clk: divider: remove roundrate in favor of determinerate" determining GFX3D clock rate crashes, because the passed parent map doesn't provide the...

ATTACKERKB•added yesterday•1 views

CVE-2026-45702

OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Starting in version 4.3.0 and prior to version 4.11.0, a type confusion vulnerability exists in OP-TEE OS when processing an FFAMEMSHARE...

4.4CVSS5.8AI score

Exploits0References2Affected Software1

NVD•added yesterday•3 views

CVE-2026-36576

An OS command injection vulnerability in the app.py component of openlabs docker-wkhtmltopdf-aas up to commit 9f50579 allows attackers to execute arbitrary commands via a crafted POST request...

9.8CVSS

Exploits0References4

ATTACKERKB•added yesterday•1 views

CVE-2026-20230

A vulnerability in Cisco Unified Communications Manager Unified CM and Cisco Unified Communications Manager Session Management Edition Unified CM SME could allow an unauthenticated, remote attacker to conduct server-side request forgery SSRF attacks through an affected device. This vulnerability ...

8.6CVSS5.8AI score

Exploits0References2

CVE•added yesterday•6 views

CVE-2026-20175

CVE-2026-20175 – Cisco Finesse remote file inclusion vulnerability. An unauthenticated, remote attacker can load arbitrary files into an active user session by sending a crafted HTTP request, potentially enabling browser‑based attacks and execution of script code or access to sensitive informatio...

6.1CVSS6.1AI score

RedhatCVE•added yesterday•1 views

CVE-2026-10264

A vulnerability was determined in lharries whatsapp-mcp 0.0.1. Affected by this vulnerability is the function SendMessageRequest of the file whatsapp-bridge/main.go of the component Send API Endpoint. This manipulation of the argument mediaPath causes path traversal. The exploit has been publicly...

5.1CVSS5.3AI score0.00021EPSS

CVE•added yesterday•4 views

CVE-2026-46270

The CVE concerns the Linux kernel power subsystem: rt9455 power: supply use-after-free in power_supply_changed(). The race occurs when the devm IRQ is requested before the devm power_supply handle is registered, causing the IRQ handler to run after the power_supply has been freed but before the I...

EUVD•added yesterday•3 views

Exploits0References8

EUVD-2026-34109

Cvelist•added yesterday•9 views

CVE-2026-46247 clk: qcom: gfx3d: add parent to parent request map

ATTACKERKB•added yesterday•2 views

CVE-2026-46247

Exploits0References7Affected Software1

CVE•added yesterday•4 views

CVE-2026-46247

The CVE affects the Linux kernel clk/qcom gfx3d path. The root cause was that determining the GFX3D clock rate could crash because the passed parent map did not provide the expected best_parent_hw clock after a prior change. The fix adds the parent field to the parent_req structure in addition to...

EUVD•added yesterday•2 views

EUVD-2026-34108

In the Linux kernel, the following vulnerability has been resolved: power: supply: pm8916lbc: Fix use-after-free for extcon in IRQ handler Using the devm variant for requesting IRQ before the devm variant for allocating/registering the extcon handle, means that the extcon handle will be...