CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13182 matches found

CVE•added 2026/06/03 4:9 p.m.•18 views

CVE-2026-20230

Cisco Unified Communications Manager (Unified CM) and Unified CM Session Management Edition (Unified CM SME) are affected by a server-side request forgery (SSRF) vulnerability arising from improper input validation of certain HTTP requests. An unauthenticated, remote attacker could send a crafted...

8.6CVSS5.8AI score0.00566EPSS

Exploits1References1

Cvelist•added 2026/06/03 4:9 p.m.•29 views

CVE-2026-20230

A vulnerability in Cisco Unified Communications Manager Unified CM and Cisco Unified Communications Manager Session Management Edition Unified CM SME could allow an unauthenticated, remote attacker to conduct server-side request forgery SSRF attacks through an affected device. This vulnerability ...

8.6CVSS0.00566EPSS

Exploits1References1

NVD•added 2026/06/03 1:16 p.m.•10 views

CVE-2026-35084

A remote attacker with user privileges can exploit a stack buffer overflow in dali-devconfig to gain full system access as root...

8.8CVSS0.00407EPSS

Exploits0References1

NVD•added 2026/06/03 1:16 p.m.•14 views

CVE-2026-35085

A remote attacker with user privileges can exploit a stack buffer overflow in gdv-serverconfig to gain full system access as root...

8.8CVSS0.00424EPSS

Exploits0References1

NVD•added 2026/06/03 1:16 p.m.•9 views

CVE-2026-35083

A remote attacker with user privileges can exploit a stack buffer overflow to gain full system access as root...

8.8CVSS0.00415EPSS

Exploits0References1

NVD•added 2026/06/03 1:16 p.m.•5 views

CVE-2025-41259

SWUpdate before 2026.05 is affected by a time-of-check time-of-use TOCTOU race condition that allows local unprivileged attackers to escalate privileges to root or install untrusted contents using a signed update...

7.3CVSS0.00101EPSS

Exploits0References3

OSV•added 2026/06/03 1:16 p.m.•4 views

DEBIAN-CVE-2025-41259

7.3CVSS5.4AI score0.00101EPSS

Exploits0References1

CVE•added 2026/06/03 11:1 a.m.•14 views

CVE-2025-41259

SWUpdate (affected before 2026.05) suffers a TOCTOU race in the signed update process, enabling local unprivileged users to escalate to root or install untrusted contents. No exploitation vectors are detailed beyond this description; remediation/version details are not explicitly stated in the pr...

7.3CVSS5.8AI score0.00101EPSS

Exploits0References3

EUVD•added 2026/06/03 11:1 a.m.•10 views

EUVD-2025-210052

7.3CVSS5.8AI score0.00101EPSS

Exploits0References3

Debian CVE•added 2026/06/03 11:1 a.m.•5 views

CVE-2025-41259

7.3CVSS5.4AI score0.00101EPSS

Exploits0

CVE•added 2026/06/03 10:42 a.m.•8 views

CVE-2026-35085

CVE-2026-35085 describes a stack buffer overflow in gdv-serverconfig that can be exploited by a remote attacker authenticated with user privileges to achieve full system access as root. The CVE is rated HIGH (CVSS 4.0: 8.7) with NETWORK attack vector, low complexity, and requires low privileges; ...

8.8CVSS6AI score0.00424EPSS

Exploits0References1Affected Software1

EUVD•added 2026/06/03 10:42 a.m.•8 views

EUVD-2026-34081

A remote attacker with user privileges can exploit a stack buffer overflow in gdv-serverconfig to gain full system access as root...

8.8CVSS6AI score0.00424EPSS

Exploits0References1

Vulnrichment•added 2026/06/03 10:42 a.m.•6 views

CVE-2026-35085 Stack buffer overflow in method gdv-serverconfig

A remote attacker with user privileges can exploit a stack buffer overflow in gdv-serverconfig to gain full system access as root...

8.8CVSS6AI score0.00424EPSS

Exploits0References1

Cvelist•added 2026/06/03 10:42 a.m.•37 views

CVE-2026-35085 Stack buffer overflow in method gdv-serverconfig

A remote attacker with user privileges can exploit a stack buffer overflow in gdv-serverconfig to gain full system access as root...

8.8CVSS0.00424EPSS

Exploits0References1

ATTACKERKB•added 2026/06/03 10:42 a.m.•7 views

CVE-2026-35085

A remote attacker with user privileges can exploit a stack buffer overflow in gdv-serverconfig to gain full system access as root...

8.8CVSS6AI score0.00424EPSS

Exploits0References2

CVE•added 2026/06/03 10:42 a.m.•9 views

CVE-2026-35084

A stack buffer overflow in the component dali-devconfig can be exploited remotely to escalate privileges. The vulnerability allows a remote attacker with user privileges to obtain full system access as root. The linked CVSS metrics indicate a high-severity issue (CVSS v4.0 base score 8.7; CVSS v3...

8.8CVSS6AI score0.00407EPSS

Exploits0References1Affected Software1

Cvelist•added 2026/06/03 10:42 a.m.•39 views

CVE-2026-35084 Stack buffer overflow in method dali-devconfig

A remote attacker with user privileges can exploit a stack buffer overflow in dali-devconfig to gain full system access as root...

8.8CVSS0.00407EPSS

Exploits0References1

ATTACKERKB•added 2026/06/03 10:42 a.m.•4 views

CVE-2026-35084

A remote attacker with user privileges can exploit a stack buffer overflow in dali-devconfig to gain full system access as root...

8.8CVSS6AI score0.00407EPSS

Exploits0References2