Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

16963 matches found

ATTACKERKB
ATTACKERKBadded 2026/06/04 2:55 a.m.6 views

CVE-2026-49185

The FieldX MDM adb messaging topic passes unverified payloads directly into Runtime.exec, allowing command/instruction injection...

10CVSS5.8AI score0.00387EPSS
Exploits0References2
EUVD
EUVDadded 2026/06/04 2:55 a.m.12 views

EUVD-2026-34199

The FieldX MDM adb messaging topic passes unverified payloads directly into Runtime.exec, allowing command/instruction injection...

10CVSS5.8AI score0.00387EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/06/04 2:55 a.m.7 views

CVE-2026-49185 Instruction Injection via FieldX MDM

The FieldX MDM adb messaging topic passes unverified payloads directly into Runtime.exec, allowing command/instruction injection...

10CVSS5.8AI score0.00387EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/06/04 2:55 a.m.36 views

CVE-2026-49185 Instruction Injection via FieldX MDM

The FieldX MDM adb messaging topic passes unverified payloads directly into Runtime.exec, allowing command/instruction injection...

10CVSS0.00387EPSS
Exploits0References1
CVE
CVEadded 2026/06/04 2:55 a.m.19 views

CVE-2026-49185

The CVE-2026-49185 entry concerns FieldX MDM where the adb messaging topic passes unverified payloads directly into Runtime.exec(), enabling command/instruction injection. Affected component: adb messaging topic within FieldX MDM; root cause is unverified payloads executed via Runtime.exec(). Imp...

10CVSS5.8AI score0.00387EPSS
Exploits0References1Affected Software1
SUSE CVE
SUSE CVEadded 2026/06/04 2:24 a.m.7 views

SUSE CVE-2026-42342

React Router is a router for React. In versions 7.0.0 through 7.14.x of react-router and versions 2.10.0 through 2.17.4 of @remix-run/server-runtime, certain crafted requests can consume disproportionate server resources via unbounded path expansion in the manifest endpoint, resulting in response...

7.5CVSS5.8AI score0.00299EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/06/04 12:0 a.m.5 views

CVE-2026-36180

A lack of runtime integrity in GNCC GP5 v7.1.76 allows physically-proximate attackers to bypass file system read-only protections and modify system files and binaries for the duration of a boot session via a bind-mount attack...

5.8AI score0.00158EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2026/06/04 12:0 a.m.13 views

PT-2026-46140

The FieldX MDM adb messaging topic passes unverified payloads directly into Runtime.exec, allowing command/instruction injection...

10CVSS5.8AI score0.00387EPSS
Exploits0References2
EUVD
EUVDadded 2026/06/04 12:0 a.m.10 views

EUVD-2026-34281

A lack of runtime integrity in GNCC GP5 v7.1.76 allows physically-proximate attackers to bypass file system read-only protections and modify system files and binaries for the duration of a boot session via a bind-mount attack...

5.8AI score0.00158EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/06/04 12:0 a.m.15 views

PT-2026-46313

Name of the Vulnerable Software and Affected Versions SQLite sqldiff.exe versions prior to 2025-12-26 Description The sqldiff.exe utility does not securely handle the conversion of Unicode characters to ANSI codepages by the Microsoft Windows C runtime. An attacker can exploit this by using the...

9.8CVSS5.7AI score0.00384EPSS
Exploits0References10
Positive Technologies
Positive Technologiesadded 2026/06/04 12:0 a.m.14 views

PT-2026-46247

Name of the Vulnerable Software and Affected Versions GNCC GP5 version 7.1.76 Description A lack of runtime integrity allows physically-proximate attackers to bypass file system read-only protections. This enables the modification of system files and binaries for the duration of a boot session...

4.6CVSS5.4AI score0.00158EPSS
Exploits0References6
CNNVD
CNNVDadded 2026/06/04 12:0 a.m.4 views

Acer M6E 安全漏洞

The Acer M6E is a portable 5G mobile hotspot device from Acer, a company based in Taiwan, China. The Acer M6E has a security vulnerability, which stems from the FieldX MDM adb messaging topic directly passing unvalidated payloads to Runtime.exec, potentially leading to command injection...

10CVSS5.4AI score0.00387EPSS
Exploits0References1
CNNVD
CNNVDadded 2026/06/04 12:0 a.m.4 views

SQLite sqldiff 安全漏洞

SQLite sqldiff is an open-source SQLite database difference comparison tool developed by SQLite. SQLite sqldiff has a security vulnerability, which stems from the improper handling of Unicode characters during the conversion to ANSI code pages at the Windows C runtime. Attackers can load arbitrar...

9.8CVSS5.5AI score0.00384EPSS
Exploits0References5
CNNVD
CNNVDadded 2026/06/04 12:0 a.m.3 views

GNCC GP5 安全漏洞

GNCC GP5 is a 2K indoor security camera produced by GNCC Corporation. The GNCC GP5 v7.1.76 version contains a security vulnerability. This vulnerability stems from a lack of runtime integrity checks, which may allow physical proximity attackers to bypass the file system’s read-only protection and...

4.6CVSS5.2AI score0.00158EPSS
Exploits0References3
EUVD
EUVDadded 2026/06/03 9:5 p.m.11 views

EUVD-2026-34000

React Router vulnerable to DoS via unbounded path expansion in manifest endpoint...

7.5CVSS5.8AI score0.00299EPSS
Exploits0References2
NVD
NVDadded 2026/06/03 7:16 p.m.10 views

CVE-2026-8879

Version 3.0.7 of the Securly Chrome Extension dynamically registers content13.min.js as a content script via chrome.scripting.registerContentScripts at runtime. This script is NOT declared in manifest.json and bypasses Chrome Web Store static security review. It runs on all URLs and immediately...

7.5CVSS0.00374EPSS
Exploits0References1
CVE
CVEadded 2026/06/03 6:11 p.m.9 views

CVE-2026-8879

CVE-2026-8879 affects Securly Chrome Extension v3.0.7. The vulnerability stems from dynamically registering content13.min.js as a content script at runtime via chrome.scripting.registerContentScripts(), a script not declared in manifest.json that bypasses the Chrome Web Store static security revi...

7.5CVSS5.8AI score0.00374EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2026/06/03 6:11 p.m.34 views

CVE-2026-8879 CVE-2026-8879

Version 3.0.7 of the Securly Chrome Extension dynamically registers content13.min.js as a content script via chrome.scripting.registerContentScripts at runtime. This script is NOT declared in manifest.json and bypasses Chrome Web Store static security review. It runs on all URLs and immediately...

0.00374EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/06/03 6:11 p.m.5 views

CVE-2026-8879

Version 3.0.7 of the Securly Chrome Extension dynamically registers content13.min.js as a content script via chrome.scripting.registerContentScripts at runtime. This script is NOT declared in manifest.json and bypasses Chrome Web Store static security review. It runs on all URLs and immediately...

5.8AI score0.00374EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/06/03 6:11 p.m.9 views

CVE-2026-8879 CVE-2026-8879

Version 3.0.7 of the Securly Chrome Extension dynamically registers content13.min.js as a content script via chrome.scripting.registerContentScripts at runtime. This script is NOT declared in manifest.json and bypasses Chrome Web Store static security review. It runs on all URLs and immediately...

5.8AI score0.00374EPSS
Exploits0References1
Rows per page
Query Builder