CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

508 matches found

Linux Distros Unpatched Vulnerability : CVE-2026-9549

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Stored cross-site scripting in the service discovery active check output in Checkmk 2.5.0p5, 2.4.0p31, 2.3.0p48, and all 2.2.0 versions allows an administrator...

4.8CVSS5.2AI score0.00023EPSS

Exploits0References2

RedhatCVE•added 4 days ago•6 views

CVE-2026-9549

Stored cross-site scripting in the service discovery active check output in Checkmk 2.5.0p5, 2.4.0p31, 2.3.0p48, and all 2.2.0 versions allows an administrator who can configure active or custom checks to inject malicious HTML or JavaScript into check output that executes in the browser of an adm...

4.8CVSS5.2AI score0.00023EPSS

Exploits0References1

Microsoft KB•added 4 days ago•29 views

May 12, 2026—Hotpatch KB5087423 (OS Build 26100.32772)

May 12, 2026—Hotpatch KB5087423 OS Build 26100.32772 This update applies to Windows Server 2025 Datacenter & Standard machines connected to Azure Arc. To learn more about differences between security updates, optional non-security preview updates, out-of-band OOB updates, and continuous innovatio...

9.8CVSS7.3AI score0.66232EPSS

Exploits62

NVD•added 5 days ago•10 views

CVE-2026-9549

4.8CVSS0.00023EPSS

Exploits0References1

OSV•added 5 days ago•2 views

UBUNTU-CVE-2026-9549

4.8CVSS5.2AI score0.00023EPSS

Exploits0References3

ATTACKERKB•added 5 days ago•4 views

CVE-2026-9549

4.8CVSS5.2AI score0.00023EPSS

Exploits0References2Affected Software1

Cvelist•added 5 days ago•38 views

CVE-2026-9549 Fix XSS in service discovery active check output

4.8CVSS0.00023EPSS

Exploits0References1

EUVD•added 5 days ago•6 views

EUVD-2026-35054

4.8CVSS5.2AI score0.00023EPSS

Exploits0References1

Vulnrichment•added 5 days ago•4 views

CVE-2026-9549 Fix XSS in service discovery active check output

4.8CVSS5.2AI score0.00023EPSS

Exploits0References1

CVE•added 5 days ago•14 views

CVE-2026-9549

Technical details are not publicly available in the provided documents. Monitor for updates.

4.8CVSS5.2AI score0.00023EPSS

Exploits0References1Affected Software1

Positive Technologies•added 5 days ago•6 views

PT-2026-47288

4.8CVSS5.2AI score0.00023EPSS

Exploits0References2

Tenable Nessus•added 2026/06/06 12:0 a.m.•4 views

EulerOS Virtualization 2.10.0 : avahi (EulerOS-SA-2026-2042)

According to the versions of the avahi package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protocol suite. In 0.9-rc2 and earlier, ...

6.5CVSS5.6AI score0.00061EPSS

Exploits1References5

Tenable Nessus•added 2026/06/06 12:0 a.m.•5 views

EulerOS Virtualization 2.10.1 : avahi (EulerOS-SA-2026-2015)

6.5CVSS5.6AI score0.00061EPSS

Exploits1References5

Vulnrichment•added 2026/06/02 9:22 p.m.•6 views

CVE-2024-14036 Dräger Core 1.0.5 Denial of Service via Malformed SDC Message

Dräger Core 1.0.5 and Dräger M540 Converter Service 1.0.9 contain a denial of service vulnerability that allows network-adjacent attackers to trigger high CPU load by sending specially crafted, unencrypted SDC messages during the discovery process. Attackers with access to the hospital network ca...

8.7CVSS5.8AI score0.00052EPSS

Exploits0References2

RedhatCVE•added 2026/05/09 2:21 a.m.•5 views

CVE-2026-8122

A vulnerability was found in Open5GS up to 2.7.7. This affects the function ogssbidiscoveryoptionaddservicenames in the library /lib/sbi/message.c of the component NSSF. The manipulation results in denial of service. The attack may be performed from remote. The exploit has been made public and...

6.5CVSS5.3AI score0.00071EPSS

Exploits1References1

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux – Vulnerability in bluez

In BlueZ before version 5.55, a double-free error was detected in the gatttool disconnectcb routine from the shared/att.c file. A remote attacker could potentially cause a denial of service or code execution during service discovery, due to the redundant disconnect MGMT event...

8.6CVSS8AI score0.0244EPSS

Exploits0References2

Vulnrichment•added 2026/04/22 1:46 p.m.•2 views

CVE-2026-33599 Out-of-bounds read in service discovery

A rogue backend can send a crafted SVCB response to a Discovery of Designated Resolvers request, when requested via either the autoUpgrade Lua option to newServer or autoupgrade YAML settings. DDR upgrade is not enabled by default...

3.1CVSS5.8AI score0.00003EPSS

Exploits0References1

CVE•added 2026/04/22 1:46 p.m.•11 views

CVE-2026-33599

CVE-2026-33599 describes a vulnerability in PowerDNS DNSdist where a rogue backend can send a crafted SVCB response to a Discovery of Designated Resolvers request when triggered via the autoUpgrade (Lua) option to newServer or the auto_upgrade (YAML) setting. DDR upgrade is not enabled by default...

8.1CVSS5.8AI score0.00003EPSS

Exploits0References1Affected Software1