CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Positive Technologies•added 19 hours ago•4 views

PT-2026-46224

5.3CVSS5.8AI score

Exploits0References2

NVD•added 2026/05/20 5:16 p.m.•9 views

CVE-2026-20223

A vulnerability in the access validation of internal REST APIs of Cisco Secure Workload could allow an unauthenticated, remote attacker to access site resources with the privileges of the Site Admin role. This vulnerability is due to insufficient validation and authentication when accessing REST...

10CVSS0.00064EPSS

Vulnrichment•added 2026/05/20 4:6 p.m.•6 views

CVE-2026-20223 Cisco Secure Workload Unauthorized API Access Vulnerability

Cvelist•added 2026/05/20 4:6 p.m.•33 views

CVE-2026-20223 Cisco Secure Workload Unauthorized API Access Vulnerability

10CVSS0.00064EPSS

CVE•added 2026/05/20 4:6 p.m.•79 views

CVE-2026-20223

Cisco Secure Workload is affected by a vulnerability in the access validation of internal REST APIs that could allow an unauthenticated, remote attacker to access site resources with Site Admin privileges. The issue arises from insufficient validation/authentication when accessing REST API endpoi...

ATTACKERKB•added 2026/05/20 4:6 p.m.•7 views

CVE-2026-20223

Exploits1References2Affected Software1

EUVD•added 2026/05/20 4:6 p.m.•5 views

EUVD-2026-31131

Cisco•added 2026/05/20 4:0 p.m.•5 views

Cisco Secure Workload Unauthorized API Access Vulnerability

Positive Technologies•added 2026/05/20 12:0 a.m.•9 views

PT-2026-42193

Name of the Vulnerable Software and Affected Versions Cisco Secure Workload versions prior to 3.10.8.3 Cisco Secure Workload versions prior to 4.0.3.17 Description Insufficient validation and authentication in the internal REST API endpoints of Cisco Secure Workload allow an unauthenticated remot...

10CVSS6AI score0.00064EPSS

Exploits1References51

CNNVD•added 2026/05/20 12:0 a.m.•5 views

Cisco Secure Workload 访问控制错误漏洞

Cisco Secure Workload is a software product developed by Cisco Corporation in the United States. It allows users to install software agents on their application workloads. There is an access control vulnerability in Cisco Secure Workload, which stems from insufficient access validation in the...

10CVSS6AI score0.00064EPSS

NVD•added 2026/05/13 9:16 p.m.•5 views

CVE-2026-44380

MISP is an open source threat intelligence and sharing platform. Prior to 2.5.37, an improper access control vulnerability in the authentication key reset functionality allowed an authenticated organization administrator to reset authentication keys belonging to site administrator accounts within...

8.6CVSS0.00077EPSS

RedhatCVE•added 2026/01/07 9:29 a.m.•8 views

CVE-2019-12794

An issue was discovered in MISP 2.4.108. Organization admins could reset credentials for site admins organization admins have the inherent ability to reset passwords for all of their organization's users. This, however, could be abused in a situation where the host organization of an instance...

6.6CVSS6.9AI score0.0034EPSS

RedhatCVE•added 2025/12/01 2:16 p.m.•1 views

CVE-2025-66386

app/Model/EventReport.php in MISP before 2.5.27 allows path traversal in view picture for a site-admin...

4.1CVSS6.9AI score0.00041EPSS