Lucene search
K

351 matches found

Circl
Circl
added 2 days ago7 views

CVE-2026-15490

creationtimestamp| type| source ---|---|--- 2026-07-12 10:51:50+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqgz3ga6yk2e...

7.5CVSS7AI score0.00393EPSS
Exploits0References1
Circl
Circl
added 5 days ago7 views

CVE-2026-15130

creationtimestamp| type| source ---|---|--- 2026-07-09 01:14:57+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mq6hh52sej2x 2026-07-09 04:30:27+00:00| seen| https://infosec.exchange/users/offseq/statuses/116888137010586881 2026-07-09 04:30:29+00:00| seen|...

4.3CVSS5.9AI score0.00172EPSS
Exploits0References7
Circl
Circl
added 5 days ago7 views

CVE-2026-54773

creationtimestamp| type| source ---|---|--- 2026-07-09 01:13:17+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mq6he5cskz2g...

5.9CVSS5.9AI score0.00238EPSS
Exploits0References1
Circl
Circl
added 6 days ago6 views

CVE-2026-56297

creationtimestamp| type| source ---|---|--- 2026-07-08 16:00:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mq5iieesd42z 2026-07-10 19:16:10+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqcudgdoch2f...

8.3CVSS6.1AI score0.00281EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 6 days ago3 views

golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation

A flaw was found in golang.org/x/crypto/ssh. Source-address validation can be skipped when an SSH server configuration uses an authentication callback type other than public key, allowing authorization bypass in misconfigured servers. This is a follow-on to incomplete coverage from the...

10CVSS5.9AI score0.0044EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 6 days ago4 views

kernel: Linux kernel: netfilter: ebtables SNAT target writes to shared memory pages during ARP hardware address rewrite

A flaw was found in the Linux kernel's netfilter bridge ebtables SNAT Source Network Address Translation module. This vulnerability allows a local attacker on a system configured with specific bridge netfilter rules to improperly modify underlying memory pages during an ARP Address Resolution...

8.8CVSS5.9AI score0.00129EPSS
Exploits0References5
Circl
Circl
added 6 days ago7 views

CVE-2026-36162

creationtimestamp| type| source ---|---|--- 2026-07-08 00:25:16+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mq3u7edrhe2g...

5.4CVSS5.9AI score0.00141EPSS
Exploits0References1
Circl
Circl
added last week8 views

CVE-2026-48957

creationtimestamp| type| source ---|---|--- 2026-07-07 20:54:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mq3ifrrdm42x 2026-07-08 14:15:08+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mq5claiknt2n...

8.8CVSS5.9AI score0.0024EPSS
Exploits0References2
Circl
Circl
added 2026/07/05 8:59 p.m.7 views

CVE-2026-53913

creationtimestamp| type| source ---|---|--- 2026-07-05 20:59:16+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mpwhr67bwy2o 2026-07-06 12:00:29+00:00| seen| https://infosec.exchange/users/offseq/statuses/116872919680337020 2026-07-06 12:00:30+00:00| seen|...

9.8CVSS5.9AI score0.00619EPSS
Exploits0References6
Circl
Circl
added 2026/07/03 5:51 p.m.13 views

CVE-2026-46464

creationtimestamp| type| source ---|---|--- 2026-07-03 17:51:43+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpr4dxghxb2z 2026-07-04 06:38:09+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpsh6gpyes2n...

4.9CVSS5.9AI score0.00422EPSS
Exploits0References2
OSV
OSV
added 2026/07/02 5:17 p.m.6 views

UBUNTU-CVE-2026-54887

Use of Default Cryptographic Key vulnerability in Erlang/OTP ssl DTLS server allows predictable DTLS cookie computation during the startup window, enabling source address verification bypass. On DTLS server startup, dtlsserverconnection:initialhello/3 initializes previouscookiesecret to the empty...

6.3CVSS6AI score0.00243EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/07/02 4:6 p.m.36 views

CVE-2026-54887 DTLS server cookie bypass during startup window due to empty initial cookie secret

Use of Default Cryptographic Key vulnerability in Erlang/OTP ssl DTLS server allows predictable DTLS cookie computation during the startup window, enabling source address verification bypass. On DTLS server startup, dtlsserverconnection:initialhello/3 initializes previouscookiesecret to the empty...

6.3CVSS0.00243EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/07/02 4:6 p.m.8 views

CVE-2026-54887

Use of Default Cryptographic Key vulnerability in Erlang/OTP ssl DTLS server allows predictable DTLS cookie computation during the startup window, enabling source address verification bypass. On DTLS server startup, dtlsserverconnection:initialhello/3 initializes previouscookiesecret to the empty...

6.3CVSS5.8AI score0.00243EPSS
Exploits0References6Affected Software1
Vulnrichment
Vulnrichment
added 2026/07/02 4:6 p.m.11 views

CVE-2026-54887 DTLS server cookie bypass during startup window due to empty initial cookie secret

Use of Default Cryptographic Key vulnerability in Erlang/OTP ssl DTLS server allows predictable DTLS cookie computation during the startup window, enabling source address verification bypass. On DTLS server startup, dtlsserverconnection:initialhello/3 initializes previouscookiesecret to the empty...

6.3CVSS5.8AI score0.00243EPSS
Exploits0References5
CVE
CVE
added 2026/07/02 4:6 p.m.15 views

CVE-2026-54887

CVE-2026-54887 concerns Erlang/OTP's DTLS server in ssl, where during startup the cookie secret is initialized to an empty binary instead of a random value. This makes DTLS cookie computation deterministic for the first 0–15 seconds, allowing an observer of plaintext ClientHello to forge a valid ...

6.3CVSS5.8AI score0.00243EPSS
Exploits0References5Affected Software2
OSV
OSV
added 2026/07/02 4:6 p.m.4 views

CVE-2026-54887 DTLS server cookie bypass during startup window due to empty initial cookie secret

Use of Default Cryptographic Key vulnerability in Erlang/OTP ssl DTLS server allows predictable DTLS cookie computation during the startup window, enabling source address verification bypass. On DTLS server startup, dtlsserverconnection:initialhello/3 initializes previouscookiesecret to the empty...

6.3CVSS6AI score0.00243EPSS
Exploits0References9
OSV
OSV
added 2026/07/02 4:6 p.m.3 views

EEF-CVE-2026-54887 DTLS server cookie bypass during startup window due to empty initial cookie secret

Summary Use of Default Cryptographic Key vulnerability in Erlang/OTP ssl DTLS server allows predictable DTLS cookie computation during the startup window, enabling source address verification bypass. On DTLS server startup, dtls\server\connection:initial\hello/3 initializes previous\cookie\secret...

6.3CVSS5.8AI score0.00243EPSS
Exploits0References4
Circl
Circl
added 2026/07/02 5:58 a.m.9 views

CVE-2026-12891

creationtimestamp| type| source ---|---|--- 2026-07-02 05:58:10+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpndz4av2p2d...

4.3CVSS5.7AI score0.00276EPSS
Exploits0References1
Circl
Circl
added 2026/07/02 4:27 a.m.9 views

CVE-2026-57276

creationtimestamp| type| source ---|---|--- 2026-07-02 04:27:56+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpn6xrhrlv2z 2026-07-02 18:42:25+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpoopognri2b 2026-07-03 07:51:31+00:00| seen|...

8.3CVSS5.9AI score0.00286EPSS
Exploits0References3
Circl
Circl
added 2026/07/01 9:25 p.m.9 views

CVE-2026-14048

creationtimestamp| type| source ---|---|--- 2026-07-01 21:25:25+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpmheaim4e22 2026-07-02 07:50:35+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260702 2026-07-06 07:23:31+00:00| seen|...

6.5CVSS5.9AI score0.00116EPSS
Exploits0References3
Rows per page
Query Builder