Lucene search
K

110839 matches found

CNNVD
CNNVD
added 2026/05/13 12:0 a.m.10 views

Striso Control Firmware 安全漏洞

Striso Control Firmware is an open-source MPE MIDI controller firmware developed by Striso. Version 54c9722 of Striso Control Firmware contains a security vulnerability, which stems from a buffer overflow in the ThreadReadButtons function...

7.5CVSS6AI score0.00329EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/13 12:0 a.m.9 views

Grafana OSS 安全漏洞

Grafana OSS is an open-source visualization dashboard developed by Grafana. There is a security vulnerability in Grafana OSS, which stems from a race condition in Live. This condition may allow authenticated users with the Viewer role to trigger a fatal mapping access error by sending concurrent...

6.5CVSS5.8AI score0.00262EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2026/05/13 12:0 a.m.17 views

Context-Aware Web Attack Detection in Open-Source SIEM Systems Via MITRE ATT&CK-Enriched Behavioral Profiling

Security Information and Event Management SIEM systems aggregate log data from heterogeneous sources to detect coordinated attacks. Traditional rule-based correlation engines struggle to classify multi-step web application attacks because they examine each event without reference to the behaviour...

5.8AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/13 12:0 a.m.13 views

PT-2026-40677

Name of the Vulnerable Software and Affected Versions NGINX Open Source versions prior to 1.30.0 Description When configured to proxy HTTP/2 traffic by setting proxy http version to 2 and utilizing proxy set body, an attacker may inject frame headers and payload bytes to the upstream peer...

6.3CVSS5.4AI score0.00339EPSS
Exploits1References30
CNNVD
CNNVD
added 2026/05/13 12:0 a.m.8 views

Grafana OSS 安全漏洞

Grafana OSS is an open-source visualization dashboard developed by Grafana. There is a security vulnerability in Grafana OSS, which stems from the editor’s ability to overwrite dashboards that it does not own. This could potentially lead to obtaining administrator privileges on specific dashboard...

7.1CVSS5.8AI score0.00226EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/13 12:0 a.m.9 views

F5 NGINX Open Source 安全漏洞

F5 NGINX Open Source is a high-performance web server, reverse proxy server, load balancer, and API gateway provided by the F5 company. There is a security vulnerability in F5 NGINX Open Source, which stems from the use of proxysetbody when configuring HTTP/2 traffic. This vulnerability may lead ...

6.3CVSS5.8AI score0.00339EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/05/13 12:0 a.m.7 views

Grafana OSS 安全漏洞

Grafana OSS is an open-source visualization dashboard developed by Grafana. There is a security vulnerability in Grafana OSS, which stems from vulnerabilities in SQL expressions. This vulnerability could allow authenticated attackers to read arbitrary files from the Grafana server’s file system...

6.3CVSS6AI score0.00262EPSS
Exploits0References1
Grafana
Grafana
added 2026/05/13 12:0 a.m.9 views

Grafana Data Source Plugin: DoS (OOM) via Negative Interval Injection in $__timeGroup Macro

Using the $timeGroup macro, one can achieve an OOM by overloading the server. This requires a SQL datasource. If the server is set up to auto-restart, the impact is minimal or non-existent, as the attack can take upwards of half an hour to crash the server...

6.5CVSS5.8AI score0.00328EPSS
Exploits0
CNNVD
CNNVD
added 2026/05/13 12:0 a.m.8 views

Grafana OSS 安全漏洞

Grafana OSS is an open-source visualization dashboard developed by Grafana. There is a security vulnerability in Grafana OSS, which arises from using the timeGroup macro, potentially leading to server overload and OOM issues...

6.5CVSS5.8AI score0.00328EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/13 12:0 a.m.7 views

Grafana OSS 安全漏洞

Grafana OSS is an open-source visualization dashboard developed by Grafana. There is a security vulnerability in Grafana OSS, which stems from the Live push endpoint’s ability to cause unlimited memory allocation by sending large or streaming request bodies, potentially leading to insufficient...

6.5CVSS5.8AI score0.00328EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/13 12:0 a.m.8 views

F5 NGINX Plus和F5 NGINX Open Source 资源管理错误漏洞

F5 NGINX Plus and F5 NGINX Open Source are both products of the American company F5. F5 NGINX Plus is a software-based application delivery platform. F5 NGINX Open Source is a high-performance web server, reverse proxy server, load balancer, and API gateway. Both F5 NGINX Plus and F5 NGINX Open...

6.3CVSS6AI score0.00677EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/13 12:0 a.m.12 views

Plasma Workspace 安全漏洞

Plasma Workspace is an open-source application developed by the KDE GitHub Mirror project. It serves to run various components required for a Plasma-based environment. Plasma Workspace has a security vulnerability that stems from multiple issues, which may allow an infected plasmalogin service...

7CVSS5.9AI score0.00134EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/13 12:0 a.m.9 views

Grafana OSS 安全漏洞

Grafana OSS is an open-source visualization dashboard developed by Grafana. There is a security vulnerability in Grafana OSS, which stems from the fact that the editor can delete any comments, even without read-only privileges...

4.3CVSS5.8AI score0.00198EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/13 12:0 a.m.8 views

F5 NGINX Plus和F5 NGINX Open Source 安全漏洞

F5 NGINX Plus and F5 NGINX Open Source are both products of the American company F5. F5 NGINX Plus is a software-based application delivery platform. F5 NGINX Open Source is a high-performance web server, reverse proxy server, load balancer, and API gateway. Both F5 NGINX Plus and F5 NGINX Open...

9.2CVSS6.3AI score0.61469EPSS
Exploits40References5
Circl
Circl
added 2026/05/12 11:30 p.m.9 views

CVE-2026-44870

creationtimestamp| type| source ---|---|--- 2026-05-12 23:30:40+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlox25t4ew2p...

8.8CVSS5.8AI score0.00896EPSS
Exploits0References1
Circl
Circl
added 2026/05/12 11:25 p.m.12 views

CVE-2026-6959

creationtimestamp| type| source ---|---|--- 2026-05-12 23:25:39+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlowr76vsy2n...

6CVSS5.8AI score0.00169EPSS
Exploits0References1
Circl
Circl
added 2026/05/12 11:21 p.m.9 views

CVE-2026-44873

creationtimestamp| type| source ---|---|--- 2026-05-12 23:21:21+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlowjjjvu22v...

5.4CVSS5.8AI score0.00141EPSS
Exploits0References1
Circl
Circl
added 2026/05/12 11:17 p.m.7 views

CVE-2026-44866

creationtimestamp| type| source ---|---|--- 2026-05-12 23:17:36+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlowcsfeb72i...

8.8CVSS5.8AI score0.00896EPSS
Exploits0References1
NVD
NVD
added 2026/05/12 11:16 p.m.22 views

CVE-2026-44347

Warpgate is an open source SSH, HTTPS and MySQL bastion host for Linux. Prior to 0.23.3, the SSO flow does not validate the state parameter, which makes it possible for an attacker to trick a user into logging into the attacker's account, possibly convincing them to perform sensitive actions on t...

6.5CVSS0.00133EPSS
Exploits1References1
NVD
NVD
added 2026/05/12 11:16 p.m.17 views

CVE-2026-42158

Flowsint is an open-source OSINT graph exploration tool designed for cybersecurity investigation, transparency, and verification. Prior to 1.2.3, an adversary with knowledge of an investigation ID, could update the metadata of an investigation of another user. This vulnerability is fixed in 1.2.3...

2.3CVSS0.0017EPSS
Exploits0References1
Rows per page
Query Builder