Lucene search
K

2614 matches found

EUVD
EUVD
added 2 days ago4 views

EUVD-2026-40669

Inappropriate implementation in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00204EPSS
Exploits0References3
NVD
NVD
added 3 days ago4 views

CVE-2026-14139

Inappropriate implementation in TabStrip in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.2CVSS0.00163EPSS
Exploits0References2
Cvelist
Cvelist
added 4 days ago21 views

CVE-2026-7656 Broken IPv6 Neighbor Discovery input validation allows spoofed RA/NS/NA acceptance in Zephyr net stack

The IPv6 Neighbor Discovery handlers in subsys/net/ip/ipv6nbr.c handlerainput, handlensinput, handlenainput used an incorrect boolean expression that combined the RFC 4861 validity checks with the ICMPv6 code check using the wrong operator precedence: the form was 'length/hop/source/target checks...

8.1CVSS0.00232EPSS
Exploits0References2
NVD
NVD
added 2026/06/24 8:16 p.m.6 views

CVE-2026-46349

Mastodon is a free, open-source social network server based on ActivityPub. Prior to 4.5.10, 4.4.17, and 4.3.23, Mastodon's normalization of incoming activities signed with Linked-Data Signatures does not sufficiently protect the activities from a certain class of spoofing, allowing attackers to...

5.3CVSS0.00162EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/19 8:27 p.m.4 views

CVE-2026-32208 Microsoft Entra ID Spoofing Vulnerability

...

8.8CVSS5.8AI score0.00282EPSS
Exploits0References1
CVE
CVE
added 2026/06/19 8:27 p.m.32 views

CVE-2026-32208

CVE-2026-32208 is a cross-site scripting vulnerability in Microsoft Edge (Chromium-based) caused by improper neutralization of input during web page generation, enabling an authorized attacker to spoof users over a network. Affected product: Microsoft Edge (Chromium-based). Impact is rated High f...

8.8CVSS5.8AI score0.00282EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/06/19 8:27 p.m.18 views

CVE-2026-32208 Microsoft Entra ID Spoofing Vulnerability

...

8.8CVSS0.00282EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/19 1:7 p.m.9 views

EUVD-2026-38013

Authentication Bypass by Spoofing vulnerability in Apache APISIX. The attacker can completely bypass authentication capitalising on certain configurations of jwt-auth plugin. This issue affects Apache APISIX: from v2.2 through v3.16.0. Users are recommended to upgrade to version v3.17.0, which...

7CVSS5.9AI score0.00386EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/06/19 1:57 a.m.6 views

SUSE CVE-2026-12323

Spoofing issue in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 152 and Thunderbird 152...

5.4CVSS5.8AI score0.00168EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/19 12:0 a.m.13 views

PT-2026-50880

Name of the Vulnerable Software and Affected Versions Apache APISIX versions 2.2 through 3.16.0 Description An authentication bypass by spoofing exists in the jwt-auth plugin. This flaw allows an attacker to completely bypass authentication by using a spoofed token when certain configurations of...

9.1CVSS5.9AI score0.00386EPSS
Exploits0References8
Microsoft CVE
Microsoft CVE
added 2026/06/18 2:0 p.m.7 views

Dynamics 365 Customer Voice Spoofing Vulnerability

Improper neutralization of input during web page generation 'cross-site scripting' in Dynamics 365 Customer Voice allows an unauthorized attacker to perform spoofing over a network...

9.3CVSS5.8AI score
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/06/18 2:0 p.m.9 views

Microsoft Entra ID Spoofing Vulnerability

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Entra ID allows an authorized attacker to perform spoofing over a network...

8.8CVSS5.8AI score0.00282EPSS
Exploits0
OSV
OSV
added 2026/06/16 1:16 p.m.3 views

UBUNTU-CVE-2026-12323

Spoofing issue in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 152 and Thunderbird 152...

5.4CVSS5.8AI score0.00168EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/06/16 12:2 p.m.5 views

firefox: Spoofing issue in the Form Autofill component

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Spoofing issue in the Form Autofill component...

6.5CVSS5.3AI score0.00322EPSS
Exploits0References6
AlpineLinux
AlpineLinux
added 2026/06/16 11:52 a.m.6 views

CVE-2026-12323

Spoofing issue in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 152 and Thunderbird 152...

5.4CVSS5.3AI score0.00168EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/06/16 11:52 a.m.6 views

CVE-2026-12323 Spoofing issue in the DOM: Core & HTML component

Spoofing issue in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 152 and Thunderbird 152...

5.2AI score0.00168EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/12 2:26 p.m.8 views

EUVD-2026-36486

Authentication bypass by spoofing vulnerability in Hedef Media Promotion Interactive Media Marketing Inc. Related Marketing Cloud RMC allows Brute Force. This issue affects Related Marketing Cloud RMC: through 12052026...

6.5CVSS5.2AI score0.0021EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/12 2:26 p.m.24 views

CVE-2026-5792 Authentication Bypass in Hedef Media's Related Marketing Cloud (RMC)

Authentication bypass by spoofing vulnerability in Hedef Media Promotion Interactive Media Marketing Inc. Related Marketing Cloud RMC allows Brute Force. This issue affects Related Marketing Cloud RMC: through 12052026...

6.5CVSS0.0021EPSS
Exploits0References1
CVE
CVE
added 2026/06/12 2:26 p.m.16 views

CVE-2026-5792

CVE-2026-5792 is described as an authentication bypass by spoofing vulnerability in Related Marketing Cloud (RMC) used by Hedef Media Promotion Interactive Media Marketing Inc. The issue affects RMC up to 12052026. The NVD entry provides a CVSS 3.1 base score of 6.5 (Network, Low attack complexit...

6.5CVSS5.3AI score0.0021EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/12 12:0 a.m.13 views

PT-2026-48918

Name of the Vulnerable Software and Affected Versions Related Marketing Cloud RMC versions prior to 12052026 Description An authentication bypass by spoofing issue in Hedef Media Promotion Interactive Media Marketing Inc. Related Marketing Cloud RMC allows for brute force attacks. Recommendations...

6.5CVSS5.2AI score0.0021EPSS
Exploits0References4
Rows per page
Query Builder