CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

SUSE CVE•added 2026/05/13 3:48 a.m.•5 views

SUSE CVE-2026-4893

An information disclosure vulnerability in dnsmasq allows remote attackers to bypass source checks via a crafted DNS packet with RFC 7871 client subnet information...

CNNVD•added 2026/05/13 12:0 a.m.•4 views

Exploits2References10

Palo Alto Networks GlobalProtect app 信任管理问题漏洞

The Palo Alto Networks GlobalProtect app is a network protection software developed by Palo Alto Networks. The GlobalProtect app has a trust management vulnerability caused by improper certificate verification. This vulnerability allows attackers to intercept encrypted communications and...

7.6CVSS5.8AI score0.00006EPSS

CVE•added 2026/05/12 9:2 p.m.•5 views

CVE-2026-26289

CVE-2026-26289 affects PowerSYSTEM Center: the REST API endpoint used for device account export has incorrect authorization, permitting an authenticated user with limited permissions to access data normally restricted to administrators. The issue exposes sensitive information and is backed by hig...

8.4CVSS5.8AI score0.00038EPSS

Exploits0References2

Vulnrichment•added 2026/05/12 8:19 p.m.•5 views

CVE-2026-35504 Subnet Solutions PowerSYSTEM Center CRLF injection

PowerSYSTEM Center email notification service is affected by a CRLF injection vulnerability when using SMTPS communication...

5.5CVSS5.8AI score0.00014EPSS

Exploits0References2

RedhatCVE•added 2026/05/12 5:4 p.m.•2 views

CVE-2026-4893

A validation bypass was discovered in dnsmasq's RFC 7871 client subnet ECS handling. When verifying ECS source information in DNS responses, dnsmasq passes the OPT record length instead of the full packet length to the validation function.This causes all internal bounds checks to fail, completely...

6.5CVSS5.8AI score0.00027EPSS

Exploits2References4

CNNVD•added 2026/05/12 12:0 a.m.•4 views

Subnet Solutions PowerSYSTEM Center 注入漏洞

Subnet Solutions PowerSYSTEM Center is a power solution offered by Subnet Solutions Corporation. The Subnet Solutions PowerSYSTEM Center has an injection vulnerability, which stems from CRLF injections during SMTPS communication...

5.5CVSS5.8AI score0.00014EPSS

CNNVD•added 2026/05/12 12:0 a.m.•3 views

Subnet Solutions PowerSYSTEM Center 安全漏洞

Subnet Solutions PowerSYSTEM Center is a power solution offered by Subnet Solutions Corporation. There is a security vulnerability present in Subnet Solutions PowerSYSTEM Center, which allows authenticated users with limited privileges to perform unauthorized project group deletions...

7CVSS5.8AI score0.00028EPSS

CNNVD•added 2026/05/12 12:0 a.m.•3 views

Subnet Solutions PowerSYSTEM Center 安全漏洞

Subnet Solutions PowerSYSTEM Center is a power solution offered by Subnet Solutions Corporation. There is a security vulnerability present in Subnet Solutions PowerSYSTEM Center, which stems from the fact that device endpoints allow low-privilege authenticated users to access information that is...

6.9CVSS5.8AI score0.00025EPSS

EUVD•added 2026/05/11 6:31 p.m.•3 views

EUVD-2026-29155

An information disclosure vulnerability in dnsmasq allows remote attackers to bypass source checks via a crafted DNS packet with RFC 7871 client subnet information...

OSV•added 2026/05/11 6:16 p.m.•1 views

Exploits2References3

ALPINE-CVE-2026-4893

An information disclosure vulnerability in dnsmasq allows remote attackers to bypass source checks via a crafted DNS packet with RFC 7871 client subnet information...

NVD•added 2026/05/11 6:16 p.m.•5 views

Exploits2References1

CVE-2026-4893

An information disclosure vulnerability in dnsmasq allows remote attackers to bypass source checks via a crafted DNS packet with RFC 7871 client subnet information...

5.3CVSS0.00027EPSS

Vulnrichment•added 2026/05/11 4:48 p.m.•2 views

CVE-2026-4893 CVE-2026-4893

An information disclosure vulnerability in dnsmasq allows remote attackers to bypass source checks via a crafted DNS packet with RFC 7871 client subnet information...

5.8AI score0.00027EPSS

ATTACKERKB•added 2026/05/11 4:48 p.m.•2 views

CVE-2026-4893

An information disclosure vulnerability in dnsmasq allows remote attackers to bypass source checks via a crafted DNS packet with RFC 7871 client subnet information...

Cvelist•added 2026/05/11 4:48 p.m.•28 views

Exploits2References8

CVE-2026-4893 CVE-2026-4893

An information disclosure vulnerability in dnsmasq allows remote attackers to bypass source checks via a crafted DNS packet with RFC 7871 client subnet information...

0.00027EPSS

CVE•added 2026/05/11 4:48 p.m.•31 views

CVE-2026-4893

CVE-2026-4893 is an information-disclosure vulnerability in dnsmasq. A crafted DNS packet containing RFC 7871 client-subnet information allows remote attackers to bypass source checks. Affected component: dnsmasq’s DNS handling. Underlying impact per sources is information disclosure; exploitatio...

AlpineLinux•added 2026/05/11 4:48 p.m.•6 views

CVE-2026-4893

An information disclosure vulnerability in dnsmasq allows remote attackers to bypass source checks via a crafted DNS packet with RFC 7871 client subnet information...

OSV•added 2026/05/11 12:0 p.m.•1 views

Exploits2

UBUNTU-CVE-2026-4893

An information disclosure vulnerability in dnsmasq allows remote attackers to bypass source checks via a crafted DNS packet with RFC 7871 client subnet information...

UbuntuCve•added 2026/05/11 12:0 p.m.•5 views

Exploits2References3

CVE-2026-4893

An information disclosure vulnerability in dnsmasq allows remote attackers to bypass source checks via a crafted DNS packet with RFC 7871 client subnet information...