Lucene search
+L

1046 matches found

redhatcve
redhatcve
added 2026/01/16 2:23 p.m.5 views

CVE-2026-22910

The device is deployed with weak and publicly known default passwords for certain hidden user levels, increasing the risk of unauthorized access. This represents a high risk to the integrity of the system...

9.1CVSS6.8AI score0.00436EPSS
Exploits0References1
nvd
nvd
added 2026/01/15 1:16 p.m.8 views

CVE-2026-22908

Uploading unvalidated container images may allow remote attackers to gain full access to the system, potentially compromising its integrity and confidentiality...

9.1CVSS0.00541EPSS
Exploits0References6
euvd
euvd
added 2026/01/15 1:2 p.m.11 views

EUVD-2026-2809

The device is deployed with weak and publicly known default passwords for certain hidden user levels, increasing the risk of unauthorized access. This represents a high risk to the integrity of the system...

7.5CVSS6.3AI score0.00436EPSS
Exploits0References7
cve
cve
added 2026/01/15 1:2 p.m.16 views

CVE-2026-22910

The connected Red Hat and SICK PSIRT entries corroborate CVE-2026-22910 affecting SICK TDC-X401GL devices, where the vulnerability arises from weak, publicly known default passwords on certain hidden user levels. The issue is described as enabling unauthorized access and compromising confidential...

9.1CVSS6.4AI score0.00436EPSS
Exploits0References6Affected Software1
euvd
euvd
added 2026/01/15 1:0 p.m.5 views

EUVD-2026-2823

Uploading unvalidated container images may allow remote attackers to gain full access to the system, potentially compromising its integrity and confidentiality...

9.1CVSS6.7AI score0.00541EPSS
Exploits0References7
cvelist
cvelist
added 2026/01/15 1:0 p.m.27 views

CVE-2026-22908

Uploading unvalidated container images may allow remote attackers to gain full access to the system, potentially compromising its integrity and confidentiality...

9.1CVSS0.00541EPSS
Exploits0References6
ptsecurity
ptsecurity
added 2026/01/15 12:0 a.m.12 views

PT-2026-2989

Name of the Vulnerable Software and Affected Versions versions prior to 2026-22908 Description Uploading unvalidated container images may allow remote attackers to gain full access to the system, potentially compromising its integrity and confidentiality. Recommendations At the moment, there is n...

9.1CVSS6.7AI score0.00541EPSS
Exploits0References12
ptsecurity
ptsecurity
added 2026/01/15 12:0 a.m.11 views

PT-2026-2991

Name of the Vulnerable Software and Affected Versions The product name cannot be determined. affected versions not specified Description The device is deployed with weak and publicly known default passwords for certain hidden user levels, increasing the risk of unauthorized access. This represent...

9.1CVSS6.4AI score0.00436EPSS
Exploits0References10
hpe
hpe
added 2026/01/15 12:0 a.m.3 views

HPESBHF04991 rev.1 - Certain HPE ProLiant DL/XL Servers Using Certain AMD EPYC Processors, AMD-SB-3027,SEV-SNP Guest Stack Pointer Corruption Vulnerability

Potential Security Impact: Local: Compromise of System Integrity SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE ProLiant Compute DL325 Gen12 - Prior to 1.2007-11-2025 HPE ProLiant Compute DL345 Gen12 - Prior to 1.2007-11-2025 HPE ProLiant DL145 Gen11 - Prior to 1.7210-03-2025...

4.6CVSS6.7AI score0.00202EPSS
Exploits1
vulnrichment
vulnrichment
added 2026/01/13 7:48 a.m.3 views

CVE-2025-41717 Config-Upload Code Injection

An unauthenticated remote attacker can trick a high privileged user into uploading a malicious payload via the config-upload endpoint, leading to code injection as root. This results in a total loss of confidentiality, availability and integrity due to improper control of code generation 'Code...

8.8CVSS7.1AI score0.00496EPSS
Exploits1References1
cve
cve
added 2026/01/13 1:14 a.m.28 views

CVE-2026-0506

The CVE-2026-0506 issue affects SAP NetWeaver ABAP/ABAP Platform (Application Server ABAP) and is caused by a Missing Authorization Check in an RFC function that can execute FORM routines. An authenticated attacker could write/modify data accessible via FORMs and invoke system functionality expos...

8.1CVSS6.6AI score0.00228EPSS
Exploits0References2Affected Software1
redhatcve
redhatcve
added 2026/01/09 12:35 p.m.7 views

CVE-2023-49958

An issue was discovered in Dalmann OCPP.Core through 1.2.0 for OCPP Open Charge Point Protocol for electric vehicles. The server processes mishandle StartTransaction messages containing additional, arbitrary properties, or duplicate properties. The last occurrence of a duplicate property is...

7.5CVSS7AI score0.00562EPSS
Exploits1References1
redhatcve
redhatcve
added 2026/01/09 10:51 a.m.12 views

CVE-2022-42860

This issue was addressed with improved checks to prevent unauthorized actions. This issue is fixed in macOS Monterey 12.6.1, macOS Big Sur 11.7.1, macOS Ventura 13. An app may be able to modify protected parts of the file system...

5.5CVSS5.8AI score0.00157EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/01/09 10:17 a.m.8 views

CVE-2019-18232

SafeNet Sentinel LDK License Manager, all versions prior to 7.101only Microsoft Windows versions are affected is vulnerable when configured as a service. This vulnerability may allow an attacker with local access to create, write, and/or delete files in system folder using symbolic links, leading...

7.8CVSS6.9AI score0.00423EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/01/09 10:0 a.m.23 views

CVE-2020-7505

A CWE-494 Download of Code Without Integrity Check vulnerability exists in Easergy T300 Firmware version 1.5.2 and older which could allow an attacker to inject data with dangerous content into the firmware and execute arbitrary code on the system...

9CVSS7.9AI score0.00913EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/01/09 9:55 a.m.9 views

CVE-2020-12012

Baxter ExactaMix EM 2400 & EM 1200, Versions ExactaMix EM2400 Versions 1.10, 1.11, 1.13, 1.14, ExactaMix EM1200 Versions 1.1, 1.2, 1.4, 1.5, Baxter ExactaMix EM 2400 Versions 1.10, 1.11, and 1.13, and ExactaMix EM1200 Versions 1.1, 1.2, and 1.4 have hard-coded administrative account credentials f...

6.1CVSS6.6AI score0.00345EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/01/09 9:33 a.m.5 views

CVE-2024-39339

A vulnerability has been discovered in all versions of Smartplay headunits, which are widely used in Suzuki and Toyota cars. This misconfiguration can lead to information disclosure, leaking sensitive details such as diagnostic log traces, system logs, headunit passwords, and personally...

7.5CVSS6.6AI score0.00392EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/01/07 9:49 a.m.9 views

CVE-2022-27585

Password recovery vulnerability in SICK SIM1000 FX Partnumber 1097816 and 1097817 with firmware version = 1.6.0 as soon as possible available in SICK Support Portal...

9.8CVSS7.5AI score0.01235EPSS
Exploits0References1
redhat
redhat
added 2025/12/17 3:4 p.m.4 views

kernel: ip6mr: Fix skb_under_panic in ip6mr_cache_report()

A buffer underwrite vulnerability exists in the linux kernel in the function skbunderpanic in ip6mrcachereport, leading to an attacker, via crafting a payload, could result in damage to system availability and integrity...

5.5CVSS7.5AI score0.00178EPSS
Exploits0References5
redhat
redhat
added 2025/12/17 7:48 a.m.4 views

kernel: wifi: brcmfmac: fix use-after-free bug in brcmf_netdev_start_xmit()

A use after free exists in the wifi module of the linux kernel in the function brcmfnetdevstartxmit,thereby leading to damage to system availability and integrity...

7.8CVSS7.4AI score0.0015EPSS
Exploits0References5
Rows per page
Query Builder