Lucene search
+L

900 matches found

CVE
CVE
added 2026/04/24 7:50 p.m.17 views

CVE-2026-41477

Technical details about CVE-2026-41477 are not publicly available in the provided documents; no affected versions, root cause, or remediation details are disclosed here. Monitor for updates.

7.8CVSS5.7AI score0.00218EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2026/04/03 1:27 p.m.3 views

JLSEC-2026-56

Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12,...

8.8CVSS6.5AI score0.01079EPSS
Exploits0References1
OSV
OSV
added 2026/04/03 1:27 p.m.3 views

JLSEC-2026-55

Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected...

8.8CVSS6.6AI score0.01208EPSS
Exploits3References1
OSV
OSV
added 2026/04/03 1:27 p.m.7 views

JLSEC-2026-54

Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected...

8.8CVSS6.3AI score0.00785EPSS
Exploits0References1
NVD
NVD
added 2026/04/01 5:28 p.m.10 views

CVE-2026-20151

A vulnerability in the web interface of Cisco Smart Software Manager On-Prem SSM On-Prem could allow an authenticated, remote attacker to elevate privileges on an affected system. This vulnerability is due to the improper transmission of sensitive user information. An attacker could exploit this...

7.3CVSS0.0027EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/01 4:29 p.m.2 views

CVE-2026-20151 Cisco Smart Software Manager On-Prem Privilege Escalation Vulnerability

A vulnerability in the web interface of Cisco Smart Software Manager On-Prem SSM On-Prem could allow an authenticated, remote attacker to elevate privileges on an affected system. This vulnerability is due to the improper transmission of sensitive user information. An attacker could exploit this...

7.3CVSS6AI score0.0027EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/01 4:29 p.m.27 views

CVE-2026-20151 Cisco Smart Software Manager On-Prem Privilege Escalation Vulnerability

A vulnerability in the web interface of Cisco Smart Software Manager On-Prem SSM On-Prem could allow an authenticated, remote attacker to elevate privileges on an affected system. This vulnerability is due to the improper transmission of sensitive user information. An attacker could exploit this...

7.3CVSS0.0027EPSS
Exploits0References1
CVE
CVE
added 2026/04/01 4:29 p.m.59 views

CVE-2026-20151

Cisco Smart Software Manager On-Prem (SSM On-Prem) web interface vulnerability allows an authenticated remote user to elevate privileges from low to administrative due to improper transmission of sensitive user information. Exploitation requires valid credentials (role: System User); attacker can...

7.3CVSS6AI score0.0027EPSS
Exploits0References1Affected Software1
Cisco
Cisco
added 2026/04/01 4:0 p.m.58 views

Cisco Smart Software Manager On-Prem Privilege Escalation Vulnerability

A vulnerability in the web interface of Cisco Smart Software Manager On-Prem SSM On-Prem could allow an authenticated, remote attacker to elevate privileges on an affected system. This vulnerability is due to the improper transmission of sensitive user information. An attacker could exploit this...

7.3CVSS6AI score0.0027EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/03/12 11:7 p.m.8 views

postgresql: PostgreSQL intarray missing validation of type of input to selectivity estimator executes arbitrary code

A type validation flaw has been discovered in PostgreSQL. Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary code as the operating system user running the database...

8.8CVSS6.1AI score0.00785EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/03/12 11:7 p.m.5 views

postgresql: PostgreSQL pgcrypto heap buffer overflow executes arbitrary code

A heap based buffer overflow flaw has been discovered in PostgreSQL. This Heap buffer overflow is in the pgcrypto component and allows a ciphertext provider to execute arbitrary code as the operating system user running the database...

8.8CVSS6.3AI score0.01208EPSS
Exploits3References5
RedHat Linux
RedHat Linux
added 2026/03/12 10:47 p.m.6 views

postgresql: PostgreSQL intarray missing validation of type of input to selectivity estimator executes arbitrary code

A type validation flaw has been discovered in PostgreSQL. Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary code as the operating system user running the database...

8.8CVSS6.1AI score0.00785EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/03/12 10:47 p.m.9 views

postgresql: PostgreSQL pgcrypto heap buffer overflow executes arbitrary code

A heap based buffer overflow flaw has been discovered in PostgreSQL. This Heap buffer overflow is in the pgcrypto component and allows a ciphertext provider to execute arbitrary code as the operating system user running the database...

8.8CVSS6.3AI score0.01208EPSS
Exploits3References5
RedHat Linux
RedHat Linux
added 2026/03/12 10:40 p.m.4 views

postgresql: PostgreSQL intarray missing validation of type of input to selectivity estimator executes arbitrary code

A type validation flaw has been discovered in PostgreSQL. Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary code as the operating system user running the database...

8.8CVSS6.1AI score0.00785EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/03/12 10:40 p.m.4 views

postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code

Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database...

8.8CVSS6.3AI score0.01079EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/03/12 10:40 p.m.6 views

postgresql: PostgreSQL pgcrypto heap buffer overflow executes arbitrary code

A heap based buffer overflow flaw has been discovered in PostgreSQL. This Heap buffer overflow is in the pgcrypto component and allows a ciphertext provider to execute arbitrary code as the operating system user running the database...

8.8CVSS6.3AI score0.01208EPSS
Exploits3References5
RedHat Linux
RedHat Linux
added 2026/03/12 10:31 p.m.4 views

postgresql: PostgreSQL intarray missing validation of type of input to selectivity estimator executes arbitrary code

A type validation flaw has been discovered in PostgreSQL. Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary code as the operating system user running the database...

8.8CVSS6.1AI score0.00785EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/03/12 10:31 p.m.6 views

postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code

Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database...

8.8CVSS6.3AI score0.01079EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/03/12 10:31 p.m.7 views

postgresql: PostgreSQL pgcrypto heap buffer overflow executes arbitrary code

A heap based buffer overflow flaw has been discovered in PostgreSQL. This Heap buffer overflow is in the pgcrypto component and allows a ciphertext provider to execute arbitrary code as the operating system user running the database...

8.8CVSS6.3AI score0.01208EPSS
Exploits3References5
RedHat Linux
RedHat Linux
added 2026/03/12 7:2 p.m.4 views

postgresql: PostgreSQL intarray missing validation of type of input to selectivity estimator executes arbitrary code

A type validation flaw has been discovered in PostgreSQL. Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary code as the operating system user running the database...

8.8CVSS6.1AI score0.00785EPSS
Exploits0References5
Rows per page
Query Builder