229 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-32175
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A tampering vulnerability exists when .NET Core improperly handles specially crafted files. An attacker who successfully exploited this vulnerability could writ...
CVE-2026-32175
A flaw was found in dotnet. Improper handling of specially crafted files can cause a path traversal vulnerability in .NET Core, allowing an attacker who can send a malicious file to a vulnerable system to write to arbitrary files and directories in certain locations. Mitigation Mitigation for thi...
CVE-2026-41090 Microsoft Copilot Tampering Vulnerability
...
CVE-2026-41090 Microsoft Copilot Tampering Vulnerability
...
CVE-2026-41090
CVE-2026-41090 affects Microsoft Copilot. The vulnerability arises from improper neutralization of elements used in a command (command injection) that enables tampering over a network. The CVSS‑3.1 vector indicates network attack, high confidentiality and integrity impact, no availability impact,...
EUVD-2026-29571
Microsoft Security Advisory CVE-2026-32175 – .NET Core Tampering Vulnerability...
Security Update for Microsoft .NET Core (May 2026)
The version of tested product installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the vendor advisory. - A tampering vulnerability exists when .NET Core improperly handles specially crafted files. An attacker who...
WordPress WP Encryption – One Click Free SSL Certificate & SSL / HTTPS Redirect, Security & SSL Scan plugin <= 7.8.5.10 - One Click SSL & Force HTTPS <= 7.8.5.10 - Missing Authorization to Authenticated (Subscriber+) SSL Setup Tampering vulnerability
One Click Free SSL Certificate & SSL / HTTPS Redirect, Security & SSL Scan plugin = 7.8.5.10 - One Click SSL & Force HTTPS = 7.8.5.10 - Missing Authorization to Authenticated Subscriber+ SSL Setup Tampering vulnerability discovered by Kitch - KitchGlobal in WordPress Plugin WP Encryption – One...
CVE-2026-32175
A tampering vulnerability exists when .NET Core improperly handles specially crafted files. An attacker who successfully exploited this vulnerability could write arbitrary files and directories to certain locations on a vulnerable system. However, an attacker would have limited control over the...
CVE-2026-42893 Microsoft Outlook for iOS Tampering Vulnerability
...
CVE-2026-42893
CVE-2026-42893 concerns Improper neutralization of special elements used in a command (command injection) in M365 Copilot, leading to potential tampering over a network. Connected records identify affected software as Microsoft Outlook for iOS and M365 Copilot, with the issue described as command...
CVE-2026-42893 Microsoft Outlook for iOS Tampering Vulnerability
...
CVE-2026-32175 .NET Core Tampering Vulnerability
...
CVE-2026-32175
The CVE-2026-32175 entry describes a tampering vulnerability in .NET Core where specially crafted files could cause writing of arbitrary files/directories to certain locations. The exploitation requires sending a crafted file to a vulnerable system, and the attacker would have limited control ove...
CVE-2026-32175
A tampering vulnerability exists when .NET Core improperly handles specially crafted files. An attacker who successfully exploited this vulnerability could write arbitrary files and directories to certain locations on a vulnerable system. However, an attacker would have limited control over the...
CVE-2026-32175 .NET Core Tampering Vulnerability
...
CVE-2026-32175
A tampering vulnerability exists when .NET Core improperly handles specially crafted files. An attacker who successfully exploited this vulnerability could write arbitrary files and directories to certain locations on a vulnerable system. However, an attacker would have limited control over the...
Microsoft Outlook for iOS Tampering Vulnerability
Improper neutralization of special elements used in a command 'command injection' in M365 Copilot allows an unauthorized attacker to perform tampering over a network...
CVE-2026-32175
A tampering vulnerability exists when .NET Core improperly handles specially crafted files. An attacker who successfully exploited this vulnerability could write arbitrary files and directories to certain locations on a vulnerable system. However, an attacker would have limited control over the...
CVE-2026-42316
kafka-sink-azure-kusto Kafka Connect plugin is the official Microsoft sink for Azure Data Explorer Kusto. Prior to 5.2.3, kafka-sink-azure-kusto did not sanitize user-controlled values inside the kusto.tables.topics.mapping configuration. The db, table, mapping, and format fields of each mapping...