Lucene search
K

11664 matches found

NVD
NVD
added 2026/06/04 3:16 p.m.10 views

CVE-2026-35905

T3 Technology CPE models T625Pro v1.0.07, T6825G v1.0.03, and T7281 v1.0.03 were discovered to contain a hardcoded password for root access under the "superadmin" account...

9.8CVSS0.00421EPSS
Exploits1References4
NVD
NVD
added 2026/06/04 3:16 p.m.22 views

CVE-2026-35904

Incorrect access control in the web management interface of T3 Technology CPE models T625Pro v1.0.07, T6825G v1.0.03, and T7281 v1.0.03 allows unauthorized attackers to enable the Telnet service via sending a crafted request to a vulnerable CGI component...

9.8CVSS0.00547EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/06/04 12:17 a.m.37 views

CVE-2026-7764 Out-of-bounds read in morse.ko Vendor IE processing

An out-of-bounds read vulnerability in the morse.ko HaLow Wi-Fi kernel driver in Morse Micro HaLowLink 2 software versions prior to 2.11.12 allows an unauthenticated attacker within radio range to disclose a small amount of kernel heap memory or cause a Denial of Service kernel oops/panic via a...

0.0013EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/04 12:0 a.m.7 views

CVE-2026-35906

An undocumented debug CGI endpoint in T3 Technology CPE models T625Pro v1.0.07, T6825G v1.0.03 allows unauthenticated attackers to execute arbitrary system commands as root via supplying a crafted HTTP query string...

9.6CVSS6.1AI score0.00466EPSS
Exploits1References5
Packet Storm News
Packet Storm News
added 2026/06/04 12:0 a.m.14 views

Securing the Sandbox: A Rootless Containerized Framework for Process-Oriented Monitoring in Computer Graphics Education

Computer Science education fundamentally depends on intensive laboratory hours to foster true programming mastery and logical reasoning. However, the widespread adoption of Generative Artificial Intelligence AI has made it virtually impossible to distinguish authentic student effort from instant ...

5.7AI score
Exploits0
CNNVD
CNNVD
added 2026/06/04 12:0 a.m.6 views

T3 Technology CPE models 安全漏洞

T3 Technology CPE models are a series of 4G/5G customer premises equipment developed by the Thai company T3 Technology. There are security vulnerabilities in the T3 Technology CPE models version 1.0.07 and the T6825G version 1.0.03. These vulnerabilities stem from unrecorded debug CGI endpoints,...

9.6CVSS5.8AI score0.00466EPSS
Exploits1References4
CNNVD
CNNVD
added 2026/06/04 12:0 a.m.5 views

T3 Technology CPE models 安全漏洞

T3 Technology CPE models are a series of 4G/5G customer premises equipment developed by the Thai company T3 Technology. The T3 Technology CPE models with versions v1.0.07, T6825G v1.0.03, and T7281 v1.0.03 contain security vulnerabilities. These vulnerabilities stem from improper access control i...

9.8CVSS5.3AI score0.00547EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/06/04 12:0 a.m.40 views

CVE-2026-35906

An undocumented debug CGI endpoint in T3 Technology CPE models T625Pro v1.0.07, T6825G v1.0.03 allows unauthenticated attackers to execute arbitrary system commands as root via supplying a crafted HTTP query string...

0.00466EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2026/06/03 8:30 p.m.27 views

Important: Red Hat Security Advisory: satellite/foreman-mcp-server-rhel9 container image available as a Technology Preview

A new satellite/foreman-mcp-server-rhel9 container image is now available as a Technology Preview in the Red Hat container registry. Satellite provides a container image that you can use to run an MCP server locally. The MCP server for Satellite is designed for advanced reporting and data analysi...

10CVSS6.7AI score0.01438EPSS
Exploits3References7
RedHat Linux
RedHat Linux
added 2026/06/03 7:56 p.m.12 views

Low: Red Hat Security Advisory: satellite/foreman-mcp-server-rhel9 container image available as a Technology Preview

A new satellite/foreman-mcp-server-rhel9 container image is now available as a Technology Preview in the Red Hat container registry. Satellite provides a container image that you can use to run an MCP server locally. The MCP server for Satellite is designed for advanced reporting and data analysi...

6.5CVSS5.8AI score0.01438EPSS
Exploits2References4
ATTACKERKB
ATTACKERKB
added 2026/06/03 5:55 p.m.7 views

CVE-2026-45702

OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Starting in version 4.3.0 and prior to version 4.11.0, a type confusion vulnerability exists in OP-TEE OS when processing an FFAMEMSHARE...

4.4CVSS5.8AI score0.00155EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2026/06/03 4:16 p.m.7 views

UBUNTU-CVE-2026-44281

GLPI is a free asset and IT management software package. Starting in version 0.78 and prior to versions 10.0.25 and 11.0.7, an authenticated user with config READ permission can read a specific asset object. Upgrade to 11.0.7 or 10.0.25 to receive a patch...

7CVSS5.3AI score0.00251EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/02 11:2 p.m.10 views

EUVD-2026-34052

GLPI is a free asset and IT management software package. In versions 11.0.0 through 11.0.6, a technician can store an XSS payload in a ITIL costs. This issue has been fixed in version 11.0.7...

7.1CVSS5.7AI score0.00268EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2026/06/01 11:54 a.m.35 views

China-Aligned Groups Ramp Up Attacks: Dragon Weave Hits Czech Republic & Taiwan

A new cyber espionage campaign codenamed Operation Dragon Weave has been observed targeting officials and citizens in the Czech Republic and Taiwan to deliver an AdaptixC2 agent. According to Seqrite Labs, targets of the campaign include government, research, academic, technology, and financial...

6.1AI score
Exploits0
GithubExploit
GithubExploit
added 2026/06/01 9:19 a.m.81 views

web-enumerator

🔍 Web Enumeration & Attack Testing Tool A professional‑grade...

5.8AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/05/29 8:13 p.m.13 views

CVE-2026-9398

A security vulnerability has been detected in Besen BS20 EV Charging Station up to 20260426. This affects an unknown part of the component BLE/WiFi. Such manipulation leads to authentication bypass by capture-replay. The attack must be carried out from within the local network. Attacks of this...

3.1CVSS5.2AI score0.00294EPSS
Exploits0References1
NVD
NVD
added 2026/05/29 9:16 a.m.13 views

CVE-2026-10057

ITS Intelligent SCADA System developed by ITP Technology has a Stored Cross-Site Scripting vulnerability, allowing privileged remote attackers to inject persistent JavaScript codes that are executed in users' browsers upon page load...

4.8CVSS0.00176EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/29 8:37 a.m.11 views

CVE-2026-10058

ITS Intelligent SCADA System developed by ITP Technology has a Stored Cross-Site Scripting vulnerability, allowing privileged remote attackers to inject persistent JavaScript codes that are executed in users' browsers upon page load...

4.8CVSS5.8AI score0.00176EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/05/29 8:37 a.m.42 views

CVE-2026-10058 ITP Technology|ITS Intelligent SCADA System - Stored Cross-Site Scripting

ITS Intelligent SCADA System developed by ITP Technology has a Stored Cross-Site Scripting vulnerability, allowing privileged remote attackers to inject persistent JavaScript codes that are executed in users' browsers upon page load...

4.8CVSS0.00176EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/29 8:37 a.m.17 views

EUVD-2026-33268

ITS Intelligent SCADA System developed by ITP Technology has a Stored Cross-Site Scripting vulnerability, allowing privileged remote attackers to inject persistent JavaScript codes that are executed in users' browsers upon page load...

4.8CVSS5.8AI score0.00176EPSS
Exploits0References2
Rows per page
Query Builder