Lucene search
+L

321 matches found

euvd
euvd
added yesterday4 views

EUVD-2026-44528

CAI Content Credentials is affected by an Insufficiently Protected Credentials vulnerability that could result in disclosure of sensitive information. An attacker could leverage this vulnerability to gain unauthorized read access. Exploitation of this issue does not require user interaction...

7.5CVSS6.1AI score0.00389EPSS
Exploits0References2
attackerkb
attackerkb
added 2 days ago3 views

CVE-2026-48295

CAI Content Credentials is affected by an Insufficiently Protected Credentials vulnerability that could result in disclosure of sensitive information. An attacker could leverage this vulnerability to gain unauthorized read access. Exploitation of this issue does not require user interaction...

7.5CVSS6.1AI score0.00389EPSS
Exploits0References2
cve
cve
added 2 days ago12 views

CVE-2026-48295

Technical details about CVE-2026-48295 are not publicly available in the provided documents. Monitor for updates from official sources; the available information notes insufficiently protected credentials and potential unauthorized read access without user interaction.

7.5CVSS6.1AI score0.00389EPSS
Exploits0References1
nvd
nvd
added 2 days ago6 views

CVE-2026-48332

ColdFusion is affected by a Server-Side Request Forgery SSRF vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and gain unauthorized read access. Exploitation of this issue does not require user...

7.7CVSS0.12002EPSS
Exploits0References1
euvd
euvd
added 2 days ago3 views

EUVD-2026-44552

ColdFusion is affected by a Server-Side Request Forgery SSRF vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and gain unauthorized read access. Exploitation of this issue does not require user...

7.7CVSS6.1AI score0.12002EPSS
Exploits0References1
euvd
euvd
added 2 days ago4 views

EUVD-2026-44546

ColdFusion is affected by an Incorrect Authorization vulnerability that could result in privilege escalation. An attacker could leverage this vulnerability to gain unauthorized read and write access. Exploitation of this issue does not require user interaction. Scope is changed...

9.3CVSS6.1AI score0.00239EPSS
Exploits0References1
nvd
nvd
added 2 days ago4 views

CVE-2026-47998

Adobe Commerce is affected by an Incorrect Authorization vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and gain unauthorized read access. Exploit depends on conditions beyond the attacker's control...

5.9CVSS0.00612EPSS
Exploits0References1
nvd
nvd
added 2 days ago3 views

CVE-2026-47996

Adobe Commerce is affected by an Incorrect Authorization vulnerability that could result in a Security feature bypass. A high-privileged attacker could leverage this vulnerability to bypass security measures and gain unauthorized read access. Exploitation of this issue does not require user...

7.6CVSS0.18502EPSS
Exploits0References1
cve
cve
added 2 days ago5 views

CVE-2026-47997

Adobe Commerce is affected by an Incorrect Authorization vulnerability that could bypass security features and allow unauthorized read access. The issue is exploitable remotely over the network, does not require user interaction, and exploitation depends on conditions beyond the attacker’s contro...

5.9CVSS6.1AI score0.00612EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2 days ago33 views

CVE-2026-47997 Adobe Commerce | Incorrect Authorization (CWE-863)

Adobe Commerce is affected by an Incorrect Authorization vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and gain unauthorized read access. Exploit depends on conditions beyond the attacker's control...

5.9CVSS0.00612EPSS
Exploits0References1
cve
cve
added 2 days ago7 views

CVE-2026-47998

Adobe Commerce is affected by an Incorrect Authorization (CWE-863) vulnerability that could bypass security features and allow unauthorized read access. The issue is exploitable over a network with high attack complexity and requires no privileges or user interaction, though exploitation depends ...

5.9CVSS6.1AI score0.00612EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2 days ago32 views

CVE-2026-47998 Adobe Commerce | Incorrect Authorization (CWE-863)

Adobe Commerce is affected by an Incorrect Authorization vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and gain unauthorized read access. Exploit depends on conditions beyond the attacker's control...

5.9CVSS0.00612EPSS
Exploits0References1
cve
cve
added 2 days ago6 views

CVE-2026-47996

Technical details about CVE-2026-47996 are not publicly available in the provided documents; monitor for updates. Available descriptions indicate an Incorrect Authorization issue in Adobe Commerce that could enable unauthorized read access with high privileges.

7.6CVSS6.1AI score0.18502EPSS
Exploits0References1Affected Software1
ptsecurity
ptsecurity
added 2 days ago8 views

PT-2026-58832

Name of the Vulnerable Software and Affected Versions CAI Content Credentials affected versions not specified Description An issue involving insufficiently protected credentials could lead to the disclosure of sensitive information. An attacker could exploit this to gain unauthorized read access...

7.5CVSS6.1AI score0.00389EPSS
Exploits0References3
cvelist
cvelist
added 2026/07/03 8:54 p.m.37 views

CVE-2026-58423 LFS authentication bypass via malformed SSH sub-verb allows unauthorized read access to private repositories

LFS authentication bypass via malformed SSH sub-verb allows unauthorized read access to private repositories...

7.7CVSS0.0031EPSS
Exploits0References4
attackerkb
attackerkb
added 2026/07/03 8:54 p.m.7 views

CVE-2026-58423

LFS authentication bypass via malformed SSH sub-verb allows unauthorized read access to private repositories...

7.7CVSS5.9AI score0.0031EPSS
Exploits0References5Affected Software1
nvd
nvd
added 2026/06/30 4:16 p.m.8 views

CVE-2026-48285

ColdFusion versions 2025.9, 2023.20 and earlier are affected by a Server-Side Request Forgery SSRF vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and gain unauthorized read access. Exploitation of this issue...

8.6CVSS0.00439EPSS
Exploits0References1
cve
cve
added 2026/06/30 3:12 p.m.87 views

CVE-2026-48285

CVE-2026-48285 affects ColdFusion versions 2025.9, 2023.20 and earlier. It describes a Server-Side Request Forgery (SSRF) that can bypass security features and grant unauthorized read access without user interaction. The Bug’s scope is reported as changed, and the CVSS v3.1 base score is 8.6 (HIG...

8.6CVSS5.8AI score0.00439EPSS
Exploits0References1Affected Software1
osv
osv
added 2026/06/18 1:49 p.m.6 views

SUSE-SU-2026:2453-1 Security update for java-1_8_0-ibm

This update for java-180-ibm fixes the following issues - CVE-2026-22007: APIs in the specified component can lead to an unauthorized read access bsc1262490. - CVE-2026-22013: unauthenticated attacker with network access can access to critical data bsc1262494. - CVE-2026-22016: APIs in the...

9.8CVSS5.9AI score0.00702EPSS
Exploits0References16
nvd
nvd
added 2026/06/17 10:54 a.m.12 views

CVE-2026-46874

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is 7.2.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle V...

3.2CVSS0.00129EPSS
Exploits0References1
Rows per page
Query Builder