Lucene search
K

963 matches found

CVE
CVE
added 2026/04/24 6:8 a.m.16 views

CVE-2026-1952

Technical details for CVE-2026-1952 are not publicly available in the provided documents. Monitor for updates from Delta Electronics or CVE databases.

9.8CVSS5.7AI score0.00273EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2026/04/24 6:8 a.m.6 views

EUVD-2026-25404

Delta Electronics AS320T has denial of service via the undocumented subfunction vulnerability...

9.8CVSS5.1AI score0.00611EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/24 6:8 a.m.30 views

CVE-2026-1952 Denial of service via the undocumented subfunction in AS320T

Delta Electronics AS320T has denial of service via the undocumented subfunction vulnerability...

9.8CVSS0.00273EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/24 12:0 a.m.12 views

PT-2026-34860

Delta Electronics AS320T has denial of service via the undocumented subfunction vulnerability...

9.8CVSS5.7AI score0.00611EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/04/16 9:37 p.m.6 views

Kyverno apiCall automatically forwards ServiceAccount token to external endpoints (credential leak)

Summary Kyverno's apiCall service mode automatically attaches the admission controller's ServiceAccount SA token to outbound HTTP requests. This results in unintended credential exposure when requests are sent to external or attacker-controlled endpoints. The behavior is insecure-by-default and n...

5.9AI score
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/04/16 6:31 a.m.9 views

EUVD-2023-44280

In products of the MSE6 product-family by Festo a remote authenticated, low privileged attacker could use functions of undocumented test mode which could lead to a complete loss of confidentiality, integrity and availability...

8.8CVSS5.8AI score0.00504EPSS
Exploits0References3
NVD
NVD
added 2026/04/16 5:16 a.m.10 views

CVE-2023-3634

In products of the MSE6 product-family by Festo a remote authenticated, low privileged attacker could use functions of undocumented test mode which could lead to a complete loss of confidentiality, integrity and availability...

8.8CVSS0.00504EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/04/16 4:40 a.m.28 views

CVE-2023-3634 Festo: MSE6-C2M/D2M/E2M Incomplete User Documentation of Remote Accessible Functions

In products of the MSE6 product-family by Festo a remote authenticated, low privileged attacker could use functions of undocumented test mode which could lead to a complete loss of confidentiality, integrity and availability...

8.8CVSS0.00504EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/16 4:40 a.m.8 views

CVE-2023-3634 Festo: MSE6-C2M/D2M/E2M Incomplete User Documentation of Remote Accessible Functions

In products of the MSE6 product-family by Festo a remote authenticated, low privileged attacker could use functions of undocumented test mode which could lead to a complete loss of confidentiality, integrity and availability...

8.8CVSS5.8AI score0.00504EPSS
Exploits0References2
CVE
CVE
added 2026/04/16 4:40 a.m.9 views

CVE-2023-3634

The CVE-2023-3634 issue affects Festo MSE6-C2M/D2M/E2M in the MSE6 product-family. A remote authenticated, low-privileged attacker could use functions in an undocumented test mode, potentially causing a complete loss of confidentiality, integrity and availability. Affected components: MSE6-C2M, M...

8.8CVSS5.8AI score0.00504EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/03 11:33 p.m.2 views

CVE-2026-34769 Electron: Renderer command-line switch injection via undocumented commandLineSwitches webPreference

Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. Prior to versions 38.8.6, 39.8.0, 40.7.0, and 41.0.0-beta.8, an undocumented commandLineSwitches webPreference allowed arbitrary switches to be appended to the renderer process command line. Ap...

7.7CVSS5.9AI score0.00295EPSS
Exploits0References1
CVE
CVE
added 2026/04/03 11:33 p.m.31 views

CVE-2026-34769

CVE-2026-34769 (Electron) affects Electron versions prior to 38.8.6, 39.8.0, 40.7.0, and 41.0.0-beta.8. An undocumented commandLineSwitches webPreference allowed arbitrary switches to be appended to the renderer process command line. When apps construct webPreferences from external or untrusted i...

8.8CVSS5.9AI score0.00295EPSS
Exploits0References4Affected Software1
Hacker One
Hacker One
added 2026/04/03 7:15 p.m.18 views

curl: Internal application wrapper or script using curl

While -guid is not a standard or documented curl command, a Command Injection or Argument Injection vulnerability within a specific application that wraps curl. Security Analysis: curl -guid -url example.com 1. Status of the "-guid" FlagUndocumented/Non-existent: The official curl binary does not...

6AI score
Exploits0
EUVD
EUVD
added 2026/04/03 2:39 a.m.10 views

EUVD-2026-18937

Electron: Renderer command-line switch injection via undocumented commandLineSwitches webPreference...

7.7CVSS5.9AI score0.00295EPSS
Exploits0References1
OSV
OSV
added 2026/04/03 2:39 a.m.4 views

GHSA-9WFR-W7MM-PC7F Electron: Renderer command-line switch injection via undocumented commandLineSwitches webPreference

Impact An undocumented commandLineSwitches webPreference allowed arbitrary switches to be appended to the renderer process command line. Apps that construct webPreferences by spreading untrusted configuration objects may inadvertently allow an attacker to inject switches that disable renderer...

7.7CVSS6AI score0.00295EPSS
Exploits0References3
Imperva Blog
Imperva Blog
added 2026/03/24 11:11 a.m.5 views

API Security for AI Agents: Why Protection Has Never Been More Important.

For years, a lot of risky APIs survived simply because they were hard to find. They weren’t documented. Only a handful of engineers knew the endpoints. And if an attacker wanted to abuse them, they had to spend real time reverse‑engineering traffic and guessing how things worked. That “security b...

5.9AI score
Exploits0
ICS
ICS
added 2026/03/23 8:0 a.m.7 views

WAGO GmbH & Co. KG Industrial Managed Switches

SUMMARY A vulnerability has been found affecting the Managed Switches of WAGO. An unauthenticated attacker can fully compromise the device via an undocumented function. 2. IMPACT This could lead to a full System compromise of the affected devices. 3. REMEDIATION Please update your devices to the...

10CVSS5.8AI score0.00679EPSS
Exploits0References12
OSV
OSV
added 2026/03/15 5:55 a.m.5 views

OESA-2026-1596 python-ply security update

/ply/ /ply--.egg-info/ Security Fixes: An undocumented and unsafe feature in the PLY Python Lex-Yacc library 3.11 allows Remote Code Execution RCE via the picklefile parameter in the yacc function. This parameter accepts a .pkl file that is deserialized with pickle.load without validation. Becaus...

9.8CVSS8.1AI score0.16903EPSS
Exploits3References2
OSV
OSV
added 2026/03/15 5:55 a.m.5 views

OESA-2026-1594 python-ply security update

/ply/ /ply--.egg-info/ Security Fixes: An undocumented and unsafe feature in the PLY Python Lex-Yacc library 3.11 allows Remote Code Execution RCE via the picklefile parameter in the yacc function. This parameter accepts a .pkl file that is deserialized with pickle.load without validation. Becaus...

9.8CVSS6.4AI score0.16903EPSS
Exploits3References2
RedhatCVE
RedhatCVE
added 2026/03/10 2:8 p.m.4 views

CVE-2025-41756

A low-privileged remote attacker can exploit the ubr-editfile method in wwwubr.cgi, an undocumented and unused API endpoint to write arbitrary files on the system...

8.1CVSS5.9AI score0.00326EPSS
Exploits0References1
Rows per page
Query Builder