Lucene search
K

1947 matches found

NVD
NVD
added 2026/05/13 6:16 a.m.23 views

CVE-2026-21015

Incorrect default permissions in FactoryCamera prior to SMR May-2026 Release 1 allows local attacker to access unique identifier...

6.8CVSS0.00092EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/13 4:56 a.m.9 views

CVE-2026-21015

Incorrect default permissions in FactoryCamera prior to SMR May-2026 Release 1 allows local attacker to access unique identifier...

6.8CVSS5.8AI score0.00092EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/13 4:56 a.m.40 views

CVE-2026-21015

Incorrect default permissions in FactoryCamera prior to SMR May-2026 Release 1 allows local attacker to access unique identifier...

6.8CVSS0.00092EPSS
Exploits0References1
CVE
CVE
added 2026/05/13 4:56 a.m.22 views

CVE-2026-21015

CVE-2026-21015 : The issue concerns incorrect default permissions in the FactoryCamera prior to the SMR May-2026 Release 1, enabling a local attacker to access the device’s unique identifier. The CVSS v4.0 metrics indicate a LOCAL attack vector, LOW attack complexity, and LOW privilegesRequired, ...

6.8CVSS5.8AI score0.00092EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/13 4:56 a.m.7 views

CVE-2026-21015

Incorrect default permissions in FactoryCamera prior to SMR May-2026 Release 1 allows local attacker to access unique identifier...

6.8CVSS5.8AI score0.00092EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/13 12:0 a.m.14 views

PT-2026-40568

Incorrect default permissions in FactoryCamera prior to SMR May-2026 Release 1 allows local attacker to access unique identifier...

6.8CVSS5.8AI score0.00092EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/13 12:0 a.m.11 views

SAMSUNG Mobile devices 安全漏洞

Samsung Mobile devices are a series of mobile devices produced by Samsung Electronics in South Korea. This includes smartphones, tablets, etc. Versions of Samsung Mobile devices prior to SMR May-2026 Release 1 contained security vulnerabilities. These vulnerabilities were caused by incorrect...

6.8CVSS5.8AI score0.00092EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/13 12:0 a.m.9 views

PT-2026-40807

MISP is an open source threat intelligence and sharing platform. Prior to 2.5.37, MISP Collections did not enforce RFC 4122 UUID validation on the uuid field. As a result, a user able to create or modify Collection records could submit malformed UUID values, potentially causing integrity issues o...

5.3CVSS5.9AI score0.00178EPSS
Exploits0References3
NVD
NVD
added 2026/05/12 10:16 p.m.11 views

CVE-2026-45226

Heym before 0.0.21 contains an authorization bypass vulnerability in workflow execution that allows authenticated users to execute arbitrary workflows by referencing victim workflow UUIDs without proper access validation. Attackers can create workflows with execute nodes or agent subWorkflowIds...

7.6CVSS0.00293EPSS
Exploits0References4
Veracode
Veracode
added 2026/05/12 2:12 p.m.15 views

Improper Memory Buffer Handling

uuid is vulnerable to Improper Memory Buffer Handling. The vulnerability is due to missing validation of buffer size and offset values during UUID generation, which allows an attacker to trigger silent partial writes into caller-provided buffers...

9.3CVSS5.9AI score0.00337EPSS
Exploits1References5Affected Software1
Malwarebytes
Malwarebytes
added 2026/05/11 1:21 p.m.20 views

Yarbo responds to robot flaws that could mow down their owners

A researcher found that Yarbo yard robots came with a host of vulnerabilities which, among others, allowed an attacker to harvest WiFi passwords. Security researcher Andreas Makris found he could remotely hijack thousands of Yarbo yard robots worldwide, and proved it by having his mower run him...

5.7AI score
Exploits0
OSV
OSV
added 2026/05/10 11:1 p.m.10 views

MINI-VQQH-C9C4-W7C7

Bulletin has no description...

5.3CVSS5.7AI score0.0039EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/05/08 11:24 a.m.8 views

CVE-2026-33420

A flaw was found in Vaultwarden. A Manager-role user with limited access permissions can exploit a missing authorization check in the getorgcollectionsdetails endpoint. This vulnerability allows the user to retrieve sensitive information, including names, UUIDs, and user and group mappings for al...

5.3CVSS5.6AI score0.0017EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.11 views

PT-2026-39020

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the btrfs component where the 'set received' ioctl can trigger a transaction abort due to an item overflow when adding the BTRFS UUID KEY RECEIVED SUBVOL. A user who...

9.8CVSS5.5AI score0.005EPSS
Exploits5References478
RedhatCVE
RedhatCVE
added 2026/05/07 4:59 p.m.9 views

CVE-2026-41907

A flaw was found in uuid. The library's versions v3, v5, and v6 do not adequately check the size of external memory buffers provided by applications. This oversight allows the library to write data beyond the designated buffer limits without signaling an error. Such out-of-bounds writes can lead ...

9.3CVSS5.9AI score0.00337EPSS
Exploits1References4
OSV
OSV
added 2026/05/07 11:46 a.m.9 views

CGA-P8CM-X97P-9GF6

Bulletin has no description...

6.3CVSS5.7AI score0.00265EPSS
Exploits1
EUVD
EUVD
added 2026/05/06 3:32 p.m.11 views

EUVD-2026-27823

Apache::Session::Generate::ModUniqueId versions from 1.54 through 1.94 for Perl session ids are insecure. Apache::Session::Generate::ModUniqueId added in version 1.54 uses the value of the UNIQUEID environment variable for the session id. The UNIQUEID variable is set by the Apache moduniqueid...

9.1CVSS5.8AI score0.00302EPSS
Exploits0References3
NVD
NVD
added 2026/05/06 1:16 p.m.16 views

CVE-2026-5081

Apache::Session::Generate::ModUniqueId versions from 1.54 through 1.94 for Perl session ids are insecure. Apache::Session::Generate::ModUniqueId added in version 1.54 uses the value of the UNIQUEID environment variable for the session id. The UNIQUEID variable is set by the Apache moduniqueid...

9.1CVSS0.00302EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/05/06 12:16 p.m.6 views

CVE-2026-5081 Apache::Session::Generate::ModUniqueId versions from 1.54 through 1.94 for Perl session ids are insecure

Apache::Session::Generate::ModUniqueId versions from 1.54 through 1.94 for Perl session ids are insecure. Apache::Session::Generate::ModUniqueId added in version 1.54 uses the value of the UNIQUEID environment variable for the session id. The UNIQUEID variable is set by the Apache moduniqueid...

5.8AI score0.00302EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/05/06 12:16 p.m.6 views

CVE-2026-5081

Apache::Session::Generate::ModUniqueId versions from 1.54 through 1.94 for Perl session ids are insecure. Apache::Session::Generate::ModUniqueId added in version 1.54 uses the value of the UNIQUEID environment variable for the session id. The UNIQUEID variable is set by the Apache moduniqueid...

9.1CVSS5.8AI score0.00302EPSS
Exploits0
Rows per page
Query Builder