Lucene search
K

7036 matches found

GithubExploit
GithubExploit
added 2026/06/13 9:21 p.m.239 views

POC_cve_2026_35273

POCcve202635273 Universal Unauthenticated RCE via PeopleSof...

5.4AI score
Exploits0
Circl
Circl
added 2026/06/12 4:0 p.m.9 views

GHSA-8HG8-63C5-GWMX

creationtimestamp| type| source ---|---|--- 2026-06-12 16:00:32+00:00| seen| https://bsky.app/profile/euvd-bot.bsky.social/post/3mo44dsnzdc2y...

5AI score
Exploits0References1
NVD
NVD
added 2026/06/12 3:16 p.m.11 views

CVE-2026-8694

Improper access control in Devolutions PowerShell Universal 2026.1.7 and earlier allows an unauthenticated remote attacker to obtain the OpenAPI specification of user-defined REST endpoints...

5.3CVSS0.00221EPSS
Exploits0References1
CVE
CVE
added 2026/06/12 2:11 p.m.16 views

CVE-2026-8694

CVE-2026-8694 involves an improper access control flaw in Devolutions PowerShell Universal up to version 2026.1.7, where an unauthenticated remote attacker can obtain the OpenAPI specification of user-defined REST endpoints. The affected component is the OpenAPI/REST endpoint documentation expose...

5.3CVSS5.4AI score0.00221EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/06/12 2:11 p.m.28 views

CVE-2026-8694 Improper access control on the API documentation endpoint in PowerShell Universal

Improper access control in Devolutions PowerShell Universal 2026.1.7 and earlier allows an unauthenticated remote attacker to obtain the OpenAPI specification of user-defined REST endpoints...

0.00221EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/12 2:11 p.m.8 views

CVE-2026-8694 Improper access control on the API documentation endpoint in PowerShell Universal

Improper access control in Devolutions PowerShell Universal 2026.1.7 and earlier allows an unauthenticated remote attacker to obtain the OpenAPI specification of user-defined REST endpoints...

5.3AI score0.00221EPSS
Exploits0References1
Circl
Circl
added 2026/06/12 1:36 p.m.13 views

CVE-2026-49347

creationtimestamp| type| source ---|---|--- 2026-06-12 13:36:59+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mo3ud4luzf2r...

5.3CVSS5AI score0.00235EPSS
Exploits0References1
Circl
Circl
added 2026/06/12 5:0 a.m.12 views

CVE-2026-48612

creationtimestamp| type| source ---|---|--- 2026-06-12 05:00:18+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mo2xh6tipn24 2026-06-12 05:19:31+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mo2yjlei6u2g 2026-07-04 09:29:28+00:00| seen|...

8CVSS7.2AI score0.0012EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/06/12 12:0 a.m.15 views

PT-2026-48887

Improper access control in Devolutions PowerShell Universal 2026.1.7 and earlier allows an unauthenticated remote attacker to obtain the OpenAPI specification of user-defined REST endpoints...

5.4AI score0.00221EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/10 9:1 p.m.11 views

CVE-2026-45599

Use after free in Universal Plug and Play upnp.dll allows an unauthorized attacker to execute code over a network...

8.1CVSS5.7AI score0.0052EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/10 9:0 p.m.7 views

CVE-2026-40404

Windows Universal Disk Format File System Driver UDFS Elevation of Privilege Vulnerability...

7.8CVSS5.4AI score0.00339EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/10 9:0 p.m.13 views

CVE-2026-40409

Windows Universal Disk Format File System Driver UDFS Elevation of Privilege Vulnerability...

7.8CVSS5.4AI score0.00298EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/06/10 8:9 p.m.8 views

kernel: ALSA: 6fire: fix use-after-free on disconnect

A flaw was found in the Linux kernel's ALSA 6fire USB audio device driver. During the disconnection process of a 6fire USB audio device, a use-after-free vulnerability occurs. This happens when the system attempts to write to memory that has already been deallocated, which can lead to memory...

7.8CVSS5.5AI score0.00128EPSS
Exploits0References5
Snyk
Snyk
added 2026/06/09 6:33 p.m.8 views

Missing Cryptographic Step

Overview Affected versions of this package are vulnerable to Missing Cryptographic Step in the AES-OCB provider when an application uses the EVPCipher interface. The handler silently discards the IV, so every message under a given key runs with the all-zero offset state, causing nonce reuse. If...

9.1CVSS5.3AI score0.0032EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/09 6:30 p.m.11 views

EUVD-2026-35655

Windows Universal Disk Format File System Driver UDFS Elevation of Privilege Vulnerability...

7.8CVSS5.4AI score0.00298EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/09 6:30 p.m.14 views

EUVD-2026-35656

Windows Universal Disk Format File System Driver UDFS Elevation of Privilege Vulnerability...

7.8CVSS5.4AI score0.00339EPSS
Exploits0References2
NVD
NVD
added 2026/06/09 5:17 p.m.16 views

CVE-2026-45635

Use after free in Universal Plug and Play upnp.dll allows an unauthorized attacker to execute code over a network...

8.1CVSS0.0052EPSS
Exploits0References1
NVD
NVD
added 2026/06/09 5:17 p.m.10 views

CVE-2026-40409

Windows Universal Disk Format File System Driver UDFS Elevation of Privilege Vulnerability...

7.8CVSS0.00298EPSS
Exploits0References1
NVD
NVD
added 2026/06/09 5:17 p.m.8 views

CVE-2026-40404

Windows Universal Disk Format File System Driver UDFS Elevation of Privilege Vulnerability...

7.8CVSS0.00339EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/09 5:5 p.m.12 views

EUVD-2026-35563

Use after free in Universal Plug and Play upnp.dll allows an unauthorized attacker to execute code over a network...

8.1CVSS5.7AI score0.0052EPSS
Exploits0References1
Rows per page
Query Builder