Lucene search
K

162572 matches found

Cvelist
Cvelist
added 2026/06/04 1:17 p.m.38 views

CVE-2026-10856 Open redirect in MISP dashboard button widget URL handling

A URL validation flaw in the MISP dashboard button widget allowed a crafted relative-looking URL to be accepted as a local path while being interpreted by browsers as an external URL. The validation rejected URLs containing an explicit scheme, host, or user component, but did not reject paths...

5.1CVSS0.00148EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/04 12:41 p.m.9 views

EUVD-2025-210065

The HCL BigFix Cloud Lifecycle Management is affected by Lack Of Input Validation. It may leads to an information exposure vulnerability. This low-level flaw allows unauthorized access...

3.3CVSS5.8AI score0.001EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/04 12:41 p.m.6 views

CVE-2025-62338

HCL BigFix Cloud Lifecycle Management is affected by lack of input validation. This low-level flaw allows unauthorized access and may lead to information exposure...

3.3CVSS5.8AI score0.001EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/04 12:41 p.m.11 views

CVE-2025-62338 HCL BigFix Cloud Lifecycle Management is affected by lack of input validation

HCL BigFix Cloud Lifecycle Management is affected by lack of input validation. This low-level flaw allows unauthorized access and may lead to information exposure...

3.3CVSS5.4AI score0.001EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/04 12:41 p.m.35 views

CVE-2025-62338 HCL BigFix Cloud Lifecycle Management is affected by lack of input validation

HCL BigFix Cloud Lifecycle Management is affected by lack of input validation. This low-level flaw allows unauthorized access and may lead to information exposure...

3.3CVSS0.001EPSS
Exploits0References1
CVE
CVE
added 2026/06/04 12:41 p.m.18 views

CVE-2025-62338

Technical details are not publicly available in the provided documents. Monitor for updates.

3.3CVSS5.4AI score0.001EPSS
Exploits0References1
NVD
NVD
added 2026/06/04 12:16 p.m.9 views

CVE-2025-52606

HCL iControl was affected by Weak Input Validation vulnerability. This weakness is caused during implementation of an architectural security tactic. Received input that is expected to be of a certain type, but it does not validate or incorrectly validates that the input is actually of the expecte...

4.3CVSS0.00169EPSS
Exploits0References1
Rockylinux
Rockylinux
added 2026/06/04 12:4 p.m.10 views

flatpak security update

An update is available for flatpak. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Flatpak is a system for building, distributing, and running sandboxed deskto...

10CVSS7.7AI score0.0168EPSS
Exploits0
OSV
OSV
added 2026/06/04 12:4 p.m.23 views

RLSA-2026:21557 Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: can: j1939: j1939sessionnew: fix skb reference counting CVE-2024-56645 kernel: ima: don't clear IMADIGSIG flag when setting or removing non-IMA xattr CVE-2025-68183 kernel: mm: thp: deny...

7.5CVSS7.1AI score0.00514EPSS
Exploits0References19
OSV
OSV
added 2026/06/04 12:4 p.m.12 views

RLSA-2026:21757 Important: flatpak security update

Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. Security Fixes: flatpak: Flatpak: Arbitrary code execution via crafted symlinks in sandbox-expose options CVE-2026-34078 flatpak: Flatpak: Arbitrary file deletion on host via improper cache file...

9CVSS7.7AI score0.0168EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/06/04 11:56 a.m.8 views

CVE-2025-52606 HCL iControl was affected by Weak Input Validation vulnerability. .

HCL iControl was affected by Weak Input Validation vulnerability. This weakness is caused during implementation of an architectural security tactic. Received input that is expected to be of a certain type, but it does not validate or incorrectly validates that the input is actually of the expecte...

4.3CVSS5.8AI score0.00169EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/04 11:56 a.m.6 views

CVE-2025-52606

HCL iControl was affected by Weak Input Validation vulnerability. This weakness is caused during implementation of an architectural security tactic. Received input that is expected to be of a certain type, but it does not validate or incorrectly validates that the input is actually of the expecte...

4.3CVSS5.8AI score0.00169EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/04 11:56 a.m.13 views

CVE-2025-52606

Technical details about CVE-2025-52606 are not publicly provided in the supplied documents. No affected products, versions, exploit info, or remediation are specified here. Monitor for updates.

4.3CVSS5.8AI score0.00169EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/06/04 11:56 a.m.38 views

CVE-2025-52606 HCL iControl was affected by Weak Input Validation vulnerability. .

HCL iControl was affected by Weak Input Validation vulnerability. This weakness is caused during implementation of an architectural security tactic. Received input that is expected to be of a certain type, but it does not validate or incorrectly validates that the input is actually of the expecte...

4.3CVSS0.00169EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/04 11:56 a.m.9 views

EUVD-2025-210062

HCL iControl was affected by Weak Input Validation vulnerability. This weakness is caused during implementation of an architectural security tactic. Received input that is expected to be of a certain type, but it does not validate or incorrectly validates that the input is actually of the expecte...

4.3CVSS5.8AI score0.00169EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/06/04 10:49 a.m.7 views

kernel: smb: client: validate the whole DACL before rewriting it in cifsacl

A flaw was found in the Linux kernel's Server Message Block SMB client, specifically within the cifsacl functionality. A malicious SMB server could provide a malformed Discretionary Access Control List DACL that claims to contain more Access Control Entries ACEs than are actually present. This...

8.8CVSS5.8AI score0.00259EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/06/04 10:3 a.m.12 views

CVE-2026-8036

Improper input validation in NI-PAL may allow a local authenticated user to access arbitrary system memory, potentially leading to privilege escalation. This vulnerability affects NI-PAL 26.3.0 and prior versions on Windows and Linux...

8.4CVSS5.9AI score0.00107EPSS
Exploits0References1
NVD
NVD
added 2026/06/04 9:16 a.m.12 views

CVE-2026-50212

Weak validation logic within device dissociation API routines allows a remote entity to forcefully unbind unrelated user endpoints, causing severe denial of service...

7.1CVSS0.00165EPSS
Exploits0References1
NVD
NVD
added 2026/06/04 9:16 a.m.12 views

CVE-2026-50208

High-risk TrustAllCerts routines disable standard TLS certificate validation. Combined with hard-coded DES symmetric encryption keys, a Man-in-the-Middle MITM actor could decrypt network traffic...

9.4CVSS0.00141EPSS
Exploits0References1
NVD
NVD
added 2026/06/04 9:16 a.m.17 views

CVE-2026-50213

The account validation endpoint /v1/User/validate returns comprehensive user profile data sheets, which can be crawled by iterating predictable identification strings...

8.7CVSS0.00232EPSS
Exploits0References1
Rows per page
Query Builder