Lucene search
+L

20433 matches found

Cvelist
Cvelist
added 2026/07/09 9:8 p.m.34 views

CVE-2026-57027 Junos OS: EX4100 Series, EX4400: With sFlow configured in a VC scenario multicast traffic leads to an FPC crash

A Missing Release of Memory after Effective Lifetime vulnerability in the packet forwarding engine pfe of Juniper Networks Junos OS on specific EX Series devices allows an unauthenticated adjacent attacker to cause a Denial-of-Service DoS.When sFlow is configured in a Virtual Chassis VC scenario...

7.1CVSS0.00269EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/07/09 9:5 p.m.34 views

CVE-2026-57021 Junos OS: SRX Series: If VPN compliance-check is configured an attacker can cause http-gk process crash

An Out-of-bounds Write vulnerability in the http-gatekeeper http-gk of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to cause a Denial-of-Service DoS. If an SRX Series device is configured for remote-access VPN with pre-logon compliance check, a...

6.9CVSS0.00474EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/07/09 9:3 p.m.37 views

CVE-2026-33800 Junos OS: MX Series: In a VC scenario a high rate of micro-BFD session flaps will cause an FPC crash

An Unchecked Input for Loop Condition vulnerability in the Packet Forwarding Engine pfe of Juniper Networks Junos OS on MX Series allows an unauthenticated, adjacent attacker to cause a Denial-of-Service DoS.Micro-BFD session flaps generate respective up/down events which are queued by PFEMAN for...

7.1CVSS0.00269EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/07/09 9:3 p.m.7 views

CVE-2026-33800

An Unchecked Input for Loop Condition vulnerability in the Packet Forwarding Engine pfe of Juniper Networks Junos OS on MX Series allows an unauthenticated, adjacent attacker to cause a Denial-of-Service DoS.Micro-BFD session flaps generate respective up/down events which are queued by PFEMAN for...

7.1CVSS5.9AI score0.00269EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/09 9:3 p.m.20 views

CVE-2026-33800

CVE-2026-33800 affects Junos OS on MX Series (MX FPCs up to MPC9). The issue is caused by an unchecked input for a loop condition in PFEMAN, where high-rate Micro-BFD session flaps queue events and a VC with locality-bias amplifies processing time, causing PFEMAN to miss processing and the PFEMAN...

7.1CVSS5.9AI score0.00269EPSS
Exploits0References1
EUVD
EUVD
added 2026/07/09 7:17 p.m.8 views

EUVD-2026-42690

A privilege escalation vulnerability in Palo Alto Networks Cortex® XDR Broker VM enables a locally authenticated user to perform actions as the root user...

4.8CVSS6AI score0.00144EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/07/09 7:17 p.m.8 views

CVE-2026-0276 Cortex XDR Broker VM: Privilege Escalation (PE) Vulnerability

A privilege escalation vulnerability in Palo Alto Networks Cortex® XDR Broker VM enables a locally authenticated user to perform actions as the root user...

4.8CVSS6.1AI score0.00144EPSS
Exploits0References1
CVE
CVE
added 2026/07/09 7:17 p.m.7 views

CVE-2026-0276

CVE-2026-0276 concerns Palo Alto Networks Cortex XDR Broker VM. The connected sources describe a privilege-escalation issue in the VM related to insecure privilege management that would allow a locally authenticated attacker to escalate to root privileges. There are no specific version numbers, r...

7.8CVSS6AI score0.00144EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/07/09 7:14 p.m.10 views

CVE-2026-0277

An improper certificate validation vulnerability in the Prisma® Access Agent for iOS enables an attacker to perform a man-in-the-middle MitM attack to intercept VPN traffic. The Prisma Access Agent on Windows, macOS, Linux, Android and ChromeOS are not affected...

8.7CVSS6AI score0.00201EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/07/09 7:2 p.m.39 views

CVE-2026-0282 PAN-OS: File Deletion Vulnerability in Management Web Interface

A file deletion vulnerability in Palo Alto Networks PAN-OS® software enables an unauthenticated attacker with network access to the management web interface to delete files from a temporary directory. The security risk posed by this issue is minimized by restricting access to the management web...

6.9CVSS0.00288EPSS
Exploits0References1
NVD
NVD
added 2026/07/09 4:16 p.m.8 views

CVE-2026-23562

This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. XAPI can configure different users with different roles, using Role Based Access Control. For more details, see:...

9.4CVSS0.0014EPSS
Exploits0References1
OSV
OSV
added 2026/07/09 4:16 p.m.4 views

ALPINE-CVE-2026-23561

This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. XAPI can configure different users with different roles, using Role Based Access Control. For more details, see:...

9.4CVSS6.2AI score0.0014EPSS
Exploits0References1
NVD
NVD
added 2026/07/09 4:16 p.m.7 views

CVE-2026-23559

This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. XAPI can configure different users with different roles, using Role Based Access Control. For more details, see:...

9.4CVSS0.00134EPSS
Exploits0References1
OSV
OSV
added 2026/07/09 4:16 p.m.4 views

ALPINE-CVE-2026-23560

This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. XAPI can configure different users with different roles, using Role Based Access Control. For more details, see:...

9.4CVSS7.1AI score0.0014EPSS
Exploits0References1
OSV
OSV
added 2026/07/09 4:16 p.m.2 views

ALPINE-CVE-2025-58151

varstored is a component of the Xapi toolstack handling UEFI Variables for a VM. It has a communication path with OVMF inside the VM involving mapping a buffer prepared by OVMF. Within varstored, there were insufficient compiler barriers, creating TOCTOU issues with data in the shared buffer. The...

9.4CVSS6.2AI score0.0012EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/07/09 3:16 p.m.10 views

CVE-2026-42486

This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. XAPI can configure different users with different roles, using Role Based Access Control. For more details, see:...

9.4CVSS6AI score0.0014EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/07/09 3:16 p.m.32 views

CVE-2026-42486 Multiple RBAC issues in XAPI

This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. XAPI can configure different users with different roles, using Role Based Access Control. For more details, see:...

9.4CVSS0.0014EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/07/09 3:16 p.m.7 views

CVE-2026-42486 Multiple RBAC issues in XAPI

This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. XAPI can configure different users with different roles, using Role Based Access Control. For more details, see:...

9.4CVSS7.2AI score0.0014EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/07/09 3:15 p.m.32 views

CVE-2026-23562 Multiple RBAC issues in XAPI

This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. XAPI can configure different users with different roles, using Role Based Access Control. For more details, see:...

9.4CVSS0.0014EPSS
Exploits0References1
EUVD
EUVD
added 2026/07/09 3:15 p.m.7 views

EUVD-2026-42607

This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. XAPI can configure different users with different roles, using Role Based Access Control. For more details, see:...

9.4CVSS7.2AI score0.0014EPSS
Exploits0References1
Rows per page
Query Builder