CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16791 matches found

ATTACKERKB•added 2026/04/01 9:32 p.m.•2 views

CVE-2026-3987

A path traversal vulnerability in the Fireware OS Web UI on WatchGuard Firebox systems may allow a privileged authenticated remote attacker to execute arbitrary code in the context of an elevated system process.This issue affects Fireware OS 12.6.1 up to and including 12.11.8 and 2025.1 up to and...

8.6CVSS6.2AI score0.00588EPSS

Exploits0References2Affected Software1

EUVD•added 2026/04/01 6:36 p.m.•1 views

EUVD-2026-17955

A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager EPNM could allow an authenticated, remote attacker with low privileges to access sensitive information that they are not authorized to access. This vulnerability is due to improper authorization...

8CVSS5.9AI score0.0027EPSS

Exploits0References2

EUVD•added 2026/04/01 6:36 p.m.•3 views

EUVD-2026-17952

A vulnerability in the web-based management interface of Cisco IMC could allow an authenticated, remote attacker with admin-level privileges to perform command injection attacks on an affected system and execute arbitrary commands as the root user. This vulnerability is due to improper validation...

6.5CVSS6.1AI score0.00719EPSS

Exploits0References2

EUVD•added 2026/04/01 6:36 p.m.•6 views

EUVD-2026-17953

A vulnerability in the web-based management interface of Cisco IMC could allow an authenticated, remote attacker with admin-level privileges to execute arbitrary code as the root user. This vulnerability is due to improper validation of user-supplied input to the web-based management interface. A...

6.5CVSS6.2AI score0.00549EPSS

Exploits0References2

EUVD•added 2026/04/01 6:36 p.m.•3 views

EUVD-2026-17950

6.5CVSS6.1AI score0.00929EPSS

Exploits0References2

EUVD•added 2026/04/01 6:36 p.m.•8 views

EUVD-2026-17954

A vulnerability in the web interface of Cisco Smart Software Manager On-Prem SSM On-Prem could allow an authenticated, remote attacker to elevate privileges on an affected system. This vulnerability is due to the improper transmission of sensitive user information. An attacker could exploit this...

7.3CVSS6AI score0.00264EPSS

Exploits0References2

EUVD•added 2026/04/01 6:36 p.m.•4 views

EUVD-2026-17940

A vulnerability in the web-based management interface of Cisco IMC could allow an authenticated, remote attacker with administrative privileges to conduct a stored XSS attack against a user of the interface. This vulnerability is due to insufficient validation of user input. An attacker could...

4.8CVSS6.2AI score0.00223EPSS

Exploits0References2

EUVD•added 2026/04/01 6:36 p.m.•5 views

EUVD-2026-17945

4.8CVSS6.2AI score0.00237EPSS

Exploits0References2

EUVD•added 2026/04/01 6:36 p.m.•3 views

EUVD-2026-17943

4.8CVSS6.2AI score0.00237EPSS

Exploits0References2

EUVD•added 2026/04/01 6:36 p.m.•3 views

EUVD-2026-17948

A vulnerability in the web-based management interface of Cisco IMC could allow an authenticated, remote attacker with read-only privileges to perform command injection attacks on an affected system and execute arbitrary commands as the root user. This vulnerability is due to improper validation o...

8.8CVSS6.2AI score0.01094EPSS

Exploits0References2

EUVD•added 2026/04/01 6:36 p.m.•3 views

EUVD-2026-17937

A vulnerability in the web-based management interface of Cisco IMC could allow an unauthenticated, remote attacker to conduct a reflected XSS attack against a user of the interface. This vulnerability is due to insufficient validation of user input. An attacker could exploit this vulnerability by...

6.1CVSS6.2AI score0.00184EPSS

Exploits0References2