CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16806 matches found

Vulnrichment•added 2026/04/01 4:27 p.m.•2 views

CVE-2026-20085 Cisco Integrated Management Controller Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco IMC could allow an unauthenticated, remote attacker to conduct a reflected XSS attack against a user of the interface. This vulnerability is due to insufficient validation of user input. An attacker could exploit this vulnerability by...

6.1CVSS6.2AI score0.00184EPSS

Exploits0References1

Cvelist•added 2026/04/01 4:27 p.m.•19 views

CVE-2026-20085 Cisco Integrated Management Controller Cross-Site Scripting Vulnerability

6.1CVSS0.00184EPSS

Exploits0References1

CVE•added 2026/04/01 4:27 p.m.•68 views

CVE-2026-20085

CVE-2026-20085 affects the web-based management interface of Cisco IMC. The issue is a reflected XSS caused by insufficient input validation that can be triggered when a user clicks a crafted link, enabling an unauthenticated remote attacker to execute arbitrary script code in the user’s browser ...

6.1CVSS6.2AI score0.00184EPSS

Exploits0References1

Cisco•added 2026/04/01 4:0 p.m.•12 views

Cisco Smart Software Manager On-Prem Privilege Escalation Vulnerability

A vulnerability in the web interface of Cisco Smart Software Manager On-Prem SSM On-Prem could allow an authenticated, remote attacker to elevate privileges on an affected system. This vulnerability is due to the improper transmission of sensitive user information. An attacker could exploit this...

7.3CVSS6AI score0.00264EPSS

Exploits0References1

Cisco•added 2026/04/01 4:0 p.m.•15 views

Cisco Integrated Management Controller Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Integrated Management Controller IMC could allow a remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. For more information about these vulnerabilities, see the Details "details"...

6.1CVSS5.9AI score0.00184EPSS

Exploits0References1

Positive Technologies•added 2026/04/01 12:0 a.m.•3 views

PT-2026-29558

A vulnerability in the web-based management interface of Cisco IMC could allow an authenticated, remote attacker with admin-level privileges to perform command injection attacks on an affected system and execute arbitrary commands as the root user. This vulnerability is due to improper validation...

6.5CVSS6.1AI score0.00929EPSS

Exploits0References4

Positive Technologies•added 2026/04/01 12:0 a.m.•6 views

PT-2026-29555

Name of the Vulnerable Software and Affected Versions Cisco IMC affected versions not specified Description A flaw exists in the web-based management interface of Cisco IMC that may allow a remote attacker with administrative privileges to perform a stored Cross-Site Scripting XSS attack against ...

4.8CVSS6.2AI score0.00237EPSS

Exploits0References4

CNNVD•added 2026/04/01 12:0 a.m.•4 views

WatchGuard Firebox Fireware OS 安全漏洞

WatchGuard Firebox Fireware OS is an operating system developed by the American company WatchGuard, designed to provide security protection and traffic control capabilities for firewall devices. Vulnerabilities exist in versions 12.6.1 to 12.11.8, as well as in versions 2025.1 to 2026.1.2 of...

8.6CVSS6.2AI score0.00588EPSS

Exploits0References1

Positive Technologies•added 2026/04/01 12:0 a.m.•2 views

PT-2026-29552

A vulnerability in the web-based management interface of Cisco IMC could allow an authenticated, remote attacker with administrative privileges to conduct a stored XSS attack against a user of the interface. This vulnerability is due to insufficient validation of user input. An attacker could...

4.8CVSS6.2AI score0.0017EPSS

Exploits0References3

Positive Technologies•added 2026/04/01 12:0 a.m.•5 views

PT-2026-29560

A vulnerability in the web-based management interface of Cisco IMC could allow an authenticated, remote attacker with admin-level privileges to execute arbitrary code as the root user. This vulnerability is due to improper validation of user-supplied input to the web-based management interface. A...

6.5CVSS6.2AI score0.00549EPSS

Exploits0References4

Positive Technologies•added 2026/04/01 12:0 a.m.•10 views

PT-2026-29561

7.3CVSS6AI score0.00264EPSS

Exploits0References2

Positive Technologies•added 2026/04/01 12:0 a.m.•2 views

PT-2026-29642

IBM Aspera Shares 1.9.9 through 1.11.0 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...

5.5CVSS5.6AI score0.00193EPSS

Exploits0References3

CNNVD•added 2026/04/01 12:0 a.m.•6 views

Cisco Integrated Management Controller（IMC）缓冲区错误漏洞

The Cisco Integrated Management Controller IMC is a set of software developed by Cisco, Inc., used for managing UCS Unified Computing System environments. This software supports HTTP and SSH access, and allows operations such as powering on, powering off, and restarting servers. The Cisco IMC has...

6.5CVSS6.3AI score0.00549EPSS

Exploits0References1

CNNVD•added 2026/04/01 12:0 a.m.•4 views

Cisco Integrated Management Controller（IMC）跨站脚本漏洞

The Cisco Integrated Management Controller IMC is a set of software developed by Cisco Corporation in the United States, used for managing UCS Unified Computing System environments. This software supports HTTP and SSH access, and allows operations such as starting, stopping, and restarting server...

4.8CVSS5.7AI score0.00237EPSS

Exploits0References1

Positive Technologies•added 2026/04/01 12:0 a.m.•2 views

PT-2026-29559

6.5CVSS6.1AI score0.00719EPSS

Exploits0References4

Positive Technologies•added 2026/04/01 12:0 a.m.•4 views

PT-2026-29554

4.8CVSS6.2AI score0.00237EPSS

Exploits0References3

Positive Technologies•added 2026/04/01 12:0 a.m.•5 views

PT-2026-29551