Lucene search
K
AttackerkbRecent

74667 matches found

ATTACKERKB
ATTACKERKB
added 2026/06/16 7:28 p.m.4 views

CVE-2026-46978

Vulnerability in the Oracle Solaris product of Oracle Systems component: Remote Administration Daemon. The supported version that is affected is 11.4. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle Solaris. While the vulnerabili...

10CVSS5.8AI score0.00307EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:27 p.m.2 views

CVE-2026-46893

Vulnerability in the JD Edwards EnterpriseOne General Ledger product of Oracle JD Edwards component: E1 Foundation. The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via SMB to compromise JD Edwards EnterpriseOne...

9.9CVSS5.8AI score0.00301EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:27 p.m.4 views

CVE-2026-46891

Vulnerability in the JD Edwards EnterpriseOne Accounts Payable product of Oracle JD Edwards component: Accounts Payable. The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise JD Edwards EnterpriseO...

8.1CVSS5.8AI score0.00337EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:27 p.m.2 views

CVE-2026-46892

Vulnerability in the JD Edwards EnterpriseOne Human Resources Management product of Oracle JD Edwards component: Human Resources. The supported version that is affected is 9.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise JD Edwards...

9.1CVSS5.8AI score0.00396EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:27 p.m.2 views

CVE-2026-46888

Vulnerability in the Siebel CRM Deployment product of Oracle Siebel CRM component: Database Upgrade. Supported versions that are affected are 17.0-26.5. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Siebel CRM Deployment executes to...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:27 p.m.4 views

CVE-2026-46885

Vulnerability in the Siebel CRM Integration product of Oracle Siebel CRM component: EAI. Supported versions that are affected are 17.0-26.5. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Siebel CRM Integration. Successful attacks of thi...

8.8CVSS7.3AI score0.00403EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:27 p.m.2 views

CVE-2026-46870

Vulnerability in the MySQL Shell product of Oracle MySQL component: Shell for VS Code. The supported version that is affected is 2026.2.0+9.6.1. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Shell. While the...

8.5CVSS7.2AI score0.00311EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:27 p.m.2 views

CVE-2026-46871

Vulnerability in the MySQL Shell product of Oracle MySQL component: Shell for VS Code. The supported version that is affected is 2026.2.0+9.6.1. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Shell. Successful attacks...

6.5CVSS6.6AI score0.00261EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:27 p.m.2 views

CVE-2026-46869

Vulnerability in the MySQL Shell product of Oracle MySQL component: Shell: Dump and Load. Supported versions that are affected are 8.4.0-8.4.9 and 9.0.0-9.7.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Shell...

6.5CVSS6.5AI score0.0018EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:27 p.m.4 views

CVE-2026-46851

Vulnerability in the PeopleSoft Enterprise CS Campus Community product of Oracle PeopleSoft component: Security. The supported version that is affected is 9.2.38. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise CS...

8.1CVSS5.8AI score0.00459EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:27 p.m.3 views

CVE-2026-46848

Vulnerability in the WebLogic Server product of Oracle Fusion Middleware component: Console. Supported versions that are affected are 14.1.2.0.0 and 15.1.1.0.0. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where WebLogic Server executes to...

7.9CVSS5.8AI score0.00152EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:27 p.m.3 views

CVE-2026-46849

Vulnerability in the PeopleSoft Enterprise CS Student Financials product of Oracle PeopleSoft component: Other. The supported version that is affected is 9.2.38. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise CS...

8.1CVSS7.3AI score0.00375EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:27 p.m.3 views

CVE-2026-46850

Vulnerability in the MySQL Shell product of Oracle MySQL component: Shell for VS Code. The supported version that is affected is 2026.2.0+9.6.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise MySQL Shell. While the vulnerability is in...

9.9CVSS7.3AI score0.00521EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:27 p.m.5 views

CVE-2026-46846

Vulnerability in the Oracle WebCenter Portal product of Oracle Fusion Middleware component: Security Framework. Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

10CVSS7.3AI score0.00355EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:27 p.m.3 views

CVE-2026-46845

Vulnerability in the Oracle WebCenter Portal product of Oracle Fusion Middleware component: Security Framework. Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle...

9.8CVSS5.8AI score0.00474EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:27 p.m.2 views

CVE-2026-46847

Vulnerability in the Oracle WebCenter Portal product of Oracle Fusion Middleware component: Runtime Tools. Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTPS to compromise Oracle WebCent...

9.9CVSS5.8AI score0.00411EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:27 p.m.2 views

CVE-2026-46844

Vulnerability in the Oracle WebCenter Portal product of Oracle Fusion Middleware component: Security Framework. Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTPS to compromise Oracle...

9.9CVSS7.3AI score0.00411EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:27 p.m.3 views

CVE-2026-46838

Vulnerability in the Oracle WebCenter Portal product of Oracle Fusion Middleware component: Security Framework. Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTPS to compromise Oracle...

9.9CVSS7.3AI score0.00411EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:27 p.m.3 views

CVE-2026-46808

Vulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware component: Content Server. The supported version that is affected is 14.1.2.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle WebCenter Content...

8.7CVSS7.3AI score0.00326EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:27 p.m.4 views

CVE-2026-46778

Vulnerability in the Oracle WebCenter Enterprise Capture product of Oracle Fusion Middleware component: Client Bundle. Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via RMI to compromise...

10CVSS7.3AI score0.00473EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:27 p.m.2 views

CVE-2026-35289

Vulnerability in the PeopleSoft Enterprise PT PeopleTools product of Oracle PeopleSoft component: Deployment Package. Supported versions that are affected are 8.61 and 8.62. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTPS to compromise PeopleSoft...

8.1CVSS5.8AI score0.00407EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:27 p.m.3 views

CVE-2026-35288

Vulnerability in the PeopleSoft Enterprise PT PeopleTools product of Oracle PeopleSoft component: Deployment Package. Supported versions that are affected are 8.61 and 8.62. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where PeopleSoft Enterpri...

8.2CVSS5.8AI score0.00187EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:27 p.m.3 views

CVE-2026-35285

Vulnerability in the Oracle WebCenter Enterprise Capture product of Oracle Fusion Middleware component: Client Bundle. Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via T3, IIOP to compromise...

9.9CVSS5.8AI score0.00411EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:27 p.m.4 views

CVE-2026-35283

Vulnerability in the Oracle WebCenter Enterprise Capture product of Oracle Fusion Middleware component: Client Bundle. Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via T3, IIOP to compromise...

9.9CVSS5.8AI score0.00411EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:27 p.m.3 views

CVE-2026-35284

Vulnerability in the Oracle WebCenter Enterprise Capture product of Oracle Fusion Middleware component: Client Bundle. Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via T3, IIOP to compromise...

9.9CVSS5.8AI score0.00411EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:26 p.m.4 views

CVE-2026-35282

Vulnerability in the Oracle WebCenter Enterprise Capture product of Oracle Fusion Middleware component: Client Bundle. Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via T3, IIOP to compromise...

9.9CVSS5.8AI score0.00402EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:26 p.m.2 views

CVE-2026-35280

Vulnerability in the Oracle WebCenter Enterprise Capture product of Oracle Fusion Middleware component: Client Bundle. Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via T3, IIOP to compromise...

9.9CVSS5.8AI score0.00402EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:26 p.m.2 views

CVE-2026-35281

Vulnerability in the Oracle WebCenter Enterprise Capture product of Oracle Fusion Middleware component: Client Bundle. Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via T3, IIOP to compromise...

9.9CVSS5.8AI score0.00402EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:26 p.m.2 views

CVE-2026-35276

Vulnerability in the PeopleSoft Enterprise PT PeopleTools product of Oracle PeopleSoft component: Application Server. Supported versions that are affected are 8.61 and 8.62. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft...

8.1CVSS5.8AI score0.00436EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:26 p.m.3 views

CVE-2026-35278

Vulnerability in the PeopleSoft Enterprise PT PeopleTools product of Oracle PeopleSoft component: Performance Monitor. Supported versions that are affected are 8.61 and 8.62. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft...

9.8CVSS5.8AI score0.00576EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:26 p.m.3 views

CVE-2026-35279

Vulnerability in the PeopleSoft Enterprise PT PeopleTools product of Oracle PeopleSoft component: Performance Monitor. Supported versions that are affected are 8.61 and 8.62. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft...

8.1CVSS5.8AI score0.00392EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:26 p.m.3 views

CVE-2026-35272

Vulnerability in the PeopleSoft Enterprise PT PeopleTools product of Oracle PeopleSoft component: Deployment Package. Supported versions that are affected are 8.61 and 8.62. Easily exploitable vulnerability allows unauthenticated attacker with logon to the infrastructure where PeopleSoft Enterpri...

8.4CVSS5.8AI score0.00196EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:26 p.m.4 views

CVE-2026-35274

Vulnerability in the PeopleSoft Enterprise PT PeopleTools product of Oracle PeopleSoft component: Deployment Package. Supported versions that are affected are 8.61 and 8.62. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft...

8.2CVSS5.8AI score0.00392EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 7:26 p.m.4 views

CVE-2026-35271

Vulnerability in the PeopleSoft Enterprise PT PeopleTools product of Oracle PeopleSoft component: Weblogic. Supported versions that are affected are 8.61 and 8.62. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise P...

8.7CVSS5.8AI score0.0034EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 6:51 p.m.4 views

CVE-2026-0156

In checkSsrcCollisionOnRcv of RtpSession.cpp, there is a possible memory safety issue due to a missing null check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

7.5CVSS6AI score0.00211EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/16 6:51 p.m.3 views

CVE-2026-0128

In RtcpFbPacket::decodeRtcpFbPacket, there is a possible out of bounds read due to an integer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation...

6.5CVSS6.1AI score0.00182EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/16 6:51 p.m.5 views

CVE-2026-0126

In WC-Radio, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation...

9.8CVSS6.4AI score0.00277EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/16 6:34 p.m.3 views

CVE-2026-12425

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in PowerSchool Employee Access Center allows Cross-Site Scripting XSS. This issue affects Employee Access Center: 23.10. It is possible to add in javascript code after the login URL and have it...

7.4CVSS5.9AI score0.00149EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 6:32 p.m.3 views

CVE-2026-47747

stable-diffusion.cpp is a pure C/C++ library for running diffusion model Stable Diffusion, Flux, Wan, Qwen Image, Z-Image, and more inference. In versions prior to master-584-0a7ae07, the pickle .ckpt parser in src/model.cpp contained a heap buffer overflow vulnerability in the BINUNICODE opcode...

7.8CVSS6AI score0.0018EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2026/06/16 6:17 p.m.3 views

CVE-2026-47750

stable-diffusion.cpp is a pure C/C++ library for running diffusion model Stable Diffusion, Flux, Wan, Qwen Image, Z-Image, and more inference. In versions prior to master-584-0a7ae07, the pickle .ckpt parser in src/model.cpp contained a heap buffer overflow vulnerability in the GLOBAL opcode...

7.8CVSS6AI score0.0018EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2026/06/16 6:1 p.m.4 views

CVE-2026-50656

Microsoft is aware of an elevation of privilege in the Microsoft Malware Protection Engine in Microsoft Defender publicly referred to as "RoguePlanet "...

7.8CVSS7.2AI score0.03391EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/16 5:53 p.m.3 views

CVE-2026-48775

LangGraph SQLite Checkpoint is an implementation of LangGraph CheckpointSaver that uses SQLite DB both sync and async, via aiosqlite. In versions 4.1.0 and prior, the JsonPlusSerializer can reconstruct Python objects from JSON checkpoint payloads. Under conditions where someone could modify...

6.8CVSS6.2AI score0.00232EPSS
Exploits0References2Affected Software2
ATTACKERKB
ATTACKERKB
added 2026/06/16 5:23 p.m.3 views

CVE-2026-47749

stable-diffusion.cpp is a pure C/C++ library for running diffusion model Stable Diffusion, Flux, Wan, Qwen Image, Z-Image, and more inference. Versions prior to master-584-0a7ae07 are vulnerable to heap buffer overflow in SHORTBINUNICODE parsing for PyTorch checkpoint files. The pickle .ckpt pars...

7.8CVSS6.4AI score0.00203EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2026/06/16 5:11 p.m.3 views

CVE-2026-47748

stable-diffusion.cpp is a pure C/C++ library for running diffusion model Stable Diffusion, Flux, Wan, Qwen Image, Z-Image, and more inference. Versions prior to master-584-0a7ae07 are vulnerable to an out-of-bounds reads error through PyTorch checkpoint pickle opcode parsing. The pickle .ckpt...

5.5CVSS5.9AI score0.00163EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/06/16 4:50 p.m.2 views

CVE-2026-4367

A flaw was found in libXpm. A local user with low privileges could exploit an Out-of-Bounds Read vulnerability in the xpmNextWord function by processing a specially crafted or very small XPM X PixMap image file. This improper validation of file boundaries can cause an internal pointer to read...

5.5CVSS5.7AI score0.00129EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/06/16 4:32 p.m.3 views

CVE-2026-47934

DNG SDK versions 1.7.1 2536 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to disclose sensitive information. Exploitation of this issue requires user interaction in that a victim mus...

5.5CVSS5.7AI score0.00165EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/16 4:32 p.m.3 views

CVE-2026-47963

DNG SDK versions 1.7.1 2536 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to disclose sensitive information. Exploitation of this issue requires user interaction in that a victim mus...

5.5CVSS5.7AI score0.00165EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/16 4:32 p.m.3 views

CVE-2026-47964

DNG SDK versions 1.7.1 2536 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.4AI score0.00199EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/16 4:32 p.m.2 views

CVE-2026-47927

DNG SDK versions 1.7.1 2536 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to disclose sensitive information. Exploitation of this issue requires user interaction in that a victim mus...

5.5CVSS5.7AI score0.00165EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/16 3:57 p.m.4 views

CVE-2026-10649

A flaw was found in Pacemaker. An unauthenticated remote attacker can exploit an integer overflow vulnerability in the remote message decompression process. By sending a specially crafted compressed remote message before authentication, an attacker can cause memory corruption, leading to a denial...

8.6CVSS5.9AI score0.0044EPSS
Exploits0References6
Total number of security vulnerabilities74667