Lucene search
K

131179 matches found

CNVD
CNVD
added 2026/02/11 12:0 a.m.3 views

IBM Db2 Denial of Service Vulnerability (CNVD-2026-14679)

IBM Db2 is a relational database management system from International Business Machines IBM. The system's execution environments are mainly UNIX, Linux, IBMi, z/OS, and Windows server versions. IBM Db2 suffers from a denial of service vulnerability that originates from a possible server crash whe...

7.5CVSS6.9AI score0.00387EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.5 views

IBM Db2 Denial of Service Vulnerability (CNVD-2026-14670)

IBM Db2 is a relational database management system from International Business Machines IBM. The system's execution environments are mainly UNIX, Linux, IBMi, z/OS, and Windows server versions. A denial of service vulnerability exists in IBM Db2, which originates from an improper allocation of...

6.2CVSS6.8AI score0.00134EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.2 views

Unspecified Vulnerability in WordPress Plugin ELEX WordPress HelpDesk & Customer Ticketing System

WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. A security vulnerability exists in the WordPress plugin ELEX WordPress HelpDesk & Customer...

5.3CVSS5.8AI score0.00268EPSS
Exploits0
CNVD
CNVD
added 2026/02/11 12:0 a.m.3 views

Huawei HarmonyOS Window Module Authentication Bypass Vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. An authentication bypass vulnerability exists in the Huawei HarmonyOS window module, which can be exploited by an attacker to compromise confidentiality...

5.9CVSS6AI score0.00117EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.3 views

IBM Db2 Denial of Service Vulnerability (CNVD-2026-14678)

IBM Db2 is a relational database management system from International Business Machines IBM. The system's execution environments are mainly UNIX, Linux, IBMi, z/OS, and Windows server versions. A denial of service vulnerability exists in IBM Db2, which arises from improper neutralization of speci...

5.3CVSS6.8AI score0.003EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.6 views

TOTOLINK WA300 OS Command Injection Vulnerability

TOTOLINK WA300 is a wireless access point from China Gion Electronics TOTOLINK. The TOTOLINK WA300 suffers from an operating system command injection vulnerability that originates from the parameter Ipaddr in the file /cgi-bin/cstecgi.cgi failing to correctly filter constructed command special...

8.8CVSS6.7AI score0.02268EPSS
Exploits1References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.3 views

OpenClaw Access Control Error Vulnerability (CNVD-2026-13431)

OpenClaw is openclaw open source an intelligent artificial assistant. OpenClaw suffers from an Access Control Error vulnerability that originates from the fact that an unauthenticated local client can use the Gateway WebSocket API to write a configuration via config.apply and set insecure cliPath...

8.4CVSS5.7AI score0.00639EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.2 views

Huawei HarmonyOS HDC module buffer overflow vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a buffer overflow vulnerability that stems from the HDC module failing to properly validate the length and size of input data,...

6.9CVSS6.1AI score0.00085EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.1 views

Denial of Service Vulnerability in IBM Cloud Pak for Business Automation

IBM Cloud Pak for Business Automation is a modular set of integrated software components from International Business Machines IBM, built for any hybrid cloud, designed to automate work and accelerate business growth. A denial of service vulnerability exists in IBM Cloud Pak for Business Automatio...

8.1CVSS7.1AI score0.00215EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.9 views

Huawei HarmonyOS HDC Module Privilege Control Vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A privilege control vulnerability exists in the Huawei HarmonyOS HDC module, which can be exploited by an attacker to compromise confidentiality...

6.3CVSS5.9AI score0.00111EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.6 views

UTT 520W goform/formIpGroupConfig file buffer overflow vulnerability

The UTT 520W is a wireless router from China Aitai UTT. A buffer overflow vulnerability exists in the UTT 520W goform/formIpGroupConfig file, which originates from the failure of the parameter groupName in the file /goform/formIpGroupConfig to correctly validate the length of the input data, and...

9CVSS7.9AI score0.0065EPSS
Exploits1References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.4 views

IBM Db2 Resource Management Error Vulnerability (CNVD-2026-13789)

IBM Db2 is a relational database management system from International Business Machines IBM. The system's execution environments are mainly UNIX, Linux, IBMi, z/OS, and Windows server versions. IBM Db2 suffers from a Resource Management Error vulnerability that originates from a misallocation of...

6.5CVSS6.7AI score0.00347EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.3 views

Huawei EMUI and Huawei HarmonyOS AMS Module Privilege Control Class Vulnerability

Huawei EMUI is a mobile operating system developed based on Android.Huawei HarmonyOS is an operating system. Provides a full-scene distributed operating system based on a microkernel. A privilege control type vulnerability exists in the Huawei EMUI and Huawei HarmonyOS AMS module, which can be...

6.2CVSS5.8AI score0.00103EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.6 views

Huawei EMUI and Huawei HarmonyOS file system module out-of-bounds write vulnerability

Huawei EMUI is a mobile operating system developed based on Android.Huawei HarmonyOS is an operating system. Provides a full-scene distributed operating system based on a microkernel. An out-of-bounds write vulnerability exists in the Huawei EMUI and Huawei HarmonyOS file system module, which can...

5.8CVSS5.9AI score0.00094EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.3 views

Unspecified Vulnerability in IBM PowerVM Hypervisor

The IBM PowerVM Hypervisor is a Type 1 bare metal virtualization hypervisor Hypervisor developed by IBM for its Power Systems server platform. An information disclosure vulnerability exists in IBM PowerVM Hypervisor versions FW1110.00 through FW1110.03, FW1060.00 through FW1060.51, and FW950.00...

6CVSS5.8AI score0.00155EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.2 views

IBM Db2 Denial of Service Vulnerability (CNVD-2026-14673)

IBM Db2 is a relational database management system from International Business Machines IBM. The system's execution environments are mainly UNIX, Linux, IBMi, z/OS, and Windows server versions. IBM Db2 suffers from a denial of service vulnerability that originates from improper neutralization of...

6.5CVSS6.9AI score0.00328EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.2 views

IBM Concert Access Control Error Vulnerability (CNVD-2026-13787)

IBM Concert is a new tool from International Business Machines IBM Inc. that uses generative AI to help manage complex cloud-native applications. An Access Control Error vulnerability exists in IBM Concert that stems from a failure to disable a session after logging out, which could be exploited ...

6.3CVSS5.8AI score0.00225EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.5 views

IBM Db2 Denial of Service Vulnerability (CNVD-2026-14675)

IBM Db2 is a relational database management system from International Business Machines IBM. The system's execution environments are mainly UNIX, Linux, IBMi, z/OS, and Windows server versions. IBM Db2 suffers from a denial of service vulnerability that originates from improper neutralization of...

6.5CVSS6.1AI score0.00242EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.4 views

IBM Concert Cross-Site Scripting Vulnerability (CNVD-2026-13788)

IBM Concert is a new tool from International Business Machines IBM Inc. that uses generative AI to help manage complex cloud-native applications. IBM Concert suffers from a cross-site scripting vulnerability that stems from improper input validation of the HOST header, which can be exploited by a...

6.5CVSS5.9AI score0.00219EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.5 views

HCL AION Cross-Site Request Forgery Vulnerability

HCL AION is an AI lifecycle management platform from HCL India. HCL AION suffers from a cross-site request forgery vulnerability that stems from a missing or insecure SameSite attribute of a cookie, and no detailed vulnerability details are provided at this time...

8.8CVSS5.6AI score0.0019EPSS
Exploits0
CNVD
CNVD
added 2026/02/11 12:0 a.m.7 views

Huawei HarmonyOS Image Module Buffer Overflow Vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A buffer overflow vulnerability exists in the Huawei HarmonyOS Image Module, which stems from the Image Module failing to properly validate the length and si...

7.3CVSS6.1AI score0.0008EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.3 views

TOTOLINK A950RG Stack Buffer Overflow Vulnerability

The TOTOLINK A950RG is an ultra-generation Giga wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A950RG suffers from a stack buffer overflow vulnerability that stems from insufficient validation of the length of the comment parameter in the setIpQosRules interface, which can b...

9.8CVSS6.2AI score0.00439EPSS
Exploits1References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.1 views

IBM Concert has an information disclosure vulnerability

IBM Concert is a new tool from International Business Machines IBM Inc. that uses generative AI to help manage complex cloud-native applications. An information disclosure vulnerability exists in IBM Concert versions 1.0.0 through 2.1.0, which can be exploited by an attacker to obtain sensitive...

5.5CVSS5.8AI score0.00088EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.3 views

Huawei EMUI and Huawei HarmonyOS Communication Module Address Reading Vulnerability

Huawei EMUI is a mobile operating system developed based on Android.Huawei HarmonyOS is an operating system. Provides a full-scene distributed operating system based on a microkernel. An address reading vulnerability exists in the Huawei EMUI and Huawei HarmonyOS communication module, which can b...

6.8CVSS5.8AI score0.00115EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.10 views

HCL AION Command Injection Vulnerability

HCL AION is an AI lifecycle management platform from HCL India. HCL AION suffers from a command injection vulnerability that can be exploited by an attacker to execute arbitrary commands on the system...

9.8CVSS6.1AI score0.00583EPSS
Exploits0
CNVD
CNVD
added 2026/02/11 12:0 a.m.4 views

Unspecified Vulnerability in IBM Db2 (CNVD-2026-14677)

IBM Db2 is a relational database management system from International Business Machines IBM. The system's execution environments are mainly UNIX, Linux, IBMi, z/OS, and Windows server versions. A security vulnerability exists in IBM Db2 that originates from improper neutralization of special...

6.5CVSS6.9AI score0.00328EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.4 views

Tenda TX9 goform/SetStaticRouteCfg File Buffer Overflow Vulnerability

The Tenda TX9 is a wireless router from the Chinese company Tenda. A buffer overflow vulnerability exists in the Tenda TX9 goform/SetStaticRouteCfg file, which originates from the parameter list of the function sub42D03C within the file /goform/SetStaticRouteCfg that fails to correctly validate t...

9CVSS6.5AI score0.00733EPSS
Exploits1References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.4 views

TOTOLINK A3600R Buffer Overflow Vulnerability

TOTOLINK A3600R is a 6-antenna 1200M wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A3600R suffers from a buffer overflow vulnerability that originates from the failure of apcliSsid, a parameter of the setAppEasyWizardConfig function in the /lib/cstemodules/app.so library, t...

9CVSS9AI score0.00656EPSS
Exploits1
CNVD
CNVD
added 2026/02/11 12:0 a.m.5 views

Huawei HarmonyOS Camera Module Type Obfuscation Vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A type confusion vulnerability exists in the Huawei HarmonyOS camera module, which can be exploited by an attacker to cause usability to be compromised...

5.5CVSS5.9AI score0.00115EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.2 views

IBM Db2 Denial of Service Vulnerability (CNVD-2026-14671)

IBM Db2 is a relational database management system from International Business Machines IBM. The system's execution environments are mainly UNIX, Linux, IBMi, z/OS, and Windows server versions. IBM Db2 suffers from a denial of service vulnerability that originates from improper neutralization of...

6.2CVSS6.9AI score0.00152EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.3 views

D-Link DIR-600 Command Injection Vulnerability

The D-Link DIR-600 is a wireless router from China's AUO D-Link. A command injection vulnerability exists in D-Link DIR-600 2.15WWb02 and earlier versions, which stems from the failure to properly filter constructed command special characters, commands, etc. in the parameter...

7.2CVSS5.9AI score0.0568EPSS
Exploits1References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.5 views

IBM Db2 Denial of Service Vulnerability (CNVD-2026-14667)

IBM Db2 is a relational database management system from International Business Machines IBM. The system's execution environments are mainly UNIX, Linux, IBMi, z/OS, and Windows server versions. A denial of service vulnerability exists in IBM Db2, which can be exploited by an attacker to cause a...

6.5CVSS6.8AI score0.00347EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.6 views

Huawei HarmonyOS OS Command Injection Vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS 0.1.0 version exists operating system command injection vulnerability, the vulnerability stems from the function inputtext parameter text...

8.8CVSS6.6AI score0.15052EPSS
Exploits1
CNVD
CNVD
added 2026/02/11 12:0 a.m.5 views

Huawei HarmonyOS camera module out-of-bounds write vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. An out-of-bounds write vulnerability exists in the Huawei HarmonyOS camera module, which stems from a lack of proper validation of user-supplied data by the...

8.4CVSS5.9AI score0.00105EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.2 views

XSS Vulnerability in IBM Cloud Pak for Business Automation

IBM Cloud Pak for Business AutomationAn integrated software component that delivers design, build, run, and automation services to quickly scale your programs and fully execute and implement automation strategies. An XSS vulnerability exists in IBM Cloud Pak for Business Automation, which can be...

6.4CVSS7.3AI score0.0021EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.6 views

IBM Db2 Denial of Service Vulnerability (CNVD-2026-14668)

IBM Db2 is a relational database management system from International Business Machines IBM. The system's execution environments are mainly UNIX, Linux, IBMi, z/OS, and Windows server versions. A denial of service vulnerability exists in IBM Db2, which can be exploited by an attacker to cause a...

6.5CVSS6.8AI score0.00339EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.4 views

IBM Db2 Denial of Service Vulnerability (CNVD-2026-14676)

IBM Db2 is a relational database management system from International Business Machines IBM. The system's execution environments are mainly UNIX, Linux, IBMi, z/OS, and Windows server versions. IBM Db2 suffers from a denial of service vulnerability that originates from improper neutralization of...

6.5CVSS6.9AI score0.00328EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.5 views

HCL AION Cross-Site Scripting Vulnerability

HCL AION is an AI lifecycle management platform from HCL India. HCL AION suffers from a cross-site scripting vulnerability, which is caused by a lack of content security policy, no details of the vulnerability are provided at this time...

6.1CVSS5.6AI score0.0012EPSS
Exploits0
CNVD
CNVD
added 2026/02/11 12:0 a.m.4 views

IBM Concert has a weak cryptographic algorithm vulnerability

IBM Concert is a new tool from International Business Machines IBM Inc. that uses generative AI to help manage complex cloud-native applications. A weak cryptographic algorithm vulnerability exists in IBM Concert versions 1.0.0 through 2.1.0, which could be exploited by an attacker to decrypt...

7.5CVSS5.8AI score0.00203EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.26 views

Unspecified vulnerability in HCL AION (CNVD-2026-16399)

HCL AION is an AI lifecycle management platform from HCL India. HCL AION has a security vulnerability that can be exploited by an attacker to cause modification of critical system files...

7.5CVSS5.8AI score0.00148EPSS
Exploits0
CNVD
CNVD
added 2026/02/11 12:0 a.m.6 views

Rockwell Automation Studio 5000 Logix Designer Code Issue Vulnerability

Rockwell Automation Studio 5000 Logix Designer is a Windows-based application from Rockwell Automation, Inc. It is used to build programs for PLCs. A code issue vulnerability exists in Rockwell Automation Studio 5000 Logix Designer, which stems from an unquoted service path in FactoryTalk...

8.5CVSS7.3AI score0.0019EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.6 views

IBM Db2 Denial of Service Vulnerability (CNVD-2026-14672)

IBM Db2 is a relational database management system from International Business Machines IBM. The system's execution environments are mainly UNIX, Linux, IBMi, z/OS, and Windows server versions. IBM Db2 suffers from a denial of service vulnerability that originates from improper neutralization of...

6.5CVSS6.9AI score0.00355EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.8 views

IBM Db2 Denial of Service Vulnerability (CNVD-2026-14669)

IBM Db2 is a relational database management system from International Business Machines IBM. The system's execution environments are mainly UNIX, Linux, IBMi, z/OS, and Windows server versions. IBM Db2 suffers from a denial of service vulnerability that originates from a possible trap when...

7.5CVSS6.9AI score0.0035EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.2 views

IBM Db2 Denial of Service Vulnerability (CNVD-2026-14666)

IBM Db2 is a relational database management system from International Business Machines IBM. The system's execution environments are mainly UNIX, Linux, IBMi, z/OS, and Windows server versions. A denial of service vulnerability exists in IBM Db2, which can be exploited by an attacker to cause a...

6.5CVSS6.8AI score0.00347EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.6 views

Huawei HarmonyOS Media Subsystem Out-of-Bounds Read Vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. An out-of-bounds read vulnerability exists in the Huawei HarmonyOS media subsystem, which can be exploited by attackers to cause confidentiality and...

7.1CVSS5.9AI score0.0012EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.7 views

HCL AION Information Disclosure Vulnerability (CNVD-2026-16397)

HCL AION is an AI lifecycle management platform from HCL India. HCL AION suffers from an information disclosure vulnerability which is caused due to lack of content security policy. An attacker can exploit the vulnerability to cause unauthorized access...

5.3CVSS5.8AI score0.00179EPSS
Exploits0
CNVD
CNVD
added 2026/02/11 12:0 a.m.8 views

IBM Db2 Big SQL on Cloud Pak for Data Resource Management Error Vulnerability

IBM Db2 Big SQL on Cloud Pak for Data is a massively parallel processing SQL engine from International Business Machines IBM. A resource management error vulnerability exists in IBM Db2 Big SQL on Cloud Pak for Data, which stems from not properly limiting system resource allocation and can be...

5.3CVSS6AI score0.00293EPSS
Exploits0References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.8 views

TOTOLINK A950RG Buffer Overflow Vulnerability

The TOTOLINK A950RG is an ultra-generation Giga wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A950RG suffers from a buffer overflow vulnerability that originates from insufficient validation of the urlKeyword parameter in the setParentalRules interface and failure to perfor...

6.5CVSS6.3AI score0.00425EPSS
Exploits1References1
CNVD
CNVD
added 2026/02/11 12:0 a.m.9 views

HCL AION Information Disclosure Vulnerability (CNVD-2026-16403)

HCL AION is an AI lifecycle management platform from HCL India. HCL AION suffers from an information disclosure vulnerability that stems from the password field not disabling autocomplete, which can be exploited by an attacker to cause sensitive credentials to be stored or disclosed...

6.5CVSS5.7AI score0.00151EPSS
Exploits0
CNVD
CNVD
added 2026/02/10 12:0 a.m.3 views

Apache Syncope Code Issue Vulnerability

Apache Syncope is the United States Apache Apache Foundation's set of open source digital identity management system for use in enterprise environments. The system supports identity management, role configuration and more. Apache Syncope there is a code problem vulnerability , the vulnerability...

4.9CVSS6.1AI score0.00827EPSS
Exploits0References1
Total number of security vulnerabilities131179