Lucene search
K

419038 matches found

EUVD
EUVD
•added 2026/06/09 11:1 p.m.•12 views

EUVD-2026-35872

FlashMQ is a MQTT broker/server, designed for multi-CPU environments. Prior to version 1.26.2, authorized clients have the ability to exceed the permitted over-commit of their write buffer and triggering an internal safe-guard exception. This exception was in a path that was not catchable, and...

6.5CVSS5.6AI score0.00301EPSS
Exploits0References3
EUVD
EUVD
•added 2026/06/09 11:0 p.m.•10 views

EUVD-2026-35871

SimpleSAMLphp-casserver is a CAS 1.0 and 2.0 compliant CAS server in the form of a SimpleSAMLphp module. Prior to version 7.0.3, simplesamlphp-module-casserver builds file paths for the file-based CAS ticket store by directly concatenating the configured ticket directory with an attacker-controll...

8.6CVSS5.5AI score0.00422EPSS
Exploits0References3
EUVD
EUVD
•added 2026/06/09 10:53 p.m.•10 views

EUVD-2026-35870

Cloud Hypervisor is a Virtual Machine Monitor for Cloud workloads. From version 21.0 to before version 51.2, a guest can cause a use-after-free in the cloud-hypervisor process by submitting two virtio-block descriptor chains that reuse the same headindex while asynchronous block I/O is enabled e....

8.9CVSS5.6AI score0.00138EPSS
Exploits0References5
EUVD
EUVD
•added 2026/06/09 10:50 p.m.•10 views

EUVD-2026-35869

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 8.0.0.1, a stored cross-site scripting vulnerability in the prescription CSS/HTML multi-print feature allows a patient portal user to execute arbitrary JavaScript in a...

7.7CVSS5.5AI score0.00208EPSS
Exploits1References1
EUVD
EUVD
•added 2026/06/09 10:49 p.m.•13 views

EUVD-2026-35858

lldpd is an implementation of IEEE 802.1ab LLDP. Prior to version 1.0.22, lldpddecode in src/daemon/lldpd.c strips 802.1Q VLAN tags from received Ethernet frames by calling memmove to shift the frame payload 4 bytes left. The third argument byte count is s - 2 ETHERADDRLEN but should be s - 2...

6.5CVSS5.5AI score0.00225EPSS
Exploits0References4
EUVD
EUVD
•added 2026/06/09 10:40 p.m.•11 views

EUVD-2026-35855

SQLFluff is a modular SQL linter and auto-formatter with support for multiple dialects and templated code. Prior to version 4.2.0, in deployments where untrusted users can provide SQL queries to be linted, an untrusted user can submit a malicious long query to any application using the parser to...

7.5CVSS5.5AI score0.00263EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 10:38 p.m.•13 views

EUVD-2026-35854

SQLFluff is a modular SQL linter and auto-formatter with support for multiple dialects and templated code. Prior to version 4.1.0, in deployments where untrusted users can provide SQL queries to be linted, an untrusted user can submit a malicious query with deliberate excessive nesting to any...

7.5CVSS5.5AI score0.00263EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 9:59 p.m.•9 views

EUVD-2026-31111

PhoenixStorybook has cross-session PubSub topic injection via URL parameter...

2.3CVSS5.4AI score0.00449EPSS
Exploits0References5
EUVD
EUVD
•added 2026/06/09 9:59 p.m.•10 views

EUVD-2026-31114

PhoenixStorybook: Unbounded atom creation from LiveView event params atom-table DoS...

8.2CVSS5.4AI score0.00537EPSS
Exploits0References5
EUVD
EUVD
•added 2026/06/09 9:58 p.m.•10 views

EUVD-2026-31112

PhoenixStorybook: Unauthenticated remote code execution via HEEx template injection in phoenixstorybook playground...

9.5CVSS6.3AI score0.00907EPSS
Exploits0References5
EUVD
EUVD
•added 2026/06/09 8:59 p.m.•10 views

EUVD-2026-35840

OSCAL-GUI contains a reflected cross-site scripting vulnerability that allows unauthenticated attackers to execute arbitrary JavaScript in a victim's browser by injecting malicious input through the project request parameter. Attackers can craft a malicious URL containing unsanitized input that...

6.1CVSS5.6AI score0.00199EPSS
Exploits0References2
EUVD
EUVD
•added 2026/06/09 8:59 p.m.•13 views

EUVD-2026-35839

Adobe Campaign Classic ACC versions 7.4.3 build 9394 and earlier are affected by a Server-Side Request Forgery SSRF vulnerability that could result in privilege escalation. Exploitation of this issue does not require user interaction. Scope is changed...

10CVSS5.5AI score0.00449EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:59 p.m.•11 views

EUVD-2026-35838

Adobe Campaign Classic ACC versions 7.4.3 build 9394 and earlier are affected by an Incorrect Authorization vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction. Scope is changed...

10CVSS6.2AI score0.00553EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:52 p.m.•11 views

EUVD-2026-35837

UXSS in Focus for iOS / Klar Webkit navigation. This vulnerability was fixed in Focus for iOS 151.3.1 and Klar for iOS 151.3.1...

5.5AI score0.00216EPSS
Exploits0References2
EUVD
EUVD
•added 2026/06/09 8:49 p.m.•12 views

EUVD-2026-35836

Evoluted PHP Directory Listing Script through 4.0.5 contains a reflected cross-site scripting vulnerability in index.php where the dir parameter value is reflected without HTML encoding inside the HTML title element and inside anchor href attributes in the breadcrumb navigation. Attackers can...

5.4CVSS5.5AI score0.00187EPSS
Exploits0References3
EUVD
EUVD
•added 2026/06/09 8:38 p.m.•13 views

EUVD-2026-35835

Format Plugins versions 1.1.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.2AI score0.00281EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:38 p.m.•12 views

EUVD-2026-35834

Format Plugins versions 1.1.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.2AI score0.00281EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:33 p.m.•11 views

EUVD-2026-35833

ColdFusion versions 2023.19, 2025.8 and earlier are affected by an Incorrect Authorization vulnerability that could result in arbitrary code execution in the context of the current user. A high-privileged attacker could exploit this vulnerability to gain elevated access or control over the victim...

8.4CVSS6.2AI score0.07535EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:33 p.m.•11 views

EUVD-2026-35832

ColdFusion versions 2023.19, 2025.8 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to access unauthorized files or directories...

8.8CVSS5.5AI score0.07624EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:33 p.m.•11 views

EUVD-2026-35831

ColdFusion versions 2023.19, 2025.8 and earlier are affected by an Improper Restriction of XML External Entity Reference 'XXE' vulnerability that could lead to arbitrary file system read. An attacker could exploit this vulnerability to access sensitive files and directories outside the intended...

7.4CVSS5.6AI score0.00406EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:33 p.m.•12 views

EUVD-2026-35830

ColdFusion versions 2023.19, 2025.8 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction. Scope is changed...

9.6CVSS6.2AI score0.08871EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:33 p.m.•25 views

EUVD-2026-35829

ColdFusion versions 2023.19, 2025.8 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction. Scope is changed...

8.4CVSS6.2AI score0.00555EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:33 p.m.•11 views

EUVD-2026-35828

ColdFusion versions 2023.19, 2025.8 and earlier are affected by an Improper Input Validation vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and gain unauthorized read and write access...

8.1CVSS5.5AI score0.0039EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:33 p.m.•10 views

EUVD-2026-35827

ColdFusion versions 2023.19, 2025.8 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim's browser when they browse to...

4.8CVSS5.5AI score0.00224EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:5 p.m.•11 views

EUVD-2026-35826

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an Uncontrolled Search Path Element vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a...

7.4CVSS6.1AI score0.00151EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:1 p.m.•13 views

EUVD-2026-35825

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.2AI score0.00174EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:1 p.m.•11 views

EUVD-2026-35824

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.2AI score0.00257EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:1 p.m.•10 views

EUVD-2026-35823

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.2AI score0.00266EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:1 p.m.•12 views

EUVD-2026-35822

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to disclose sensitive information. Exploitation of this issue requires user interacti...

5.5CVSS5.4AI score0.00243EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:1 p.m.•13 views

EUVD-2026-35821

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious...

7.8CVSS6.2AI score0.00174EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:1 p.m.•11 views

EUVD-2026-35820

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.2AI score0.00266EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:1 p.m.•10 views

EUVD-2026-35819

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.2AI score0.00165EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:1 p.m.•11 views

EUVD-2026-35818

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to disclose sensitive information. Exploitation of this issue requires user interaction in...

5.5CVSS5.4AI score0.00254EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:1 p.m.•10 views

EUVD-2026-35817

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.2AI score0.00257EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:1 p.m.•13 views

EUVD-2026-35816

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to disclose sensitive information. Exploitation of this issue requires user interacti...

5.5CVSS5.4AI score0.00154EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:1 p.m.•11 views

EUVD-2026-35815

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.2AI score0.00168EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:1 p.m.•11 views

EUVD-2026-35814

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.2AI score0.00165EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:1 p.m.•13 views

EUVD-2026-35813

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to disclose sensitive information. Exploitation of this issue requires user interacti...

5.5CVSS5.4AI score0.00154EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:1 p.m.•11 views

EUVD-2026-35812

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.2AI score0.00285EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:1 p.m.•12 views

EUVD-2026-35811

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.2AI score0.00285EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:1 p.m.•11 views

EUVD-2026-35809

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.2AI score0.00285EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:1 p.m.•11 views

EUVD-2026-35810

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition...

5.5CVSS5.5AI score0.00138EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:1 p.m.•11 views

EUVD-2026-35808

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious...

7.8CVSS6.2AI score0.00174EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 8:1 p.m.•14 views

EUVD-2026-35807

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.1AI score0.00239EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 7:57 p.m.•11 views

EUVD-2025-210087

image-size 1.1.0 before 1.2.1 and 2.0.0 before 2.0.2 contain a denial of service vulnerability in the findBox function when processing specially crafted images with zero-sized boxes. Remote attackers can cause application hang by supplying malicious JXL, HEIF, or JP2 image files with box size zer...

8.7CVSS5.5AI score0.00625EPSS
Exploits1References2
EUVD
EUVD
•added 2026/06/09 7:24 p.m.•14 views

EUVD-2026-35806

Dreamweaver Desktop versions 21.7 and earlier are affected by an Improper Input Validation vulnerability that could lead to arbitrary file system read. An attacker could exploit this vulnerability to access sensitive files and directories outside the intended access scope. Exploitation of this...

6.3CVSS5.6AI score0.00148EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 7:24 p.m.•13 views

EUVD-2026-35805

Dreamweaver Desktop versions 21.7 and earlier are affected by an Incorrect Authorization vulnerability that could lead to arbitrary file system read. An attacker could exploit this vulnerability to access sensitive files and directories outside the intended access scope. Exploitation of this issu...

6.3CVSS5.6AI score0.00137EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 7:24 p.m.•12 views

EUVD-2026-35804

Dreamweaver Desktop versions 21.7 and earlier are affected by an Improper Access Control vulnerability that could lead to arbitrary file system read. An attacker could exploit this vulnerability to access sensitive files and directories outside the intended access scope. Exploitation of this issu...

8.2CVSS5.6AI score0.00168EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 7:24 p.m.•12 views

EUVD-2026-35803

Dreamweaver Desktop versions 21.7 and earlier are affected by a Dependency on Vulnerable Third-Party Component vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a maliciou...

8.6CVSS6.2AI score0.00177EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/09 7:24 p.m.•11 views

EUVD-2026-35802

Dreamweaver Desktop versions 21.7 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.1AI score0.00161EPSS
Exploits0References1
Total number of security vulnerabilities419038