Lucene search
K
RedhatcveRecent

206304 matches found

RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•8 views

CVE-2026-47954

Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim's...

5.4CVSS5.4AI score0.00224EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•10 views

CVE-2026-47947

Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting XSS vulnerability. An attacker could exploit this issue by manipulating the DOM environment to execute malicious JavaScript within the context of the victim's browser...

5.4CVSS5.5AI score0.00283EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•9 views

CVE-2026-47953

Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim's...

5.4CVSS5.4AI score0.00224EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•8 views

CVE-2026-47946

Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting XSS vulnerability. An attacker could exploit this issue by manipulating the DOM environment to execute malicious JavaScript within the context of the victim's browser...

5.4CVSS5.5AI score0.00283EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•9 views

CVE-2026-47942

Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim's...

5.4CVSS5.4AI score0.00307EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•10 views

CVE-2026-47943

Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim's...

5.4CVSS5.4AI score0.00307EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•7 views

CVE-2026-47945

Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim's...

5.4CVSS5.4AI score0.00307EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•10 views

CVE-2026-47949

Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim's...

5.4CVSS5.4AI score0.00224EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•9 views

CVE-2026-47951

Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim's...

5.4CVSS5.4AI score0.00224EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•10 views

CVE-2026-47936

Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim's...

5.4CVSS5.4AI score0.00224EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•10 views

CVE-2026-47926

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to disclose sensitive information. Exploitation of this issue requires user interacti...

5.5CVSS5.4AI score0.00154EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•7 views

CVE-2026-47944

Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim's...

5.4CVSS5.4AI score0.00224EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•10 views

CVE-2026-47910

Dreamweaver Desktop versions 21.7 and earlier are affected by an Incorrect Authorization vulnerability that could lead to arbitrary file system read. An attacker could exploit this vulnerability to access sensitive files and directories outside the intended access scope. Exploitation of this issu...

6.3CVSS5.6AI score0.00137EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•9 views

CVE-2026-47923

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to disclose sensitive information. Exploitation of this issue requires user interacti...

5.5CVSS5.3AI score0.00243EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•9 views

CVE-2026-47941

Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim's...

5.4CVSS5.4AI score0.00307EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•10 views

CVE-2026-47924

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to disclose sensitive information. Exploitation of this issue requires user interaction in...

5.5CVSS5.3AI score0.00254EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•7 views

CVE-2026-47641

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

5.4CVSS7AI score0.00505EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•9 views

CVE-2026-47939

Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim's...

5.4CVSS5.4AI score0.00307EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•11 views

CVE-2026-47925

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition...

5.5CVSS5.5AI score0.00138EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•9 views

CVE-2026-47909

Dreamweaver Desktop versions 21.7 and earlier are affected by an Improper Input Validation vulnerability that could lead to arbitrary file system read. An attacker could exploit this vulnerability to access sensitive files and directories outside the intended access scope. Exploitation of this...

6.3CVSS5.6AI score0.00148EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•9 views

CVE-2026-47640

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

5.4CVSS7AI score0.00505EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•8 views

CVE-2026-47639

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

5.4CVSS7AI score0.0051EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•9 views

CVE-2026-47935

Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting XSS vulnerability. An attacker could exploit this issue by manipulating the DOM environment to execute malicious JavaScript within the context of the victim's browser...

5.4CVSS5.5AI score0.00207EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•7 views

CVE-2026-47637

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

5.4CVSS7AI score0.00505EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•8 views

CVE-2026-47636

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

5.4CVSS7AI score0.0051EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•9 views

CVE-2026-47284

Exposure of sensitive information to an unauthorized actor in Visual Studio Code allows an unauthorized attacker to disclose information over a network...

6.5CVSS5.4AI score0.00763EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•8 views

CVE-2026-45655

Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack...

5.3CVSS5.4AI score0.00413EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•7 views

CVE-2026-47638

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

5.4CVSS7AI score0.00505EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•8 views

CVE-2026-45634

Out-of-bounds read in Windows DHCP Server allows an authorized attacker to disclose information locally...

5.5CVSS5.4AI score0.00362EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•8 views

CVE-2026-45650

User interface ui misrepresentation of critical information in Microsoft Bing allows an unauthorized attacker to perform spoofing over a network...

4.3CVSS5.5AI score0.00619EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•8 views

CVE-2026-47287

Relative path traversal in Visual Studio Code allows an unauthorized attacker to perform tampering over a network...

6.5CVSS5.5AI score0.00622EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:3 p.m.•9 views

CVE-2026-45647

Time-of-check time-of-use toctou race condition in Microsoft Defender for Endpoint allows an authorized attacker to elevate privileges locally...

7CVSS5.4AI score0.00215EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•6 views

CVE-2026-45608

Out-of-bounds read in Windows DHCP Server allows an authorized attacker to disclose information locally...

6.8CVSS5.4AI score0.00338EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•7 views

CVE-2026-45502

Server-side request forgery ssrf in Microsoft Exchange Server allows an authorized attacker to disclose information over a network...

5CVSS5.4AI score0.00464EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•6 views

CVE-2026-45500

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network...

6.1CVSS5.4AI score0.00375EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•8 views

CVE-2026-45501

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network...

6.5CVSS5.4AI score0.00308EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•8 views

CVE-2026-45594

Exposure of sensitive information to an unauthorized actor in Windows Application Identity AppID Subsystem allows an authorized attacker to disclose information locally...

5.5CVSS5.4AI score0.00404EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•8 views

CVE-2026-45604

Out-of-bounds read in Windows Application Identity AppID Subsystem allows an authorized attacker to disclose information locally...

5.5CVSS5.4AI score0.00341EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•7 views

CVE-2026-45595

Protection mechanism failure in Windows Mark of the Web MOTW allows an unauthorized attacker to bypass a security feature over a network...

5.4CVSS5.4AI score0.00423EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•7 views

CVE-2026-45606

Out-of-bounds read in Microsoft UxTheme Library uxtheme.dll allows an authorized attacker to deny service locally...

5.5CVSS5.4AI score0.00383EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•10 views

CVE-2026-45468

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

5.4CVSS7AI score0.00505EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•8 views

CVE-2026-45483

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office Project Server allows an authorized attacker to perform spoofing over a network...

5.4CVSS7AI score0.00505EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•8 views

CVE-2026-45479

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

5.4CVSS7AI score0.00505EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•9 views

CVE-2026-45465

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

5.4CVSS7AI score0.0051EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•8 views

CVE-2026-45467

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

5.4CVSS7AI score0.00505EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•8 views

CVE-2026-45462

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

5.4CVSS7AI score0.00505EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•8 views

CVE-2026-45460

Out-of-bounds read in Microsoft Office allows an unauthorized attacker to disclose information locally...

4.7CVSS5.4AI score0.00357EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•7 views

CVE-2026-45453

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network...

5.4CVSS7AI score0.0051EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•10 views

CVE-2026-44821

Out-of-bounds read in Microsoft Office allows an unauthorized attacker to disclose information locally...

5.5CVSS7AI score0.00465EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•9 views

CVE-2026-44814

Out-of-bounds read in Windows DWM Core Library allows an authorized attacker to disclose information locally...

5.5CVSS5.4AI score0.00318EPSS
Exploits0References1
Total number of security vulnerabilities206304