Lucene search
K
RedhatcveRecent

206406 matches found

RedhatCVE
RedhatCVE
•added 2026/06/05 7:50 p.m.•10 views

CVE-2026-30617

LangChain-ChatChat 0.3.1 contains a remote code execution vulnerability in its MCP STDIO server configuration and execution handling. A remote attacker can access the publicly exposed MCP management interface and configure an MCP STDIO server with attacker-controlled commands and arguments. When...

8.6CVSS6.8AI score0.00472EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:50 p.m.•12 views

CVE-2026-30778

The SkyWalking OAP /debugging/config/dump endpoint may leak sensitive configuration information of MySQL/PostgreSQL. This issue affects Apache SkyWalking: from 9.7.0 through 10.3.0. Users are recommended to upgrade to version 10.4.0, which fixes the issue...

7.5CVSS5.4AI score0.00544EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•10 views

CVE-2026-30996

An issue in the file handling logic of the component download.php of SAC-NFe v2.0.02 allows attackers to execute a directory traversal and read arbitrary files from the system via a crafted GET request...

7.5CVSS5.6AI score0.00738EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•7 views

CVE-2026-30363

flipperzero-firmware commit ad2a80 was discovered to contain a stack overflow in the "Main" function...

8.4CVSS5.5AI score0.00138EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•10 views

CVE-2026-30462

A path traversal vulnerability in the Blocks module of Daylight Studio FuelCMS v1.5.2 allows attackers to execute a directory traversal...

4.3CVSS5.6AI score0.00468EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•12 views

CVE-2026-30624

Agent Zero 0.9.8 contains a remote code execution vulnerability in its External MCP Servers configuration feature. The application allows users to define MCP servers using a JSON configuration containing arbitrary command and args values. These values are executed by the application when the...

8.6CVSS6.9AI score0.00405EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•11 views

CVE-2026-30269

Improper access control in Doorman v0.1.0 and v1.0.2 allows any authenticated user to update their own account role to a non-admin privileged role via /platform/user/username. The role field is accepted by the update model without a manageusers permission check for self-updates, enabling privileg...

9.9CVSS5.5AI score0.00284EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•12 views

CVE-2026-30351

A path traversal vulnerability in the UI/static component of leonvanzyl autocoder commit 79d02a allows attackers to read arbitrary files via sending crafted URL path containing traversal sequences...

7.5CVSS5.6AI score0.00446EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•9 views

CVE-2026-30615

A prompt injection vulnerability in Windsurf 1.9544.26 allows remote attackers to execute arbitrary commands on a victim system. When Windsurf processes attacker-controlled HTML content, malicious instructions can cause unauthorized modification of the local MCP configuration and automatic...

8CVSS6.4AI score0.0026EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•10 views

CVE-2026-30691

Cross-Site Scripting XSS vulnerability in @cyntler/react-doc-viewer v1.17.1 allows remote attackers to execute arbitrary JavaScript via a crafted .txt file. The TXTRenderer component fails to sanitize file content and explicitly casts raw data as a ReactNode...

6.1CVSS5.9AI score0.00298EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•10 views

CVE-2026-30346

An open redirect in the /api/google/authorize endpoint of hunvreus DevPush v0.3.2 allows attackers to redirect users to malicious sites via supplying a crafted URL...

4.3CVSS5.5AI score0.00261EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•13 views

CVE-2026-30904

Protection Mechanism Failure in Zoom Workplace for iOS before version 7.0.0 may allow an authenticated user to conduct a disclosure of information via physical access...

4.3CVSS5.4AI score0.00143EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•9 views

CVE-2026-30498

A Cross-Site Request Forgery CSRF vulnerability was discovered in the delete.php endpoint of Jason2605 AdminPanel 4.0...

6.3CVSS5.5AI score0.00097EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•10 views

CVE-2026-30995

Slah CMS v1.5.0 and below was discovered to contain a SQL injection vulnerability via the id parameter in the vereadorver.php endpoint...

8.6CVSS5.6AI score0.00226EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•9 views

CVE-2026-30616

Jaaz 1.0.30 contains a remote code execution vulnerability in its MCP STDIO command execution handling. A remote attacker can send crafted network requests to the network-accessible Jaaz application, causing attacker-controlled commands to be executed on the server. Successful exploitation result...

7.3CVSS6.5AI score0.00344EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•9 views

CVE-2026-30994

Incorrect access control in the config.php component of Slah v1.5.0 and below allows unauthenticated attackers to access sensitive information, including active session credentials...

7.5CVSS5.5AI score0.00254EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•11 views

CVE-2026-38936

A reflected cross-site scripting XSS vulnerability exists in diskover-community = 2.3.5 in public/selectindices.php via the namecontains parameter...

6.1CVSS5.2AI score0.00194EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•9 views

CVE-2026-30459

An issue in the Forgot Password feature of Daylight Studio FuelCMS v1.5.2 allows unauthenticated attackers to obtain the password reset token of a victim user via a crafted link placed in a valid e-mail message...

7.1CVSS5.5AI score0.00263EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•10 views

CVE-2026-30364

CentSDR commit e40795 was discovered to contain a stack overflow in the "Thread1" function...

7.5CVSS5.5AI score0.00307EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•11 views

CVE-2026-38703

A command injection vulnerability exists in the ZeroTier VPN feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IR315 firmware V1.0.118, IR615 firmware V1.0.118, and earlier versions. Attackers can exploit this vulnerability to obtain ROOT privileges on remote target...

9.8CVSS5.6AI score0.01243EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•11 views

CVE-2026-30769

An issue in the TVicPort64.sys component of EnTech Taiwan TVicPort Product v4.0, File v5.2.1.0 allows attackers to escalate privileges via sending crafted IOCTL 0x80002008 requests...

7.8CVSS5.5AI score0.0013EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•11 views

CVE-2026-38950

An issue in ESA AnomalyMatch before 1.3.1 allow attackers to execute arbitrary code via crafted model checkpoint files. The affected components load model files from session directories using torch.load with unrestricted deserialization...

7.8CVSS6AI score0.00144EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•10 views

CVE-2026-38743

The authenticated /ui/dags endpoint did not enforce per-DAG access control on embedded Human-in-the-Loop HITL and TaskInstance records: a logged-in Airflow user with read access to at least one DAG could retrieve HITL prompts including their request parameters and full TaskInstance details for DA...

4.3CVSS5.4AI score0.00352EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•10 views

CVE-2026-38707

A command injection vulnerability exists in the IPSec VPN feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IR315 firmware V1.0.118, IR615 firmware V1.0.118, and earlier versions. Attackers can exploit this vulnerability to obtain ROOT privileges on remote target device...

9.8CVSS5.6AI score0.01243EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•12 views

CVE-2026-30139

A reflected cross-site scripting XSS vulnerability in the AdvancedSearch functionality of Silverpeas Core before version 6.4.6 allows attackers to execute arbitrary JavaScript in the context of a user's browser via crafted input...

6.1CVSS5.6AI score0.00188EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•16 views

CVE-2026-38360

Directory Traversal vulnerability in fohrloop dash-uploader v.0.1.0 through v.0.7.0a2 allows a remote attacker to execute arbitrary code via the dashuploader/httprequesthandler.py, BaseHttpRequestHandler.gettemproot, BaseHttpRequestHandler.post components...

9.8CVSS6.2AI score0.05982EPSS
Exploits4References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•9 views

CVE-2026-38426

Buffer Overflow vulnerability in arendst Tasmota v.15.3.0.3 and before allows a remote attacker to execute arbitrary code via the xdrv10scripter.ino, fetchjpg, jpgtask.boundary40, strcpy function...

7.3CVSS6AI score0.00614EPSS
Exploits2References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•10 views

CVE-2026-38728

An issue in Nodemailer smtpserver before v.3.18.3 allows a remote attacker to cause a denial of service via the SMTPStream.write, lib/smtp-stream.js components...

7.5CVSS5.5AI score0.00572EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•8 views

CVE-2026-38570

bacnetstack 1.3.1 contains an Out-of-bounds Read in bacnettagnumberdecode which allows attackers to cause a denial of service...

7.5CVSS5.4AI score0.00278EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•9 views

CVE-2026-38361

Multiple unauthenticated denial-of-service DoS issues in fohrloop dash-uploader v0.1.0 through v0.7.0a2. The chunked-upload handler dashuploader/httprequesthandler.py, dashuploader/upload.py trusts unsanitized, attacker-controlled upload parameters e.g. flowTotalChunks and does not enforce the...

7.5CVSS5.5AI score0.02643EPSS
Exploits5References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•10 views

CVE-2026-38427

An issue in fetchjpg in xdrv10scripter.ino in Tasmota through 15.3.0.3 allows a remote attacker to cause heap buffer overflow. The Content-Length from a JPEG stream is stored in a uint16t variable; values above 65535 wrap around, causing allocation of a smaller buffer than the data actually read...

7.3CVSS6AI score0.00458EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•10 views

CVE-2026-38702

A command injection vulnerability exists in the Admin Access feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IR315 firmware V1.0.118, IR615 firmware V1.0.118, and earlier versions. Attackers can exploit this vulnerability to obtain ROOT privileges on remote target...

9.8CVSS5.6AI score0.01243EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•11 views

CVE-2026-38935

A reflected cross-site scripting XSS vulnerability exists in diskover-community = 2.3.5 in public/view.php via the doctype parameter...

6.1CVSS5.2AI score0.00194EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•10 views

CVE-2026-38992

Cockpit v2.13.5 and earlier is vulnerable to arbitrary code execution via the filter parameter within multiple endpoints. This vulnerability allows an attacker to run system commands on the underlying infrastructure via the MongoLite $func operator...

9.8CVSS6.2AI score0.00426EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•10 views

CVE-2026-38569

HireFlow v1.2 is vulnerable to Cross Site Scripting XSS in candidatedetail.html via the Resume or Feedback Comment fields via POST /candidates/add or POST /feedback/add...

5.4CVSS5.5AI score0.00208EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•11 views

CVE-2026-38934

Cross Site Request Forgery vulnerability in diskoverdata diskover-community v.2.3.5. and before allows a remote attacker to escalate privileges and obtain sensitive information via the public/settingsprocess.php...

8.8CVSS5.5AI score0.00223EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•12 views

CVE-2026-38931

A stored cross-site scripting XSS vulnerability in the /admin/config-module.php component of creatorsofcode simplephp GitHub commit 5184cff Latest as of 2026-02-27 via injecting a crafted payload...

5.4CVSS5.2AI score0.00162EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•12 views

CVE-2026-47716

Bugsink is a self-hosted error tracking tool. Prior to 2.2.0, In affected versions, the issue list view authorizes access through the project in the URL, but applies the requested bulk action to the submitted issue IDs without also requiring those issues to belong to that project. This...

3.1CVSS5.5AI score0.00147EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•15 views

CVE-2026-38991

Cockpit 2.13.5 and earlier is affected by a misconfiguration within the Bucket component isFileTypeAllowed function where a specially crafted filename bypasses an extension filter. This allows an authenticated attacker to rename arbitrary files with the .php file extension enabling arbitrary code...

8.8CVSS5.7AI score0.00375EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•8 views

CVE-2026-47330

Ubuntu Linux 6.8, 7.17 and 7.0 contain AppArmor SAUCE patches which can, under certain circumstances, use an uninitialized variable in notification handling code. The bug can be triggered by an unprivileged local user and can result in the incorrect caching of AppArmor notification responses...

3.3CVSS5.4AI score0.00092EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•9 views

CVE-2026-47327

Ubuntu Linux 6.8, 6.17 and 7.0 contain SAUCE patches with a possible NULL pointer dereference in the handling of AppArmor notifications. The bug can be triggered by an unprivileged local user. This can lead to a kernel oops...

3.3CVSS5.4AI score0.00091EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•14 views

CVE-2026-38719

OpENer v2.3-558-g1e99582 contains an out-of-bounds read vulnerability in the Common Packet Format CPF parser, specifically in CreateCommonPacketFormatStructure in source/src/enetencap/cpf.c. A crafted ENIP/CPF message can supply an attacker-controlled itemcount value that is not consistently...

6.2CVSS5.5AI score0.00114EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•9 views

CVE-2026-38939

Cross Site Scripting vulnerability in andrewtch88 mvc-ecommerce v.1.0 allows a remote attacker to execute arbitrary code and obtain sensitive information via the productcatalogue.php component...

6.1CVSS6AI score0.00214EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•9 views

CVE-2026-38568

HireFlow v1.2 is vulnerable to Incorrect Access Control. The application does not enforce object-level authorization on the /candidate/ and /interview/ endpoints. The route handlers retrieve records by the user-supplied ID without verifying that the requesting user is the owner or has an authoriz...

8.1CVSS5.5AI score0.00231EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•10 views

CVE-2026-47329

Ubuntu Linux 6.8, 6.17 and 7.0 contain SAUCE patches which fail to validate invalid sizes of the name field in AppAmor notification responses. The bug can be triggered by an unprivileged local user and could result in handling of crafted responses...

3.3CVSS5.4AI score0.00092EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•10 views

CVE-2026-47372

Crypt::SaltedHash versions through 0.09 for Perl generate insecure random values for salts. These versions use the built-in rand function, which is predictable and unsuitable for cryptography...

9.1CVSS5.4AI score0.00397EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•11 views

CVE-2026-47336

Ubuntu Linux 6.8 contains SAUCE patches with a possible use of an uninitialized variable in AppArmor AFINET/AFINET6 socket mediation code. The bug can be triggered by an unprivileged local user and could result in incorrect fine-grained mediation of network sockets...

3.3CVSS5.4AI score0.00094EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•9 views

CVE-2026-38669

wCMS v.1.4 is vulnerable to Cross Site Scripting XSS when creating a new blog...

6.1CVSS5.4AI score0.00149EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•9 views

CVE-2026-47373

Crypt::SaltedHash versions through 0.09 for Perl is susceptible to timing attacks. These versions use Perl's built-in eq comparison. Discrepencies in timing could be used to guess the underlying hash...

7.5CVSS5.4AI score0.00393EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/05 7:49 p.m.•10 views

CVE-2026-29972

nanoMODBUS through v1.22.0 has a stack-based buffer overflow in recvreadregistersres in nanomodbus.c. When a client calls nmbsreadholdingregisters or nmbsreadinputregisters, the library writes register data from the server response to the caller-provided buffer based on the response's bytecount...

8.2CVSS6.3AI score0.00639EPSS
Exploits0References1
Total number of security vulnerabilities206406