Vulnerabilidades CVE

A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:

Borrar filtros
CVE ID Publicado Severidad CVSS Descripción
CVE-2026-7279 2026-04-28 HIGH 7.8 AVACAST developed by eMPIA Technology, has a DLL Hijacking vulnerability, allowing authenticated local attackers to place a malicious DLL in a specific directory, resulting in arbitrary code execution…
CVE-2026-40552 2026-04-28 N/A 0.0 mpGabinet is vulnerable to Remote Command Execution. An authorized user with access to the application and direct access to the backend database can achieve system command execution by…
CVE-2026-40551 2026-04-28 N/A 0.0 mpGabinet performs client-side authentication. An attacker with access to any application instance connected to the backend server can bypass the login verification process by manipulating the application binary…
CVE-2026-40550 2026-04-28 N/A 0.0 mpGabinet is vulnerable to Privilege Escalation due to excessive database privileges assigned to the user used by the application. An attacker with access to any running application instance…
CVE-2025-60887 2026-04-28 MEDIUM 5.3 An issue was discovered in Cista v0.15 and below. Insecure deserialization of untrusted input under certain conditions may lead to leaking of stack/heap addresses which may be used…
CVE-2026-27760 2026-04-28 HIGH 8.1 OpenCATS prior to commit 3002a29 contains a PHP code injection vulnerability in the installer AJAX endpoint that allows unauthenticated attackers to execute arbitrary code by injecting PHP statements…
CVE-2025-67223 2026-04-28 HIGH 7.5 The Aranda File Server (AFS) component in Aranda Software Aranda Service Desk before 8.3.12 stores daily activity logs with predictable names in a publicly accessible directory, which allows…
CVE-2026-38948 2026-04-28 MEDIUM 5.4 Cross-Site Scripting (XSS) vulnerability exists in FUEL CMS v1.5.2 and before within the asset upload functionality. The application fails to properly sanitize uploaded SVG files, allowing a low-privileged…
CVE-2026-5306 2026-04-28 MEDIUM 5.4 The Check & Log Email WordPress plugin before 2.0.13 does not properly handle email replacement, which could allow unauthenticated users to perform Stored XSS attacks when the email…
CVE-2026-40980 2026-04-28 MEDIUM 6.5 In Spring AI, a malicious PDF file can be crafted that triggers the allocation of unreasonable amounts of memory when handled by `ForkPDFLayoutTextStripper`. Affected versions: Spring AI: 1.0.0…
CVE-2026-40979 2026-04-28 MEDIUM 6.1 In Spring AI, having access to a shared environment can expose the ONNX model used by the application. Affected versions: Spring AI: 1.0.0 - 1.0.5 (fixed in 1.0.6),…
CVE-2026-40978 2026-04-28 HIGH 8.8 SQL injection vulnerability in Spring AI's `CosmosDBVectorStore` allows attackers to execute arbitrary SQL queries via crafted document IDs. Affected versions: Spring AI: 1.0.0 - 1.0.5 (fixed in 1.0.6),…
CVE-2026-40966 2026-04-28 MEDIUM 5.9 In Spring AI, an attacker can bypass conversation isolation and exfiltrate sensitive memory from other users’ chat histories, including secrets and credentials, by injecting filter logic through conversationId.…
CVE-2024-54013 2026-04-28 N/A 0.0 Penetration Testing engineers at Amazon have identified a security flaw related to request handling in the web server component that could, under certain conditions, lead to unintended access…
CVE-2024-54012 2026-04-28 N/A 0.0 Penetration Testing engineers at Amazon discovered a vulnerability where the camera system failed to properly validate input, allowing specially crafted requests containing malicious commands to be executed on…
CVE-2024-54011 2026-04-28 N/A 0.0 Penetration Testing engineers at Amazon have discovered a flaw where the camera system fails to properly handle data supplied in certain requests, causing a service disruption. The manufacturer has…
CVE-2026-40967 2026-04-28 HIGH 8.6 In Spring AI, various FilterExpressionConverter implementations accept a filter expression object and translate them to specific vector store query languages. In several cases, keys and values are not…
CVE-2026-40356 2026-04-28 MEDIUM 5.9 In MIT Kerberos 5 (aka krb5) before 1.22.3, there is an integer underflow and resultant out-of-bounds read if an application calls gss_accept_sec_context() on a system with a NegoEx…
CVE-2026-42510 2026-04-28 MEDIUM 6.6 OpenStack Ironic before 35.0.1 allows ipmitool execution in a non-default configuration that has a console interface.
CVE-2026-40355 2026-04-28 MEDIUM 5.9 In MIT Kerberos 5 (aka krb5) before 1.22.3, there is a NULL pointer dereference if an application calls gss_accept_sec_context() on a system with a NegoEx mechanism registered in…
CVE-2026-1460 2026-04-28 HIGH 7.2 A post-authentication command injection vulnerability in the “DomainName” parameter of the DHCP configuration file in Zyxel DX3301-T0 and EX3301-T0 firmware versions through 5.50(ABVY.7.1)C0 could allow an authenticated attacker…
CVE-2026-0711 2026-04-28 MEDIUM 6.8 A post-authentication command injection vulnerability in the EasyMesh-related APIs of Zyxel DX3300-T0 firmware versions through 5.50(ABVY.7.1)C0 could allow an authenticated, adjacent attacker with administrator privileges to execute OS…
CVE-2026-32649 2026-04-28 MEDIUM 6.8 A command injection vulnerability exists in the web server of specific firmware versions of Milesight cameras.
CVE-2026-32644 2026-04-28 CRITICAL 9.8 Specific firmware versions of Milesight AIOT cameras use SSL certificates with default private keys.
CVE-2026-20766 2026-04-28 HIGH 8.8 An out-of-bounds memory access vulnerability exists in specific firmware versions of Milesight AIOT cameras.
CVE-2026-40977 2026-04-28 MEDIUM 4.7 When an application is configured to use `ApplicationPidFileWriter`, a local attacker with write access to the PID file's location can corrupt one file on the host each time…
CVE-2026-40976 2026-04-28 CRITICAL 9.1 In certain circumstances, Spring Boot's default web security is ineffective allowing unauthorized access to all endpoints. For an application to be vulnerable, it must: be a servlet-based web…
CVE-2026-40975 2026-04-28 MEDIUM 4.8 Values produced by ${random.value} are not suitable for use as secrets. ${random.uuid} is not affected. ${random.int} and ${random.long} should never be used for secrets as they are numeric…
CVE-2026-40974 2026-04-28 MEDIUM 5.0 Spring Boot's Cassandra auto-configuration does not perform hostname verification when establishing an SSL connection to Cassandra. Affected: Spring Boot 4.0.0–4.0.5 (fix 4.0.6), 3.5.0–3.5.13 (fix 3.5.14), 3.4.0–3.4.15 (fix 3.4.16),…
CVE-2026-40973 2026-04-28 HIGH 7.0 A local attacker on the same host as the application may be able to take control of the directory used by `ApplicationTemp`. When `server.servlet.session.persistent` is set to `true`…
CVE-2026-40972 2026-04-28 HIGH 7.5 An attacker on the same network as the remote application may be able to utilize a timing attack to discover information about the remote secret. In extreme circumstances…
CVE-2026-27785 2026-04-28 HIGH 8.8 Specific firmware versions of Milesight AIOT camera firmware contain hard-coded credentials.
CVE-2026-40971 2026-04-27 MEDIUM 5.0 When configured to use an SSL bundle, Spring Boot's RabbitMQ auto-configuration does not perform hostname verification when connecting to the RabbitMQ broker. Affected: Spring Boot 4.0.0–4.0.5 (fix 4.0.6),…
CVE-2026-28747 2026-04-27 HIGH 7.1 A weak key generation vulnerability exists in specific firmware versions of Milesight AIOT cameras allows authorization to be bypassed.
CVE-2026-7320 2026-04-28 HIGH 7.5 Information disclosure due to incorrect boundary conditions in the Audio/Video component. This vulnerability was fixed in Firefox 150.0.1, Firefox ESR 140.10.1, and Firefox ESR 115.35.1.
CVE-2026-40969 2026-04-28 LOW 3.7 The raw message of every server-side AuthenticationException is returned to the unauthenticated remote caller in the gRPC status description. This allows an attacker to obtain information about the…
CVE-2026-40968 2026-04-28 MEDIUM 4.2 When an authenticated user is denied access to a gRPC method, their authenticated identity remains bound to the gRPC worker thread and can be inherited by a subsequent…
CVE-2026-24231 2026-04-28 MEDIUM 6.3 NVIDIA NemoClaw contains a vulnerability in the validateEndpointUrl() SSRF protection component, where an attacker could cause a server-side request forgery by supplying a crafted endpoint URL referencing the…
CVE-2026-24222 2026-04-28 HIGH 8.6 NVIDIA NeMoClaw contains a vulnerability in the sandbox environment initialization component, where a remote attacker could cause improper access control by sending prompt-injected content that causes the agent…
CVE-2026-24204 2026-04-28 MEDIUM 6.5 NVIDIA Flare SDK contains a vulnerability where an Attacker may cause an Improper Input Validation by path traversing. A successful exploit of this vulnerability may lead to information…
CVE-2026-24186 2026-04-28 HIGH 8.8 NVIDIA FLARE SDK contains a vulnerability in FOBS, where an attacker may cause deserialization of untrusted data by sending a malicious FOBS- encoded message. A successful exploit of…
CVE-2026-24178 2026-04-28 CRITICAL 9.8 NVIDIA NVFlare Dashboard contains a vulnerability in the user management and authentication system where an unauthenticated attacker may cause authorization bypass through user-controlled key. A successful exploit of…
CVE-2026-6807 2026-04-28 MEDIUM 5.5 A vulnerability in GRASSMARLIN v3.2.1 allows crafted session data to trigger improper handling of XML input, which may result in unintended exposure of sensitive information. The flaw stems…
CVE-2026-5794 2026-04-28 N/A 0.0 A vulnerability affecting the detailed versions of Cryptobox allows a legitimate user to prevent another to login by triggering an account lockout via sending a specially crafted request.
CVE-2026-42432 2026-04-28 HIGH 7.8 OpenClaw before 2026.4.8 contains a privilege escalation vulnerability allowing previously paired nodes to reconnect with exec-capable commands without operator.admin scope requirement. Attackers can bypass re-pairing authentication to execute…
CVE-2026-42431 2026-04-28 HIGH 8.1 OpenClaw before 2026.4.8 contains a security bypass vulnerability in node.invoke(browser.proxy) that allows mutation of persistent browser profiles. Attackers can exploit this path to circumvent the browser.request persistent profile-mutation…
CVE-2026-42430 2026-04-28 MEDIUM 6.5 OpenClaw before 2026.4.8 contains a server-side request forgery vulnerability in Playwright redirect handling that allows attackers to bypass strict SSRF checks. Attackers can exploit request-time navigation to reach…
CVE-2026-42429 2026-04-28 HIGH 7.1 OpenClaw before 2026.4.8 contains a privilege escalation vulnerability in the gateway plugin HTTP authentication mechanism that widens identity-bearing operator.read requests into runtime operator.write permissions. Attackers can exploit this…
CVE-2026-42428 2026-04-28 HIGH 7.1 OpenClaw versions before 2026.4.8 fail to enforce integrity verification on downloaded plugin archives. Attackers can install malicious or tampered plugin packages without detection, compromising the local assistant environment.
CVE-2026-42427 2026-04-28 MEDIUM 5.3 OpenClaw before 2026.4.8 contains a remote code execution vulnerability caused by missing environment variable denylist entries for HGRCPATH, CARGO_BUILD_RUSTC_WRAPPER, RUSTC_WRAPPER, and MAKEFLAGS. Attackers can inject malicious build tool…
« Anterior Página 252 de 4469 Siguiente »