6.8

CVSS4.0

CVE-2026-22537 - INFORMATION DISCLOSURE WITHIN THE OPERATING SYSTEM

The lack of hardening of the system allows the user used to manage and maintain the charger to consult different files containing clear-text credentials or valuable information for an attacker.

πŸ“… Published: Jan. 7, 2026, 5:05 p.m. πŸ”„ Last Modified: April 18, 2026, 8:15 a.m.

8.4

CVSS4.0

CVE-2025-4676 - Authentication bypass by brute forcing Authentication Headers

Incorrect Implementation of Authentication Algorithm vulnerability in ABB WebPro SNMP Card PowerValue, ABB WebPro SNMP Card PowerValue UL.This issue affects WebPro SNMP Card PowerValue: through 1.1.8.K; WebPro SNMP Card PowerValue UL: through 1.1.8.K.

πŸ“… Published: Jan. 7, 2026, 5:02 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

6.1

CVSS3.1

CVE-2026-0618 - Cross‑Site Scripting in Devolutions PowerShell Universal

Cross-site Scripting vulnerability in Devolutions PowerShell Universal.This issue affects Powershell Universal: before 4.5.6, before 5.6.13.

πŸ“… Published: Jan. 7, 2026, 5 p.m. πŸ”„ Last Modified: April 18, 2026, 5 p.m.

7.1

CVSS4.0

CVE-2025-4675 - Improper implementation of Modbus protocol leading to DOS attack

Improper Check for Unusual or Exceptional Conditions vulnerability in ABB WebPro SNMP Card PowerValue, ABB WebPro SNMP Card PowerValue UL.This issue affects WebPro SNMP Card PowerValue: through 1.1.8.K; WebPro SNMP Card PowerValue UL: through 1.1.8.K.

πŸ“… Published: Jan. 7, 2026, 4:55 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

8.6

CVSS4.0

CVE-2026-22536 - PRIVILEGE ESCALATION VIA SUDO COMMAND

The absence of permissions control for the user XXX allows the current configuration in the sudoers file to escalate privileges without any restrictions

πŸ“… Published: Jan. 7, 2026, 4:47 p.m. πŸ”„ Last Modified: April 18, 2026, 8:15 a.m.

8.9

CVSS4.0

CVE-2026-22535 - FRAIL SECURITY IN MQTT PROTOCOL ALLOWS AN ATTACKER MODIFY CRITICAL PARAMETERS

An attacker with the ability to interact through the network and with access credentials, could, thanks to the unsecured (unencrypted) MQTT communications protocol, write on the server topics of the board that controls the MQTT communications

πŸ“… Published: Jan. 7, 2026, 4:37 p.m. πŸ”„ Last Modified: April 18, 2026, 8:15 a.m.

4.9

CVSS3.1

CVE-2026-20029 - Cisco Identity Services Engine XML External Entity Processing Information Disclosure Vulnerability

A vulnerability in the licensing features of Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow an authenticated, remote attacker with administrative privileges to gain access to sensitive information.  This vulnerability is due to impro…

πŸ“… Published: Jan. 7, 2026, 4:23 p.m. πŸ”„ Last Modified: April 18, 2026, 8:15 a.m.

5.3

CVSS3.1

CVE-2026-20027 - Cisco Snort DCERPC Stub Data Out of Bounds Read

Multiple Cisco products are affected by a vulnerability in the processing of DCE/RPC requests that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to leak sensitive information or to restart, resulting in an interruption of packet inspection. This vulnerabil…

πŸ“… Published: Jan. 7, 2026, 4:23 p.m. πŸ”„ Last Modified: April 18, 2026, 8:15 a.m.

5.8

CVSS3.1

CVE-2026-20026 - Multiple Cisco Products Snort 3 DCERPC Vulnerabilities

Multiple Cisco products are affected by a vulnerability in the processing of DCE/RPC requests that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to leak sensitive information or to restart, resulting in an interruption of packet inspection. This vulne…

πŸ“… Published: Jan. 7, 2026, 4:23 p.m. πŸ”„ Last Modified: April 18, 2026, 8 p.m.

8.7

CVSS4.0

CVE-2026-22544 - EXCHANGE OF CREDENTIALS IN CLEAR TEXT

An attacker with a network connection could detect credentials in clear text.

πŸ“… Published: Jan. 7, 2026, 4:23 p.m. πŸ”„ Last Modified: April 18, 2026, 8:15 a.m.
Total resulsts: 349182
Page 2249 of 34,919
Β« previous page Β» next page
Filters