|
661
|
5.5 |
MEDIUM
Local
|
-
|
-
|
Module: plugins/modules/keyring_info.py
CVSS 3.1: 5.5 MEDIUM — AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Issue: The module retrieves a passphrase from the OS native keyring (GNOME Keyring, macOS Keycha…
New
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2026-11819
|
2026-06-26 04:10 |
2026-06-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
662
|
- |
|
-
|
-
|
A denial-of-service (DoS) vulnerability has been identified in Tapo C200 v3 in the network packet handling logic due to improper handling of IPv4 fragmented packets. An unauthenticated adjacent atta…
New
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2026-12760
|
2026-06-26 04:10 |
2026-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
663
|
6.5 |
MEDIUM
Local
|
-
|
-
|
A flaw was found in KubeVirt's virt-handler domain notify server. The gRPC handlers for HandleDomainEvent and HandleK8SEvent derive the VMI identity (namespace/name) solely from the request body with…
New
|
CWE-287
Improper Authentication
|
CVE-2026-13208
|
2026-06-26 04:10 |
2026-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
664
|
7.8 |
HIGH
Local
|
-
|
-
|
MosaicML Composer Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of MosaicML Com…
New
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2026-10043
|
2026-06-26 04:10 |
2026-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
665
|
7.8 |
HIGH
Local
|
-
|
-
|
GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User inte…
New
|
CWE-122
Heap-based Buffer Overflow
|
CVE-2026-2050
|
2026-06-26 04:10 |
2026-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
666
|
8.8 |
HIGH
Network
|
-
|
-
|
Quest NetVault Backup viewclient Cross-Site Scripting Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Quest NetVa…
New
|
CWE-79
Cross-site Scripting
|
CVE-2026-7569
|
2026-06-26 04:10 |
2026-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
667
|
- |
|
-
|
-
|
CWE-522 Insufficiently Protected Credentials vulnerability that could cause unauthorized access and exposure of sensitive information when unauthenticated attacker accesses credentials stored within …
New
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2026-9650
|
2026-06-26 04:10 |
2026-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
668
|
- |
|
-
|
-
|
CWE-732 Incorrect Permission Assignment for Critical Resource vulnerability that could cause unauthorized disclosure of password hashes and potential account compromise when an attacker with privileg…
New
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2026-9651
|
2026-06-26 04:10 |
2026-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
669
|
- |
|
-
|
-
|
CWE-476 NULL Pointer Dereference vulnerability exists that could cause a denial-of-service condition, rendering the device’s HMI and configuration functionality unavailable when malformed requests ar…
New
|
CWE-476
NULL Pointer Dereference
|
CVE-2026-9716
|
2026-06-26 04:10 |
2026-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
670
|
- |
|
-
|
-
|
CWE-78 Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that could allow unauthorized execution of commands with elevated privileges, impacting s…
New
|
CWE-78
OS Command
|
CVE-2026-9717
|
2026-06-26 04:10 |
2026-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
