|
1181
|
6.2 |
MEDIUM
Local
|
-
|
-
|
CAI Content Credentials versions 0.78.2, 0.7.0 and earlier are affected by an Uncontrolled Resource Consumption vulnerability that could lead to application denial-of-service. An attacker could explo…
New
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2026-34678
|
2026-05-13 23:49 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1182
|
6.2 |
MEDIUM
Local
|
-
|
-
|
CAI Content Credentials versions 0.78.2, 0.7.0 and earlier are affected by an Improper Input Validation vulnerability that could result in an application denial-of-service. An attacker could exploit …
New
|
CWE-20
Improper Input Validation
|
CVE-2026-34679
|
2026-05-13 23:49 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1183
|
6.2 |
MEDIUM
Local
|
-
|
-
|
CAI Content Credentials versions 0.78.2, 0.7.0 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in an application denial-of-service. An attacker could exp…
New
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2026-34680
|
2026-05-13 23:49 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1184
|
3.4 |
LOW
Network
|
-
|
-
|
Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier [NEEDS REVIEW: impact mismatch — ticket says 'Arbitrary file system write', CIA triad derives 'Sec…
New
|
CWE-20
Improper Input Validation
|
CVE-2026-34685
|
2026-05-13 23:49 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1185
|
6.2 |
MEDIUM
Local
|
-
|
-
|
CAI Content Credentials versions 0.78.2, 0.7.0 and earlier are affected by an Improper Input Validation vulnerability that could result in an application denial-of-service. An attacker could exploit …
New
|
CWE-20
Improper Input Validation
|
CVE-2026-34688
|
2026-05-13 23:49 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1186
|
- |
|
-
|
-
|
Improper enforcement of the LFENCE serialization property may allow an attacker to bypass speculation barriers and potentially disclose sensitive information, potentially resulting in loss of confide…
New
|
CWE-693
Protection Mechanism Failure
|
CVE-2024-36315
|
2026-05-13 23:49 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1187
|
- |
|
-
|
-
|
Missing lock bit protection for NBIO registers could allow a local admin-privileged attacker to modify MMIO routing configurations, potentially resulting in loss of SEV-SNP guest integrity.
New
|
CWE-1233
Security-Sensitive Hardware Controls with Missing Lock Bit Protection
|
CVE-2025-61971
|
2026-05-13 23:49 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1188
|
- |
|
-
|
-
|
Missing lock bit protection for NBIO registers could allow a local admin-privileged attacker to gain arbitrary System Management Network (SMN) access, potentially resulting in arbitrary code executio…
New
|
CWE-1233
Security-Sensitive Hardware Controls with Missing Lock Bit Protection
|
CVE-2025-61972
|
2026-05-13 23:49 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1189
|
- |
|
-
|
-
|
A heap-based buffer overflow in the ionic cloud driver for VMware ESXi could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution.
New
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2025-62623
|
2026-05-13 23:49 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1190
|
- |
|
-
|
-
|
A heap-based buffer overflow in the ionic cloud driver for VMware ESXi could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution.
New
|
CWE-122
Heap-based Buffer Overflow
|
CVE-2025-62624
|
2026-05-13 23:49 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
