|
1051
|
6.7 |
MEDIUM
Local
|
-
|
-
|
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7.0.0, LTS2025 release versions 8.3.1.0 through 8.3.1.20, LTS2024 release versions 7.13.1.0 through 7.13.1.60 contain an improper neutralizat…
|
CWE-88
Argument Injection
|
CVE-2026-35153
|
2026-04-18 00:07 |
2026-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1052
|
- |
|
-
|
-
|
GREENmod uses named pipes for communication between plugins, the web portal, and the system service, but the access control lists for these pipes are configured incorrectly. This allows an attacker t…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2026-5131
|
2026-04-18 00:07 |
2026-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1053
|
6.2 |
MEDIUM
Network
|
-
|
-
|
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 8.4 through 8.5 contain a session fixation vulnerability. A high privileged attacker with remote ac…
|
CWE-384
Session Fixation
|
CVE-2025-46605
|
2026-04-18 00:07 |
2026-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1054
|
6.2 |
MEDIUM
Network
|
-
|
-
|
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 8.4 through 8.5 contain an improper restriction of excessive authentication attempts vulnerability.…
|
CWE-307
mproper Restriction of Excessive Authentication Attempts
|
CVE-2025-46606
|
2026-04-18 00:07 |
2026-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1055
|
6.6 |
MEDIUM
Network
|
-
|
-
|
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 8.4 through 8.5 contain an improper authentication vulnerability. A high privileged attacker with r…
|
CWE-287
Improper Authentication
|
CVE-2025-46607
|
2026-04-18 00:07 |
2026-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1056
|
6.6 |
MEDIUM
Network
|
-
|
-
|
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 8.4 through 8.5 contain an improper authentication vulnerability. A high privileged attacker with r…
|
CWE-287
Improper Authentication
|
CVE-2025-46641
|
2026-04-18 00:07 |
2026-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1057
|
4.3 |
MEDIUM
Network
|
-
|
-
|
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.5, LTS2025 release version 8.3.1.0 through 8.3.1.20, LTS2024 release versions 7.1…
|
CWE-200
Information Exposure
|
CVE-2026-23777
|
2026-04-18 00:07 |
2026-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1058
|
5.9 |
MEDIUM
Network
|
-
|
-
|
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.5, LTS2025 release version 8.3.1.0 through 8.3.1.20, LTS2024 release versions 7.1…
|
CWE-79
Cross-site Scripting
|
CVE-2026-28263
|
2026-04-18 00:07 |
2026-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1059
|
7.5 |
HIGH
Network
|
-
|
-
|
A flaw was found in dnsmasq. A remote attacker could exploit an out-of-bounds write vulnerability by sending a specially crafted BOOTREPLY (Bootstrap Protocol Reply) packet to a dnsmasq server config…
|
CWE-787
Out-of-bounds Write
|
CVE-2026-6507
|
2026-04-18 00:07 |
2026-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1060
|
7.5 |
HIGH
Network
|
vinyl-cache
|
vinyl_cache
|
Varnish Cache 9 before 9.0.1 allows a "workspace overflow" denial of service (daemon panic) after timeout_linger. A malicious client could send an HTTP/1 request, wait long enough until the session r…
|
CWE-670
Always-Incorrect Control Flow Implementation
|
CVE-2026-40396
|
2026-04-17 23:38 |
2026-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
