|
941
|
3.7 |
LOW
Network
|
-
|
-
|
HCL DFXAnalytics is affected by a Using Components with Known Vulnerabilities flaw where the application utilizes unpatched libraries or sub-components, which could allow an attacker to identify and …
New
|
-
|
CVE-2025-59851
|
2026-05-6 20:16 |
2026-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
942
|
5.3 |
MEDIUM
Network
|
-
|
-
|
HCL DFXAnalytics is affected by an Insecure Security Header configuration vulnerability where the Content-Security-Policy does not define strict directives for object-src and base-uri, which could al…
New
|
CWE-358
Improperly Implemented Security Check for Standard
|
CVE-2025-31970
|
2026-05-6 20:16 |
2026-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
943
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was found in Open5GS up to 2.7.7. Impacted is the function udr_nudr_dr_handle_subscription_context of the file /src/udr/nudr-handler.c of the component UDR. The manipulation of the ar…
Update
|
CWE-404
Improper Resource Shutdown or Release
|
CVE-2026-7707
|
2026-05-6 06:16 |
2026-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
944
|
9.8 |
CRITICAL
Network
|
-
|
-
|
Buffer overflow vulnerability in cannelloni v2.0.0 in CAN frame parsing in parser.cpp in function parseCANFrame, and decoder.cpp in function decodeFrame allowing remote attackers to cause a denial of…
Update
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-37539
|
2026-05-6 05:24 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
945
|
7.5 |
HIGH
Network
|
-
|
-
|
An issue was discovered in Open-SAE-J1939 thru commit b6caf884df46435e539b1ecbf92b6c29b345bdfe (2025-11-30) in SAE_J1939_Read_Binary_Data_Transfer_DM16 causing a denial of service via crafted CAN fra…
Update
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2026-42467
|
2026-05-6 05:24 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
946
|
7.5 |
HIGH
Network
|
-
|
-
|
AGL agl-service-can-low-level contains a stack buffer overflow in the uds-c library. The send_diagnostic_request function in uds.c allocates a 6-byte stack buffer (MAX_DIAGNOSTIC_PAYLOAD_SIZE=6) but …
Update
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-42485
|
2026-05-6 05:24 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
947
|
7.5 |
HIGH
Network
|
-
|
-
|
An issue was discovered in Vanetza V2X v26.02 allowing remote unauthorized attackers to cause a denial of service. The vulnerability exists in the GeoNetworking packet processing pipeline where OpenS…
Update
|
CWE-248
Uncaught Exception
|
CVE-2026-37554
|
2026-05-6 05:24 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
948
|
8.4 |
HIGH
Local
|
-
|
-
|
flipperzero-firmware commit ad2a80 was discovered to contain a stack overflow in the "Main" function.
Update
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-30363
|
2026-05-6 05:24 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
949
|
6.1 |
MEDIUM
Network
|
-
|
-
|
wCMS v.1.4 is vulnerable to Cross Site Scripting (XSS) when creating a new blog.
Update
|
CWE-79
Cross-site Scripting
|
CVE-2026-38669
|
2026-05-6 05:24 |
2026-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
950
|
- |
|
-
|
-
|
Beets is the media library management system. Prior to version 2.10.0, the bundled web UI uses Underscore template interpolation mode <%= ... %> for untrusted metadata fields. In this runtime, <%= ..…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2026-42052
|
2026-05-6 05:24 |
2026-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
