|
201
|
7.5 |
HIGH
Network
|
-
|
-
|
Johnson & Johnson Campus Recruiting before 2025-10-31 allows viewing of data provided by recruited students, and notes entered about students by interviewers.
New
|
CWE-602
Client-Side Enforcement of Server-Side Security
|
CVE-2026-57912
|
2026-06-27 01:17 |
2026-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202
|
7.5 |
HIGH
Network
|
-
|
-
|
Johnson & Johnson Audit Tracking Management System (ATMS) before 2026-04-21 allows viewing of meeting minutes and transcripts.
New
|
CWE-602
Client-Side Enforcement of Server-Side Security
|
CVE-2026-57913
|
2026-06-27 01:17 |
2026-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
203
|
6.8 |
MEDIUM
Network
|
-
|
-
|
Mattermost Plugins versions <=11.6 10.18.11 11.3.6 11.6.5.0 fail to sanitize error responses from the OpenAI API before logging, which allows a user with access to server logs or support packets to o…
New
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2026-9699
|
2026-06-27 01:16 |
2026-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
204
|
- |
|
-
|
-
|
Unauthenticated remote information disclosure vulnerability in Ollama's model quantization engine allows an attacker to read and exfiltrate the server's heap memory, potentially leading to sensitive …
New
|
-
|
CVE-2026-5757
|
2026-06-27 01:16 |
2026-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
205
|
9.8 |
CRITICAL
Network
|
-
|
-
|
An unauthenticated
stack-based buffer overflow vulnerability exists in thttpd in GeoVision
GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by
insufficient bounds checking whe…
New
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-57878
|
2026-06-27 01:16 |
2026-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
206
|
8.6 |
HIGH
Network
|
-
|
-
|
An unauthenticated
format string vulnerability exists in vlsvr in GeoVision GV-LPC2011 and
GV-LPC2211 V1.12 and earlier. The vulnerability is caused by improper handling
of externally controlled inpu…
New
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2026-57877
|
2026-06-27 01:16 |
2026-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
207
|
7.5 |
HIGH
Network
|
-
|
-
|
An unauthenticated
out-of-bounds write vulnerability exists in onvif.cgi in GeoVision GV-LPC2011
and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by insufficient
bounds checking when pro…
New
|
CWE-787
Out-of-bounds Write
|
CVE-2026-57876
|
2026-06-27 01:16 |
2026-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208
|
7.5 |
HIGH
Network
|
-
|
-
|
An unauthenticated
NULL pointer dereference vulnerability exists in the HTTP request parsing logic
of multiple CGI components in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and
earlier. The vulnerabili…
New
|
CWE-476
NULL Pointer Dereference
|
CVE-2026-57875
|
2026-06-27 01:16 |
2026-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
209
|
7.5 |
HIGH
Network
|
-
|
-
|
An unauthenticated
buffer overflow vulnerability exists in IEEE8021x_upload.cgi in GeoVision
GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by
insufficient bounds checking w…
New
|
CWE-120
Classic Buffer Overflow
|
CVE-2026-57874
|
2026-06-27 01:16 |
2026-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210
|
7.5 |
HIGH
Network
|
-
|
-
|
An unauthenticated
NULL pointer dereference vulnerability exists in IEEE8021x_upload.cgi in GeoVision
GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by
improper validation o…
New
|
CWE-476
NULL Pointer Dereference
|
CVE-2026-57873
|
2026-06-27 01:16 |
2026-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
