|
3111
|
8.1 |
HIGH
Network
|
netty
|
netty
|
Netty is a network application framework for development of protocol servers and clients. In netty-handler prior to versions 4.1.135.Final and 4.2.15.Final, an attacker can bypass IPv6 subnet rules d…
|
CWE-284
CWE-697
Improper Access Control
Incorrect Comparison
|
CVE-2026-44249
|
2026-06-15 11:30 |
2026-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3112
|
7.5 |
HIGH
Network
|
netty
|
netty
|
Netty is a network application framework for development of protocol servers and clients. In netty-codec-redis prior to versions 4.1.135.Final and 4.2.15.Final, an attacker can cause DoS by sending a…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2026-44250
|
2026-06-15 11:30 |
2026-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3113
|
7.5 |
HIGH
Network
|
netty
|
netty
|
Netty is a network application framework for development of protocol servers and clients. In netty-codec-redis prior to versions 4.1.135.Final and 4.2.15.Final, an attacker can cause DoS by sending c…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2026-44890
|
2026-06-15 11:30 |
2026-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3114
|
7.5 |
HIGH
Network
|
netty
|
netty
|
Netty is a network application framework for development of protocol servers and clients. Prior to version 4.2.15.Final, the default configuration of the `Http3ConnectionHandler` in the Netty HTTP/3 …
|
CWE-400
CWE-1188
Uncontrolled Resource Consumption
Insecure Default Initialization of Resource
|
CVE-2026-44892
|
2026-06-15 11:30 |
2026-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3115
|
7.5 |
HIGH
Network
|
netty
|
netty
|
Netty is a network application framework for development of protocol servers and clients. In netty-codec-haproxy prior to versions 4.1.135.Final and 4.2.15.Final, when decoding a PP2_TYPE_SSL TLV, HA…
|
CWE-703
Improper Check or Handling of Exceptional Conditions
|
CVE-2026-44893
|
2026-06-15 11:23 |
2026-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3116
|
7.5 |
HIGH
Network
|
netty
|
netty
|
Netty is a network application framework for development of protocol servers and clients. NoQuicTokenHandler is the tokenHandler used when the application does not set one. Prior to version 4.2.15.Fi…
|
CWE-940
Improper Verification of Source of a Communication Channel
|
CVE-2026-44894
|
2026-06-15 11:23 |
2026-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3117
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A security flaw has been discovered in medkey-org medkey up to fc09b7ba9441ff590b72d428d5380834216b09ed. Impacted is the function actionGetPatientById of the file app\modules\medical\port\rest\contro…
|
CWE-99
Resource Injection
|
CVE-2026-12207
|
2026-06-15 11:16 |
2026-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3118
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was identified in Grit42 Grit up to 0.11.0. This issue affects the function Grit::Assays::DataTableEntity of the file modules/assays/backend/app/models/grit/assays/data_table_entity.r…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-12206
|
2026-06-15 11:16 |
2026-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3119
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was determined in ShopXO up to 6.7.1. This vulnerability affects the function OrderClose/OrderSuccess/PayLogOrderClose/GoodsGiveIntegral of the file app/api/controller/Crontab.php of …
|
CWE-285
CWE-639
Improper Authorization
Authorization Bypass Through User-Controlled Key
|
CVE-2026-12204
|
2026-06-15 11:16 |
2026-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3120
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was found in HKUDS AI-Trader up to 74caf996f78dcc0c657df8365c8544678a16e215. This affects an unknown part of the file /api/research/agents.csv of the component Research Export. Perfor…
|
CWE-200
CWE-284
Information Exposure
Improper Access Control
|
CVE-2026-12203
|
2026-06-15 11:16 |
2026-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
