|
1081
|
7.1 |
HIGH
Network
|
dell
|
idrac10_firmware
|
Dell iDRAC10, versions 1.20.70.50 and 1.30.05.10, contains an Insufficiently Protected Credentials vulnerability. A race condition vulnerability exists that could allow an authenticated low‑privilege…
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2026-35155
|
2026-05-2 02:40 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1082
|
6.1 |
MEDIUM
Network
|
wso2
|
identity_server
|
The authentication endpoint accepts user-supplied input without enforcing expected validation constraints, leading to a lack of proper output encoding. This allows for the injection of malicious Java…
|
CWE-79
Cross-site Scripting
|
CVE-2025-10503
|
2026-05-2 02:40 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1083
|
6.4 |
MEDIUM
Network
|
traefik
|
traefik
|
Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.43, 3.6.14, and 3.7.0-rc.2, there is a potential vulnerability in Traefik's Kubernetes CRD provider cross-namespace isolatio…
|
CWE-653
CWE-863
Improper Isolation or Compartmentalization
Incorrect Authorization
|
CVE-2026-41174
|
2026-05-2 02:39 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1084
|
5.5 |
MEDIUM
Local
|
samsung
|
android
|
Insufficient verification of data authenticity in PackageManagerService prior to SMR Mar-2026 Release 1 allows local attackers to modify the installation restriction of specific application.
|
NVD-CWE-noinfo
|
CVE-2026-21023
|
2026-05-2 02:39 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1085
|
3.7 |
LOW
Network
|
traefik
|
traefik
|
Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.43, 3.6.14, and 3.7.0-rc.2, there is a timing side-channel vulnerability in Traefik's BasicAuth middleware that allows an at…
|
CWE-208
Information Exposure Through Timing Discrepancy
|
CVE-2026-41263
|
2026-05-2 02:37 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1086
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability has been found in Open5GS up to 2.7.7. This vulnerability affects the function amf_nsmf_pdusession_handle_update_sm_context of the file /src/amf/nsmf-handler.c of the component AMF. T…
|
CWE-404
Improper Resource Shutdown or Release
|
CVE-2026-7587
|
2026-05-2 02:16 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1087
|
- |
|
-
|
-
|
Buffer overflow vulnerability in socketcand 0.4.2 in file socketcand.c in function main allows attackers to cause a denial of service or other unspecified impacts via crafted bus_name.
|
-
|
CVE-2026-37538
|
2026-05-2 02:16 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1088
|
8.1 |
HIGH
Adjacent
|
-
|
-
|
collin80/Open-SAE-J1939 thru commit 744024d4306bc387857dfce439558336806acb06 (2023-03-08) contains an integer underflow leading to out-of-bounds write in Transport Protocol Data Transfer handling. At…
|
-
|
CVE-2026-37537
|
2026-05-2 02:16 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1089
|
8.8 |
HIGH
Adjacent
|
-
|
-
|
miaofng/uds-c commit e506334e270d77b20c0bc259ac6c7d8c9b702b7a (2016-10-05) contains a stack buffer overflow in send_diagnostic_request. A 6-byte stack buffer (MAX_DIAGNOSTIC_PAYLOAD_SIZE=6) receives …
|
-
|
CVE-2026-37536
|
2026-05-2 02:16 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1090
|
7.1 |
HIGH
Adjacent
|
-
|
-
|
openxc/isotp-c thru commit 5a5d19245f65189202719321facd49ce6f5d46ac (2021-08-09) contains an out-of-bounds read in the ISO-TP Single Frame receive handler, where the 4-bit payload length nibble is us…
|
-
|
CVE-2026-37535
|
2026-05-2 02:16 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
