|
1
|
7.5 |
HIGH
Network
|
oracle
|
database_server
|
Vulnerability in the Net Service component of Oracle Database Server. Supported versions that are affected are 23.4.0-23.26.2. Easily exploitable vulnerability allows unauthenticated attacker with n…
Update
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2026-46834
|
2026-06-4 03:57 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2
|
9.9 |
CRITICAL
Network
|
linuxfoundation
|
cloudnativepg
|
CloudNativePG is a platform designed to manage PostgreSQL databases within Kubernetes environments. Prior to 1.29.1 and 1.28.3, the CloudNativePG metrics exporter opens its PostgreSQL connection as t…
Update
|
CWE-250
CWE-271
CWE-426
Execution with Unnecessary Privileges
Privilege Dropping / Lowering Errors
Untrusted Search Path
|
CVE-2026-44477
|
2026-06-4 03:56 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3
|
8.0 |
HIGH
Network
|
microsoft
|
sharepoint_server
|
Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.
New
|
CWE-78
OS Command
|
CVE-2026-47294
|
2026-06-4 03:42 |
2026-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4
|
6.3 |
MEDIUM
Network
|
vivotek
|
fd8136_firmware
|
A stack-based buffer overflow in the export_language.cgi binary in VIVOTEK FD8136 firmware FD8136-VVTK-0300a allows authenticated remote attackers to execute arbitrary code as root via a crafted POST…
New
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-35717
|
2026-06-4 03:42 |
2026-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5
|
7.3 |
HIGH
Network
|
vivotek
|
fd8136_firmware
|
Buffer Overflow vulnerability in VIVOTEK INC FD8136-VVTK-0300a allows a remote attacker to execute arbitrary code via the set_getparam.cgi component
New
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-30649
|
2026-06-4 03:41 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
6
|
8.8 |
HIGH
Network
|
vivotek
|
fd8136_firmware
|
A post-authentication remote buffer overflow vulnerability exists in the /cgi-bin/admin/eventtask.cgi endpoint of the admin interface of Vivotek FD8136 cameras running firmware version FD8136-VVTK-03…
New
|
CWE-120
Classic Buffer Overflow
|
CVE-2026-30650
|
2026-06-4 03:41 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
7
|
8.8 |
HIGH
Network
|
vivotek
|
fd8136_firmware
|
A remote buffer overflow vulnerability exists in the /cgi-bin/dido/setdo.cgi endpoint of the admin interface of Vivotek FD8136 cameras running firmware version FD8136-VVTK-0300a. This flaw allows an …
New
|
CWE-120
Classic Buffer Overflow
|
CVE-2026-30652
|
2026-06-4 03:40 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
8
|
6.3 |
MEDIUM
Network
|
vivotek
|
fd8136_firmware
|
A stack-based buffer overflow in the motion_privacy.cgi binary in VIVOTEK FD8136 firmware FD8136-VVTK-0300a allows authenticated remote attackers to execute arbitrary code as root via an oversized n1…
New
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-35716
|
2026-06-4 03:40 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
9
|
6.5 |
MEDIUM
Network
|
vivotek
|
fd8136_firmware
|
A path traversal vulnerability in the /admin/downloadMedias.cgi endpoint of VIVOTEK INC FD8136-VVTK firmware 0300a allows authenticated attackers to read any file on the device via sending a crafted …
New
|
CWE-22
Path Traversal
|
CVE-2026-35718
|
2026-06-4 03:39 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
10
|
9.9 |
CRITICAL
Network
|
oracle
|
rest_data_services
|
Vulnerability in Oracle REST Data Services (component: Core). Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows low privileged attacker with network acc…
Update
|
CWE-400
CWE-284
Uncontrolled Resource Consumption
Improper Access Control
|
CVE-2026-46775
|
2026-06-4 03:35 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
