|
451
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was identified in janeczku Calibre-Web up to 0.6.26. The impacted element is the function generate_auth_token of the file cps/kobo_auth.py of the component Endpoint. Such manipulation…
New
|
CWE-266
CWE-285
Incorrect Privilege Assignment
Improper Authorization
|
CVE-2026-7709
|
2026-05-4 08:16 |
2026-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
452
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was determined in Open5GS up to 2.7.7. The affected element is the function ogs_dbi_subscription_data in the library /lib/dbi/subscription.c of the component UDR. This manipulation of…
New
|
CWE-404
Improper Resource Shutdown or Release
|
CVE-2026-7708
|
2026-05-4 08:16 |
2026-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
453
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was found in Open5GS up to 2.7.7. Impacted is the function udr_nudr_dr_handle_subscription_context of the file /src/udr/nudr-handler.c of the component UDR. The manipulation of the ar…
New
|
CWE-404
Improper Resource Shutdown or Release
|
CVE-2026-7707
|
2026-05-4 08:16 |
2026-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
454
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability has been found in Open5GS up to 2.7.7. This issue affects the function gmm_handle_service_request of the file /src/amf/gmm-handler.c of the component AMF. The manipulation leads to de…
New
|
CWE-404
Improper Resource Shutdown or Release
|
CVE-2026-7706
|
2026-05-4 08:16 |
2026-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
455
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A flaw has been found in JD Cloud JDCOS 4.5.1.r4518. This vulnerability affects the function set_iptv_info of the file /jdcap of the component Service Interface. Executing a manipulation of the argum…
New
|
CWE-74
CWE-77
Injection
Command Injection
|
CVE-2026-7705
|
2026-05-4 08:16 |
2026-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
456
|
6.5 |
MEDIUM
Network
|
-
|
-
|
A flaw was found in gnutls. This vulnerability occurs because gnutls performs case-sensitive comparisons of `nameConstraints` labels, specifically for `dNSName` (DNS) or `rfc822Name` (email) constrai…
Update
|
CWE-178
Improper Handling of Case Sensitivity
|
CVE-2026-3833
|
2026-05-4 05:16 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
457
|
3.7 |
LOW
Network
|
-
|
-
|
A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted Online Certificate Status Protocol (OCSP) response during a TLS handshake. Due to a lo…
Update
|
CWE-179
Incorrect Behavior Order: Early Validation
|
CVE-2026-3832
|
2026-05-4 05:16 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
458
|
4.3 |
MEDIUM
Adjacent
|
-
|
-
|
A vulnerability has been found in AV Stumpfl Pixera Two Media Server up to 25.1 R2. The affected element is an unknown function of the component Service Port 1338. Such manipulation leads to path tra…
New
|
CWE-22
Path Traversal
|
CVE-2026-7704
|
2026-05-4 02:16 |
2026-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
459
|
7.3 |
HIGH
Network
|
-
|
-
|
A flaw has been found in AV Stumpfl Pixera Two Media Server up to 25.2 R2. Impacted is an unknown function of the component Websocket API. This manipulation causes code injection. The attack can be i…
New
|
CWE-74
CWE-94
Injection
Code Injection
|
CVE-2026-7703
|
2026-05-4 02:16 |
2026-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
460
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was detected in toeverything AFFiNE up to 0.26.3. This issue affects the function allowDocPreview of the file /workspace/:workspaceId/:docId of the component Public Markdown Preview E…
New
|
CWE-285
CWE-639
Improper Authorization
Authorization Bypass Through User-Controlled Key
|
CVE-2026-7702
|
2026-05-4 01:15 |
2026-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
