|
3931
|
7.5 |
HIGH
Network
|
apache
|
http_server
|
A NULL pointer dereference in mod_dav_lock in Apache HTTP Server 2.4.66 and earlier may allow an attacker to crash the server with a malicious request.mod_dav_lock is not used internally by mod_dav o…
|
CWE-476
NULL Pointer Dereference
|
CVE-2026-29169
|
2026-05-5 11:36 |
2026-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3932
|
6.5 |
MEDIUM
Network
|
absolute
|
secure_access
|
CVE-2026-40950 is a buffer overflow vulnerability in the Secure Access
server prior to 14.50. Attackers with control of a modified client can
send a specially crafted message to the server and caus…
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-40950
|
2026-05-5 11:32 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3933
|
4.4 |
MEDIUM
Local
|
absolute
|
secure_access
|
CVE-2026-40949 is a buffer overflow vulnerability in the Secure Access
Windows client prior to 14.50. Attackers with local control of the
Windows client can use it to trigger a denial of service.
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-40949
|
2026-05-5 11:32 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3934
|
5.5 |
MEDIUM
Local
|
absolute
|
secure_access
|
CVE-2026-33452 is a buffer overflow vulnerability in the Secure Access
Windows client prior to 14.50. Attackers with local control of the
Windows client can use it to ‘blue screen’ the system.
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-33452
|
2026-05-5 11:31 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3935
|
7.8 |
HIGH
Local
|
absolute
|
secure_access
|
CVE-2026-33451 is an arbitrary read/write vulnerability in the Secure
Access Windows client prior to 14.50. Attackers with local control of
the Windows client can send malformed data to an API and …
|
CWE-125
Out-of-bounds Read
|
CVE-2026-33451
|
2026-05-5 11:31 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3936
|
5.5 |
MEDIUM
Local
|
absolute
|
secure_access
|
CVE-2026-33450 is an out of bounds read vulnerability in the Secure
Access MacOS client prior to 14.50. Attackers with control of a modified
server can send a malformed packet to the client causing…
|
CWE-125
Out-of-bounds Read
|
CVE-2026-33450
|
2026-05-5 11:31 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3937
|
7.5 |
HIGH
Network
|
absolute
|
secure_access
|
CVE-2026-33449 is a buffer overflow in a message handling function of
the Secure Access client prior to 14.50. Attackers with control of
a modified server can send a cryptographically valid message…
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-33449
|
2026-05-5 11:27 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3938
|
3.3 |
LOW
Local
|
absolute
|
secure_access
|
CVE-2026-33448 is a format string vulnerability in the logging subsystem
of Secure Access client for MacOS prior to 14.50. Attackers with
control of a modified server can force the client to dump t…
|
CWE-200
Information Exposure
|
CVE-2026-33448
|
2026-05-5 11:27 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3939
|
9.8 |
CRITICAL
Network
|
absolute
|
secure_access
|
CVE-2026-33447 is a buffer overflow in a message parsing function of the
Secure Access client prior to 14.50. Attackers with control of a
modified server can send a special packet that can overwrit…
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-33447
|
2026-05-5 11:26 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3940
|
9.8 |
CRITICAL
Network
|
absolute
|
secure_access
|
CVE-2026-33446 is a buffer overflow in the authentication sub-system of
the Secure Access client prior to 14.50. Attackers with control of a
modified server can send a special packet that can overw…
|
CWE-120
Classic Buffer Overflow
|
CVE-2026-33446
|
2026-05-5 11:19 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
