|
5101
|
- |
|
-
|
-
|
Privilege escalation in the mk_mysql agent plugin on Windows in Checkmk <2.4.0p29, <2.3.0p47, and 2.2.0 (EOL) allows a local unprivileged user able to create a Windows service whose name matches 'MyS…
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2024-47091
|
2026-05-14 00:57 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5102
|
- |
|
-
|
-
|
Improper Input Validation in the NAT64 translator in The OpenThread Authors OpenThread before commit 26a882d on all platforms allows an attacker on the adjacent IPv4 network to inject corrupted IPv6 …
|
CWE-20
Improper Input Validation
|
CVE-2026-8369
|
2026-05-14 00:54 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5103
|
9.1 |
CRITICAL
Network
|
-
|
-
|
Insufficient ownership check in `clientarea.php` allows an authenticated client area user to submit requests using another user’s `addonId` without any ownership validation leading to unauthorized ac…
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2026-29204
|
2026-05-14 00:54 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5104
|
7.1 |
HIGH
Network
|
-
|
-
|
A Server-Side Request Forgery (SSRF) vulnerability exists in MLflow versions prior to 3.9.0. The `_create_webhook()` function in `mlflow/server/handlers.py` accepts a user-controlled `url` parameter …
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2026-2393
|
2026-05-14 00:53 |
2026-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5105
|
7.5 |
HIGH
Network
|
-
|
-
|
A vulnerability in the `_create_model_version()` handler of `mlflow/server/handlers.py` in mlflow/mlflow versions 3.9.0 and earlier allows an unauthenticated remote attacker to read arbitrary files f…
|
CWE-22
Path Traversal
|
CVE-2026-2614
|
2026-05-14 00:53 |
2026-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5106
|
2.9 |
LOW
Local
|
-
|
-
|
The application does not impose strict enough restrictions on directory access permissions, posing a risk that other malicious applications could obtain sensitive information.
|
-
|
CVE-2026-32684
|
2026-05-14 00:53 |
2026-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5107
|
4.7 |
MEDIUM
Local
|
-
|
-
|
The consul-template library before version 0.42.0 is vulnerable to a sandbox path bypass in the file template helper that may allow reading an out-of-sandbox file. This vulnerability (CVE-2026-5061) …
|
CWE-59
Link Following
|
CVE-2026-5061
|
2026-05-14 00:53 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5108
|
6.0 |
MEDIUM
Local
|
-
|
-
|
HashiCorp Nomad and Nomad Enterprise prior to 2.0.1 are vulnerable to arbitrary file read and write on the client host as the Nomad process user through a symlink attack. This vulnerability (CVE-2026…
|
CWE-59
Link Following
|
CVE-2026-6959
|
2026-05-14 00:53 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5109
|
8.8 |
HIGH
Network
|
-
|
-
|
HashiCorp Nomad and Nomad Enterprise prior to 2.0.1 are vulnerable to code execution on the client host through a path traversal attack. This vulnerability (CVE-2026-7474) is fixed in Nomad 2.0.1, 1.…
|
CWE-22
Path Traversal
|
CVE-2026-7474
|
2026-05-14 00:53 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5110
|
6.0 |
MEDIUM
Local
|
-
|
-
|
HashiCorp Nomad’s exec2 task driver prior to 0.1.2 is vulnerable to arbitrary file read and write on the client host as the Nomad process user through a symlink attack. This vulnerability (CVE-2026-8…
|
CWE-59
Link Following
|
CVE-2026-8052
|
2026-05-14 00:53 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
