ARTIKEL SUCHE
Threat Feed QueryDurchsuche alle aggregierten Security-Artikel nach Schlagworten, CVE-IDs und Quellen.
CVE-2026-8760 - Login with OTP <= 1.6 - Unauthenticated Authentication Bypass via OTP Brute Force
CVE ID :CVE-2026-8760 Published : May 27, 2026, 7:16 a.m. | 1 hour, 52 minutes ago Description :The Login with OTP plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 1
USN-8291-3: Linux kernel (Low Latency) vulnerabilities
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - SMB network file system; - Netfilt
[Unknown] CVE-2026-46595 – Previously, CVE-2024-45337 fixed an authorization bypass for misused ssh server ...
Unknown CVE-2026-46595 Previously, CVE-2024-45337 fixed an authorization bypass for misused ssh server configurations; if any other type of callback is passed other than public key, then the source-address validation wou
USN-8291-1: Linux kernel (Intel IoTG Real-time) vulnerabilities
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - SMB network file system; - Netfilt
CVE-2024-32002
Currently trending CVE - Hype Score: 6 - Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, repositories with submodules can be crafted in a way that exploits
Hackers Hijacking Four-Faith Industrial Routers for Botnet Activity
Hackers are actively exploiting Four-Faith industrial routers to build botnets, leveraging a critical vulnerability identified as CVE-2024-9643. Security researchers from CrowdSec report a sharp rise in exploitation atte
USN-8274-1: Linux kernel vulnerabilities
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Network drivers; - BTRFS file syst
CVE-2024-48419
Currently trending CVE - Hype Score: 5 - Edimax AC1200 Wi-Fi 5 Dual-Band Router BR-6476AC 1.06 suffers from Command Injection issues in /bin/goahead. Specifically, these issues can be triggered through /goform/traceroute
CVE-2024-43384 - Phoenix Contact: Improper removal of sensitive information in MGUARD products
CVE ID :CVE-2024-43384 Published : May 7, 2026, 9:16 a.m. | 1 hour, 4 minutes ago Description :A low privileged remote attacker can gain the root password due to improper removal of sensitive information before sto
CVE-2024-3273
Currently trending CVE - Hype Score: 2 - ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as critical, was found in D-Link DNS-320L, DNS-325, DNS-327L and DNS-340L up to 20240403. Affected is an unkn
CVE-2024-30151 - HCL BigFix Service Management (SM) is susceptible to Broken Access Control Vulnerability
CVE ID :CVE-2024-30151 Published : May 6, 2026, 7:16 p.m. | 1 hour, 4 minutes ago Description :HCL BigFix Service Management (SX) is affected by a Broken Access Control vulnerability leading to privilege escalatio
CVE-2024-32880
Currently trending CVE - Hype Score: 4 - pyload is an open-source Download Manager written in pure Python. An authenticated user can change the download folder and upload a crafted template to the specified folder lead t
CVE-2024-52911
Currently trending CVE - Hype Score: 2
CVE-2024-11182
Currently trending CVE - Hype Score: 1 - An XSS issue was discovered in MDaemon Email Server before version 24.5.1c. An attacker can send an HTML e-mail message with JavaScript in an img tag. This could allow a remo
CVE-2024-12053
Currently trending CVE - Hype Score: 5 - Type Confusion in V8 in Google Chrome prior to 131.0.6778.108 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. (Chromium security severi
CVE-2024-39847 - Arbitrary File Read and Server Side Request Forgery via XML External Entities in 4D Server SOAP
CVE ID :CVE-2024-39847 Published : April 30, 2026, 7:16 a.m. | 11 hours, 2 minutes ago Description :Unauthenticated attackers can exploit a weakness in the XML parser functionality of the SOAP endpoints in 4D serve
CVE-2024-1708
Currently trending CVE - Hype Score: 7 - ConnectWise ScreenConnect 23.9.7 and prior are affected by path-traversal vulnerability, which may allow an attacker the ability to execute remote code or directly impact confid
CVE-2024-54013 - Authentication Bypass
CVE ID :CVE-2024-54013 Published : April 28, 2026, 7:06 a.m. | 1 hour, 8 minutes ago Description :Penetration Testing engineers at Amazon have identified a security flaw related to request handling in the web serve
CVE-2024-54012 - Command Injection
CVE ID :CVE-2024-54012 Published : April 28, 2026, 7:03 a.m. | 1 hour, 11 minutes ago Description :Penetration Testing engineers at Amazon discovered a vulnerability where the camera system failed to properly valid
CVE-2024-38475
Currently trending CVE - Hype Score: 5 - Improper escaping of output in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to map URLs to filesystem locations that are permitted to be served by the s