|
1
|
5.4 |
MEDIUM
Network
|
vmware
|
aria_operations
cloud_foundation
telco_cloud_platform
|
VMware Cloud Foundation Operations contains multiple stored cross-site scripting vulnerabilities.A malicious actor with privileges to create policies, views or text-widgets may be able to inject scri…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2026-41724
|
2026-06-16 03:50 |
2026-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2
|
6.5 |
MEDIUM
Network
|
redhat
|
directory_server
389_directory_server
enterprise_linux
|
A flaw was found in 389 Directory Server. The Content Synchronization persistent search plugin allows unbounded memory growth when an authenticated client stops reading sync responses, enabling denia…
Update
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2026-11611
|
2026-06-16 03:41 |
2026-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3
|
4.9 |
MEDIUM
Network
|
redhat
|
389_directory_server
|
A stack buffer overflow flaw was found in 389 Directory Server. The checkPrefix() function in pw.c copies an attacker-controlled algorithm ID into a 256-byte stack buffer without bounds checking when…
Update
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-11793
|
2026-06-16 03:34 |
2026-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4
|
7.2 |
HIGH
Network
|
qnap
|
qts
quts_hero
|
A command injection vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to e…
Update
|
CWE-78
OS Command
|
CVE-2026-24719
|
2026-06-16 03:33 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5
|
7.2 |
HIGH
Network
|
qnap
|
qts
quts_hero
|
A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerabili…
Update
|
CWE-476
NULL Pointer Dereference
|
CVE-2026-24716
|
2026-06-16 03:33 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
6
|
7.2 |
HIGH
Network
|
qnap
|
qts
quts_hero
|
A command injection vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to e…
Update
|
CWE-78
OS Command
|
CVE-2026-22893
|
2026-06-16 03:33 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
7
|
7.2 |
HIGH
Network
|
qnap
|
qts
quts_hero
|
A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. The remote attackers can then exploit the vulnerability to launch a denial-of-service (DoS…
Update
|
CWE-476
NULL Pointer Dereference
|
CVE-2025-66281
|
2026-06-16 03:32 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
8
|
7.2 |
HIGH
Network
|
qnap
|
qts
quts_hero
|
A command injection vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to e…
Update
|
CWE-78
OS Command
|
CVE-2025-66279
|
2026-06-16 03:32 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
9
|
7.2 |
HIGH
Network
|
qnap
|
qts
quts_hero
|
A command injection vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to e…
Update
|
CWE-78
OS Command
|
CVE-2025-66273
|
2026-06-16 03:32 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
10
|
7.2 |
HIGH
Network
|
qnap
|
qts
quts_hero
|
An integer overflow or wraparound vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vuln…
Update
|
CWE-121
CWE-190
Stack-based Buffer Overflow
Integer Overflow or Wraparound
|
CVE-2025-66280
|
2026-06-16 03:32 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
