CVE Vulnerability Catalog

Translated CVE descriptions from NVD NIST - in English

CISA KEV catalog updated: (v2026.07.13)

CVE-2026-9154
High

Arbitrary File Write vulnerability in Rapid7 InsightConnect Sed Plugin on Linux allows authenticated attackers to write attacker-controlled content to arbitrary file paths via the expression parameter.

CVE-2026-9153
Medium

Arbitrary File Read vulnerability in Rapid7 InsightConnect Sed Plugin on Linux allows authenticated attackers to read arbitrary files via the expression parameter due to insufficient input validation.

CVE-2026-57589
High

In the OpenBSD kernel up to version 7.9, a use-after-free vulnerability exists in sys/kern/sysv_sem.c, allowing local privilege escalation to root. The issue occurs after a context switch following the tsleep call in sys_semget().

CVE-2026-9787
HighEPSS 69%

A vulnerability in Quest NetVault Backup allows remote code execution via command injection in the NVBULogDaemon process. The issue stems from improper validation of user-supplied data before using it in a system call, allowing an attacker to execute code in the SYSTEM context. Authentication is required, but the existing authentication mechanism can be bypassed.

CVE-2026-9786
High

SQL Injection vulnerability in the NVBUDashboard component of Quest NetVault Backup allows remote code execution. The flaw results from improper validation of user-supplied data before using it in SQL queries, enabling an attacker to execute code in the context of the NETWORK SERVICE account. Authentication is required but the existing authentication mechanism can be bypassed.

CVE-2026-9785
High

A vulnerability in Quest NetVault Backup allows remote code execution via SQL injection in the NVBULibrarySlot component. Authentication is required but can be bypassed. The flaw stems from improper validation of user-supplied data used in SQL queries.

CVE-2026-9784
High

A vulnerability in Quest NetVault Backup allows remote code execution via SQL injection in the NVBULibraryPort component. Authentication is required but can be bypassed.

CVE-2026-9783
High

SQL Injection vulnerability in the NVBURemovableMedia component of Quest NetVault Backup allows remote attackers to execute arbitrary code. The flaw stems from improper validation of user-supplied data before using it in SQL queries, and the existing authentication mechanism can be bypassed.

CVE-2026-9782
High

SQL Injection vulnerability in Quest NetVault Backup allows remote code execution. The flaw exists in the NVBUDeviceDrive component during JSON-RPC message processing, where lack of user input validation leads to SQL injection. Authentication is required but can be bypassed.

CVE-2026-9781
High

A vulnerability in Quest NetVault Backup allows remote code execution via SQL injection in the NVBURASDevice component. Authentication is required but can be bypassed.

CVE-2026-9780
High

A vulnerability in Quest NetVault Backup's addclient3 component allows an attacker to bypass authentication via script injection. User interaction is required, as the target must visit a malicious page or open a malicious file.

CVE-2026-8663
Medium

The RPM plugin for Rapid7 InsightConnect on Linux contains an OS command injection vulnerability. An authenticated attacker can execute arbitrary OS commands via the repo, key, or name parameters due to insufficient input sanitization.

CVE-2026-8659
Medium

The SQLmap plugin for Rapid7 InsightConnect on Linux contains an OS command injection vulnerability. Authenticated attackers can execute arbitrary OS commands via the api_host or api_port parameters during connection configuration due to insufficient input validation.

CVE-2026-7570
High

A vulnerability in Quest NetVault Backup allows remote code execution via SQL injection in the NVBUDashboard component. Authentication is required but can be bypassed. The issue stems from improper validation of user-supplied data before use in SQL queries.

CVE-2026-7569
High

A vulnerability in Quest NetVault Backup allows an attacker to bypass authentication via cross-site scripting (XSS) in the viewclient component. User interaction is required, as the target must visit a malicious page or open a malicious file.

CVE-2026-40079
CriticalEPSS 62%

Cacti versions 1.2.30 and prior are vulnerable to Command Injection due to lack of sanitization in the escape_command() function in lib/rrd.php, which returns the command unchanged. The rrdtool_function_graph() function passes the built command to shell_exec() through this ineffective function, and the risk is that text_format values from graph templates (which may contain host variable substitutions) reach shell_exec() without adequate escaping.

CVE-2026-39951
High

Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior have a Stored SQL Injection vulnerability through graph_name_regexp in the Reports feature. This issue has been fixed in version 1.2.31.

CVE-2025-60473
Medium

A NULL pointer dereference vulnerability was found in the gf_filter_in_parent_chain function of GPAC/MP4Box before version 26.02.0. Attackers can cause a Denial of Service (DoS) by supplying a crafted file.

CVE-2025-60466
Medium

A use-after-free vulnerability was found in the gf_filter_pid_get_packet function (/filter_core/filter_pid.c) of GPAC/MP4Box before version 26.02.0. Attackers can cause a Denial of Service (DoS) by supplying a crafted media file.

CVE-2026-39955
Critical

Cacti versions 1.2.30 and prior contain a pre-authentication SQL injection vulnerability via unanchored FILTER_VALIDATE_REGEXP in graph_view.php. This issue has been fixed in version 1.2.31.

PreviousPage 187 of 4549Next

Vulnerability data from NVD (NIST) · CISA KEV · EPSS