CVE Find est une base de données de vulnérabilités en temps réel, indexant 363 050 failles de sécurité (CVE) issues de MITRE, NVD, CISA KEV, CWE et CAPEC. 1938 nouvelles CVE ont été publiées ces 7 derniers jours.
Données agrégées depuis : MITRE Corporation (CVE, CWE, CAPEC), National Vulnerability Database – NIST (NVD), CISA Known Exploited Vulnerabilities (KEV), FIRST (EPSS).
| CVE ID | Publié | Description | Score | Gravité | |
|---|---|---|---|---|---|
CVE-2026-13768 |
2026-07-02 23h40 +00:00 |
Gardyn devices expose a privileged iothubowner key. Access to this key will allow a malicious user t... |
9.5 |
Critique |
|
CVE-2026-54998 |
2026-07-02 23h16 +00:00 |
Incorrect authorization in Microsoft Exchange Online allows an authorized attacker to elevate privil... Authorization problems |
8.8 |
Haute |
|
CVE-2026-45499 |
2026-07-02 23h16 +00:00 |
Server-side request forgery (ssrf) in Azure OpenAI allows an authorized attacker to elevate privileg... Server-Side Request Forgery - SSRF |
9.9 |
Critique |
|
CVE-2026-41106 |
2026-07-02 23h16 +00:00 |
Url redirection to untrusted site ('open redirect') in M365 Copilot allows an unauthorized attacker ... |
9.3 |
Critique |
|
CVE-2026-57100 |
2026-07-02 22h18 +00:00 |
Server-side request forgery (ssrf) in Microsoft Entra Provisioning Service (SyncFabric) allows an au... Server-Side Request Forgery - SSRF |
9.9 |
Critique |
|
CVE-2026-52830 |
2026-07-02 20h39 +00:00 |
fast-mcp-telegram is a Telegram MCP Server. Prior to 0.19.1, fast-mcp-telegram validates HTTP Bearer... Directory TraversalAuthorization problems |
9.4 |
Critique |
|
CVE-2026-59099 |
2026-07-02 20h17 +00:00 |
Apereo CAS 7.3.0 before 8.0.0-RC6 contains a cryptographic vulnerability that allows remote unauthen... |
9.1 |
Critique |
|
CVE-2026-59093 |
2026-07-02 20h17 +00:00 |
Weaviate before 1.38.0 does not verify that a principal performing an RBAC role assignment holds the... Improper Privilege Management |
8.8 |
Haute |
|
CVE-2026-58466 |
2026-07-02 20h17 +00:00 |
AutoBangumi before 3.2.8 contains a hard-coded default credentials vulnerability that allows unauthe... |
9.8 |
Critique |
|
CVE-2026-58465 |
2026-07-02 17h55 +00:00 |
Eclipse Wakaama before snapshot/2026-05-26 contains an unbounded memory allocation vulnerability in ... |
8.7 |
Haute |