Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities
CVE-2026-9087
A flaw was found in Keycloak. The cross-session verification proof is keyed only by (local userId, idpAlias) and is not bound to the upstream identity that was actually verified, so a second upstream account on the same IdP can consume it and get linked to the victim's local account.
CVSS Score
6.4
EPSS Score
0.003
Published
2026-05-20
CVE-2026-44923
SQL injection in InfoScale VIOM before v9.1.3 allows remote attackers to escalate privileges.
CVSS Score
6.5
EPSS Score
0.003
Published
2026-05-20
CVE-2026-44924
InfoScale VIOM 9.1.3 allows XSS.
CVSS Score
5.4
EPSS Score
0.002
Published
2026-05-20
CVE-2026-44925
Cross-Site Request Forgery (CSRF) vulnerability in InfoScale v.9.1.3 Operations Manager (VIOM) allows an attacker to force the user with an active session into clicking a malicious HTML link, which triggers unintended modifications on VIOM web application without the user's knowledge.
CVSS Score
8.8
EPSS Score
0.002
Published
2026-05-20
CVE-2026-8486
Allocation of resources without limits or throttling vulnerability in Progress Software MOVEit Automation allows Flooding. This issue affects MOVEit Automation: before 2025.0.11, from 2025.1.0 before 2025.1.7.
CVSS Score
5.3
EPSS Score
0.004
Published
2026-05-20
CVE-2026-8487
Incorrect default permissions vulnerability in Progress Software MOVEit Automation allows Retrieve Embedded Sensitive Data. This issue affects MOVEit Automation: before 2025.0.11, from 2025.1.0 before 2025.1.7.
CVSS Score
6.5
EPSS Score
0.003
Published
2026-05-20
CVE-2026-8488
Allocation of resources without limits or throttling vulnerability in Progress Software MOVEit Automation allows Excessive Allocation. This issue affects MOVEit Automation: before 2025.0.11, from 2025.1.0 before 2025.1.7.
CVSS Score
4.3
EPSS Score
0.004
Published
2026-05-20
CVE-2025-32750
Dell PowerFlex Manager, version(s) <=4.6.2, contain(s) an Exposure of Information Through Directory Listing vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information exposure.
CVSS Score
7.5
EPSS Score
0.004
Published
2026-05-20
CVE-2026-8485
Uncontrolled Memory Allocation vulnerability in Progress Software MOVEit Automation allows Excessive Allocation. This issue affects MOVEit Automation: before 2025.0.11, from 2025.1.0 before 2025.1.7.
CVSS Score
5.9
EPSS Score
0.003
Published
2026-05-20
CVE-2026-22554
MediaArea MediaInfoLib Channel Splitting heap-based buffer overflow vulnerability
CVSS Score
7.8
EPSS Score
0.002
Published
2026-05-20


Products
Pricing
Contact Us

Shodan ® - All rights reserved