Vulnerability-Lookup

Recent vulnerabilities from

Select from 70 available sources using the dropdown above.

ID	Description	Published	Updated
nn-2026:7-01	HTML injection in Smart Polling in Guardian/CMC before 26.1.0	2026-05-19T11:00:00.000Z	2026-05-19T11:00:00.000Z
nn-2026:6-01	HTML injection in Schedule Restore Archive in Guardian/CMC before 26.1.0	2026-05-19T11:00:00.000Z	2026-05-19T11:00:00.000Z
nn-2026:5-01	HTML injection in Users in Guardian/CMC before 26.1.0	2026-05-19T11:00:00.000Z	2026-05-19T11:00:00.000Z
nn-2026:4-01	HTML injection in Credentials Manager in Guardian/CMC before 26.1.0	2026-05-19T11:00:00.000Z	2026-05-19T11:00:00.000Z
nn-2026:3-01	Angular template injection in Reports in Guardian/CMC before 26.1.0	2026-05-19T11:00:00.000Z	2026-05-19T11:00:00.000Z
nn-2026:2-01	Stored Cross-Site Scripting (XSS) in Assets and Nodes in Guardian/CMC before 26.0.0	2026-04-15T11:00:00.000Z	2026-04-15T11:00:00.000Z
nn-2026:1-01	Incorrect authorization for Threat Intelligence in Guardian/CMC before 26.0.0	2026-04-15T11:00:00.000Z	2026-04-15T11:00:00.000Z
nn-2025:18-01	Lack of TLS certificate validation when connecting Arc to a Guardian or CMC, in Arc before v2.2.0	2026-03-04T11:00:00.000Z	2026-03-04T11:00:00.000Z
nn-2025:17-01	HTML injection in Sensor Map in CMC before 25.6.0	2026-03-04T11:00:00.000Z	2026-03-04T11:00:00.000Z
nn-2025:16-01	HTML injection in Alerted Nodes Dashboard in Guardian/CMC before 25.6.0	2026-03-04T11:00:00.000Z	2026-03-04T11:00:00.000Z
nn-2025:15-01	Path traversal in Import Arc data archive functionality in Guardian/CMC before 25.5.0	2025-12-18T11:00:00.000Z	2025-12-18T11:00:00.000Z
nn-2025:14-01	HTML injection in Asset List in Guardian/CMC before 25.5.0	2025-12-18T11:00:00.000Z	2025-12-18T11:00:00.000Z
nn-2025:13-01	Stored Cross-Site Scripting (XSS) in Reports in Guardian/CMC before 25.5.0	2025-12-18T11:00:00.000Z	2025-12-18T11:00:00.000Z
nn-2025:12-01	HTML injection in in Time Machine functionality in Guardian/CMC before 25.5.0	2025-12-18T11:00:00.000Z	2025-12-18T11:00:00.000Z
nn-2025:11-01	Stored Cross-Site Scripting (XSS) in Dashboards in Guardian/CMC before 25.4.0	2025-11-25T11:00:00.000Z	2025-11-26T11:00:00.000Z
nn-2025:9-01	Path traversal in Time Machine functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:8-01	Authenticated SQL Injection on Alert functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:7-01	Authenticated SQL Injection on Alert functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:6-01	Authenticated SQL Injection on Smart Polling functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:5-01	Incorrect authorization for CLI in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:4-01	Client-side path traversal in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:10-01	Authenticated SQL Injection on CLI functionality in Guardian/CMC before 25.3.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:3-01	Incorrect authorization for traces request/download in CMC before 25.1.0	2025-08-26T11:00:00.000Z	2025-08-26T11:00:00.000Z
nn-2025:2-01	Privilege escalation in Guardian/CMC before 24.6.0	2025-06-10T11:00:00.000Z	2025-06-10T11:00:00.000Z
nn-2025:1-01	Authenticated RCE in update functionality in Guardian/CMC before 24.6.0	2025-06-10T11:00:00.000Z	2025-06-10T11:00:00.000Z
nn-2023_17-01	Information disclosure via audit records for OpenAPI requests in Guardian/CMC before 23.4.1	2024-04-10T11:00:00.000Z	2024-04-11T11:00:00.000Z
nn-2023:17-01	Information disclosure via audit records for OpenAPI requests in Guardian/CMC before 23.4.1	2024-04-10T11:00:00.000Z	2024-04-11T11:00:00.000Z
nn-2024_1-01	DoS on IDS parsing of malformed Radius packets in Guardian before 23.4.1	2024-04-10T11:00:00.000Z	2024-04-10T11:00:00.000Z
nn-2024:1-01	DoS on IDS parsing of malformed Radius packets in Guardian before 23.4.1	2024-04-10T11:00:00.000Z	2024-04-10T11:00:00.000Z
nn-2023_12-01	Check Point IoT integration: WebSocket returns assets data without authentication in Guardian/CMC before 23.3.0	2024-01-15T11:00:00.000Z	2024-01-16T11:00:00.000Z