fkie-cad
diff --git a/‎CVE-2025/CVE-2025-141xx/CVE-2025-14104.json‎
Lines changed: 5 additions & 1 deletion b/‎CVE-2025/CVE-2025-141xx/CVE-2025-14104.json‎
Lines changed: 5 additions & 1 deletion
diff --git a/‎CVE-2025/CVE-2025-149xx/CVE-2025-14963.json‎
Lines changed: 3 additions & 3 deletions b/‎CVE-2025/CVE-2025-149xx/CVE-2025-14963.json‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎CVE-2026/CVE-2026-16xx/CVE-2026-1692.json‎
Lines changed: 78 additions & 0 deletions b/‎CVE-2026/CVE-2026-16xx/CVE-2026-1692.json‎
Lines changed: 78 additions & 0 deletions
diff --git a/‎CVE-2026/CVE-2026-16xx/CVE-2026-1693.json‎
Lines changed: 82 additions & 0 deletions b/‎CVE-2026/CVE-2026-16xx/CVE-2026-1693.json‎
Lines changed: 82 additions & 0 deletions
diff --git a/‎CVE-2026/CVE-2026-16xx/CVE-2026-1694.json‎
Lines changed: 78 additions & 0 deletions b/‎CVE-2026/CVE-2026-16xx/CVE-2026-1694.json‎
Lines changed: 78 additions & 0 deletions
diff --git a/‎CVE-2026/CVE-2026-16xx/CVE-2026-1695.json‎
Lines changed: 78 additions & 0 deletions b/‎CVE-2026/CVE-2026-16xx/CVE-2026-1695.json‎
Lines changed: 78 additions & 0 deletions
@@ -2,7 +2,7 @@
   "id": "CVE-2025-14104",
   "sourceIdentifier": "secalert@redhat.com",
   "published": "2025-12-05T17:16:03.117",
-  "lastModified": "2026-02-17T10:15:57.080",
+  "lastModified": "2026-02-26T08:16:15.540",
   "vulnStatus": "Awaiting Analysis",
   "cveTags": [],
   "descriptions": [
@@ -76,6 +76,10 @@
       "url": "https://access.redhat.com/errata/RHSA-2026:2800",
       "source": "secalert@redhat.com"
     },
+    {
+      "url": "https://access.redhat.com/errata/RHSA-2026:3406",
+      "source": "secalert@redhat.com"
+    },
     {
       "url": "https://access.redhat.com/security/cve/CVE-2025-14104",
       "source": "secalert@redhat.com"
 
@@ -2,13 +2,13 @@
   "id": "CVE-2025-14963",
   "sourceIdentifier": "trellixpsirt@trellix.com",
   "published": "2026-02-24T18:29:32.613",
-  "lastModified": "2026-02-24T21:52:01.367",
+  "lastModified": "2026-02-26T08:16:15.703",
   "vulnStatus": "Awaiting Analysis",
   "cveTags": [],
   "descriptions": [
     {
       "lang": "en",
-      "value": "A vulnerability identified in the Trellix HX Agent driver file  fekern.sys allowed a threat actor with local user access the ability to gain elevated system privileges.  Utilization of a Bring Your Own Vulnerable Driver (BYOVD) was leveraged to gain access to the critical Windows process memory lsass.exe (Local Security Authority Subsystem Service).  The fekern.sys; a driver file associated with Trellix HX Agent (used in all existing HX Agent versions).  \u00a0 The vulnerable driver installed in a product or a system running fully functional HX Agent is, itself, not exploitable as the product\u2019s tamper protection restricts the ability to communicate with the driver to only the agent\u2019s processes."
+      "value": "A vulnerability identified in the HX Agent driver file fekern.sys\u00a0allowed a threat actor with local user access the ability to gain elevated system privileges. Utilization of a Bring Your Own Vulnerable Driver (BYOVD) was leveraged to gain access to the critical Windows process memory lsass.exe\u00a0(Local Security Authority Subsystem Service). The\u00a0fekern.sys\u00a0is a driver file associated with the HX Agent (used in all existing HX Agent versions). The vulnerable driver installed in a product or a system running a fully functional HX Agent is, itself, not exploitable\u00a0as the product\u2019s tamper protection restricts the ability to communicate with the driver to only the Agent\u2019s processes."
     }
   ],
   "metrics": {
@@ -60,7 +60,7 @@
   "weaknesses": [
     {
       "source": "trellixpsirt@trellix.com",
-      "type": "Primary",
+      "type": "Secondary",
       "description": [
         {
           "lang": "en",
 
@@ -0,0 +1,78 @@
+{
+  "id": "CVE-2026-1692",
+  "sourceIdentifier": "87c8e6ad-f0f5-4ca8-89e2-89f26d6ed932",
+  "published": "2026-02-26T08:16:18.160",
+  "lastModified": "2026-02-26T08:16:18.160",
+  "vulnStatus": "Received",
+  "cveTags": [],
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "A missing origin validation in WebSockets vulnerability affects the GraphicalData web services used by the WebVue, WebScheduler, TouchVue and SnapVue features of PcVue in version 12.0.0 through 16.3.3 included. It might allow a remote attacker to lure a successfully authenticated user to a malicious website.\n\nThis vulnerability only affects the following two endpoints: GraphicalData/js/signalR/connect and GraphicalData/js/signalR/reconnect."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV40": [
+      {
+        "source": "87c8e6ad-f0f5-4ca8-89e2-89f26d6ed932",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "4.0",
+          "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:U/V:X/RE:M/U:Clear",
+          "baseScore": 5.3,
+          "baseSeverity": "MEDIUM",
+          "attackVector": "NETWORK",
+          "attackComplexity": "LOW",
+          "attackRequirements": "NONE",
+          "privilegesRequired": "NONE",
+          "userInteraction": "PASSIVE",
+          "vulnConfidentialityImpact": "LOW",
+          "vulnIntegrityImpact": "LOW",
+          "vulnAvailabilityImpact": "NONE",
+          "subConfidentialityImpact": "LOW",
+          "subIntegrityImpact": "LOW",
+          "subAvailabilityImpact": "NONE",
+          "exploitMaturity": "NOT_DEFINED",
+          "confidentialityRequirement": "NOT_DEFINED",
+          "integrityRequirement": "NOT_DEFINED",
+          "availabilityRequirement": "NOT_DEFINED",
+          "modifiedAttackVector": "NOT_DEFINED",
+          "modifiedAttackComplexity": "NOT_DEFINED",
+          "modifiedAttackRequirements": "NOT_DEFINED",
+          "modifiedPrivilegesRequired": "NOT_DEFINED",
+          "modifiedUserInteraction": "NOT_DEFINED",
+          "modifiedVulnConfidentialityImpact": "NOT_DEFINED",
+          "modifiedVulnIntegrityImpact": "NOT_DEFINED",
+          "modifiedVulnAvailabilityImpact": "NOT_DEFINED",
+          "modifiedSubConfidentialityImpact": "NOT_DEFINED",
+          "modifiedSubIntegrityImpact": "NOT_DEFINED",
+          "modifiedSubAvailabilityImpact": "NOT_DEFINED",
+          "Safety": "NOT_DEFINED",
+          "Automatable": "YES",
+          "Recovery": "USER",
+          "valueDensity": "NOT_DEFINED",
+          "vulnerabilityResponseEffort": "MODERATE",
+          "providerUrgency": "CLEAR"
+        }
+      }
+    ]
+  },
+  "weaknesses": [
+    {
+      "source": "87c8e6ad-f0f5-4ca8-89e2-89f26d6ed932",
+      "type": "Secondary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-1385"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://www.pcvue.com/security/#SB2026-2",
+      "source": "87c8e6ad-f0f5-4ca8-89e2-89f26d6ed932"
+    }
+  ]
+}
@@ -0,0 +1,82 @@
+{
+  "id": "CVE-2026-1693",
+  "sourceIdentifier": "87c8e6ad-f0f5-4ca8-89e2-89f26d6ed932",
+  "published": "2026-02-26T08:16:18.490",
+  "lastModified": "2026-02-26T08:16:18.490",
+  "vulnStatus": "Received",
+  "cveTags": [],
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "The OAuth grant type Resource Owner Password Credentials (ROPC) flow is still used by the werbservices used by the WebVue, WebScheduler, TouchVue and Snapvue features of PcVue in version 12.0.0 through 16.3.3 included despite being deprecated. It might allow a remote attacker to steal user credentials."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV40": [
+      {
+        "source": "87c8e6ad-f0f5-4ca8-89e2-89f26d6ed932",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "4.0",
+          "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:L/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:U/V:X/RE:M/U:Clear",
+          "baseScore": 5.3,
+          "baseSeverity": "MEDIUM",
+          "attackVector": "NETWORK",
+          "attackComplexity": "LOW",
+          "attackRequirements": "NONE",
+          "privilegesRequired": "NONE",
+          "userInteraction": "PASSIVE",
+          "vulnConfidentialityImpact": "LOW",
+          "vulnIntegrityImpact": "NONE",
+          "vulnAvailabilityImpact": "NONE",
+          "subConfidentialityImpact": "LOW",
+          "subIntegrityImpact": "NONE",
+          "subAvailabilityImpact": "NONE",
+          "exploitMaturity": "NOT_DEFINED",
+          "confidentialityRequirement": "NOT_DEFINED",
+          "integrityRequirement": "NOT_DEFINED",
+          "availabilityRequirement": "NOT_DEFINED",
+          "modifiedAttackVector": "NOT_DEFINED",
+          "modifiedAttackComplexity": "NOT_DEFINED",
+          "modifiedAttackRequirements": "NOT_DEFINED",
+          "modifiedPrivilegesRequired": "NOT_DEFINED",
+          "modifiedUserInteraction": "NOT_DEFINED",
+          "modifiedVulnConfidentialityImpact": "NOT_DEFINED",
+          "modifiedVulnIntegrityImpact": "NOT_DEFINED",
+          "modifiedVulnAvailabilityImpact": "NOT_DEFINED",
+          "modifiedSubConfidentialityImpact": "NOT_DEFINED",
+          "modifiedSubIntegrityImpact": "NOT_DEFINED",
+          "modifiedSubAvailabilityImpact": "NOT_DEFINED",
+          "Safety": "NOT_DEFINED",
+          "Automatable": "YES",
+          "Recovery": "USER",
+          "valueDensity": "NOT_DEFINED",
+          "vulnerabilityResponseEffort": "MODERATE",
+          "providerUrgency": "CLEAR"
+        }
+      }
+    ]
+  },
+  "weaknesses": [
+    {
+      "source": "87c8e6ad-f0f5-4ca8-89e2-89f26d6ed932",
+      "type": "Secondary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-477"
+        },
+        {
+          "lang": "en",
+          "value": "CWE-1390"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://www.pcvue.com/security/#SB2026-2",
+      "source": "87c8e6ad-f0f5-4ca8-89e2-89f26d6ed932"
+    }
+  ]
+}
@@ -0,0 +1,78 @@
+{
+  "id": "CVE-2026-1694",
+  "sourceIdentifier": "87c8e6ad-f0f5-4ca8-89e2-89f26d6ed932",
+  "published": "2026-02-26T08:16:18.763",
+  "lastModified": "2026-02-26T08:16:18.763",
+  "vulnStatus": "Received",
+  "cveTags": [],
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "HTTP headers are added by the default configuration of IIS and ASP.net, and are not removed at the deployment phase of the webservices used by the WebVue, WebScheduler, TouchVue and SnapVue features of PcVue in version 12.0.0 through 16.3.3 included. It unnecessarily exposes sensitive information about the server configuration."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV40": [
+      {
+        "source": "87c8e6ad-f0f5-4ca8-89e2-89f26d6ed932",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "4.0",
+          "vectorString": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:U/V:X/RE:M/U:Clear",
+          "baseScore": 2.3,
+          "baseSeverity": "LOW",
+          "attackVector": "NETWORK",
+          "attackComplexity": "HIGH",
+          "attackRequirements": "NONE",
+          "privilegesRequired": "NONE",
+          "userInteraction": "PASSIVE",
+          "vulnConfidentialityImpact": "NONE",
+          "vulnIntegrityImpact": "NONE",
+          "vulnAvailabilityImpact": "NONE",
+          "subConfidentialityImpact": "LOW",
+          "subIntegrityImpact": "NONE",
+          "subAvailabilityImpact": "NONE",
+          "exploitMaturity": "NOT_DEFINED",
+          "confidentialityRequirement": "NOT_DEFINED",
+          "integrityRequirement": "NOT_DEFINED",
+          "availabilityRequirement": "NOT_DEFINED",
+          "modifiedAttackVector": "NOT_DEFINED",
+          "modifiedAttackComplexity": "NOT_DEFINED",
+          "modifiedAttackRequirements": "NOT_DEFINED",
+          "modifiedPrivilegesRequired": "NOT_DEFINED",
+          "modifiedUserInteraction": "NOT_DEFINED",
+          "modifiedVulnConfidentialityImpact": "NOT_DEFINED",
+          "modifiedVulnIntegrityImpact": "NOT_DEFINED",
+          "modifiedVulnAvailabilityImpact": "NOT_DEFINED",
+          "modifiedSubConfidentialityImpact": "NOT_DEFINED",
+          "modifiedSubIntegrityImpact": "NOT_DEFINED",
+          "modifiedSubAvailabilityImpact": "NOT_DEFINED",
+          "Safety": "NOT_DEFINED",
+          "Automatable": "YES",
+          "Recovery": "USER",
+          "valueDensity": "NOT_DEFINED",
+          "vulnerabilityResponseEffort": "MODERATE",
+          "providerUrgency": "CLEAR"
+        }
+      }
+    ]
+  },
+  "weaknesses": [
+    {
+      "source": "87c8e6ad-f0f5-4ca8-89e2-89f26d6ed932",
+      "type": "Secondary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-201"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://www.pcvue.com/security/#SB2026-2",
+      "source": "87c8e6ad-f0f5-4ca8-89e2-89f26d6ed932"
+    }
+  ]
+}
@@ -0,0 +1,78 @@
+{
+  "id": "CVE-2026-1695",
+  "sourceIdentifier": "87c8e6ad-f0f5-4ca8-89e2-89f26d6ed932",
+  "published": "2026-02-26T08:16:19.063",
+  "lastModified": "2026-02-26T08:16:19.063",
+  "vulnStatus": "Received",
+  "cveTags": [],
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "An XSS vulnerability affects the OAuth web services used by the WebVue, WebScheduler, TouchVue and SnapVue features of PcVue in version 12.0.0 through 16.3.3 included. It might allow a remote attacker to trick a legitimate user into loading content from another site upon unsuccessful user authentication on an unknown application (unknown client_id).\n\nThis vulnerability only affects the error page of the OAuth server."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV40": [
+      {
+        "source": "87c8e6ad-f0f5-4ca8-89e2-89f26d6ed932",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "4.0",
+          "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:U/V:X/RE:M/U:Clear",
+          "baseScore": 5.3,
+          "baseSeverity": "MEDIUM",
+          "attackVector": "NETWORK",
+          "attackComplexity": "LOW",
+          "attackRequirements": "NONE",
+          "privilegesRequired": "NONE",
+          "userInteraction": "PASSIVE",
+          "vulnConfidentialityImpact": "LOW",
+          "vulnIntegrityImpact": "LOW",
+          "vulnAvailabilityImpact": "LOW",
+          "subConfidentialityImpact": "LOW",
+          "subIntegrityImpact": "LOW",
+          "subAvailabilityImpact": "NONE",
+          "exploitMaturity": "NOT_DEFINED",
+          "confidentialityRequirement": "NOT_DEFINED",
+          "integrityRequirement": "NOT_DEFINED",
+          "availabilityRequirement": "NOT_DEFINED",
+          "modifiedAttackVector": "NOT_DEFINED",
+          "modifiedAttackComplexity": "NOT_DEFINED",
+          "modifiedAttackRequirements": "NOT_DEFINED",
+          "modifiedPrivilegesRequired": "NOT_DEFINED",
+          "modifiedUserInteraction": "NOT_DEFINED",
+          "modifiedVulnConfidentialityImpact": "NOT_DEFINED",
+          "modifiedVulnIntegrityImpact": "NOT_DEFINED",
+          "modifiedVulnAvailabilityImpact": "NOT_DEFINED",
+          "modifiedSubConfidentialityImpact": "NOT_DEFINED",
+          "modifiedSubIntegrityImpact": "NOT_DEFINED",
+          "modifiedSubAvailabilityImpact": "NOT_DEFINED",
+          "Safety": "NOT_DEFINED",
+          "Automatable": "YES",
+          "Recovery": "USER",
+          "valueDensity": "NOT_DEFINED",
+          "vulnerabilityResponseEffort": "MODERATE",
+          "providerUrgency": "CLEAR"
+        }
+      }
+    ]
+  },
+  "weaknesses": [
+    {
+      "source": "87c8e6ad-f0f5-4ca8-89e2-89f26d6ed932",
+      "type": "Secondary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-79"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://www.pcvue.com/security/#SB2026-2",
+      "source": "87c8e6ad-f0f5-4ca8-89e2-89f26d6ed932"
+    }
+  ]
+}
Original file line number	Diff line number	Diff line change
`@@ -2,13 +2,13 @@`
`2`	`2`	`"id": "CVE-2025-14963",`
`3`	`3`	`"sourceIdentifier": "trellixpsirt@trellix.com",`
`4`	`4`	`"published": "2026-02-24T18:29:32.613",`
`5`		`- "lastModified": "2026-02-24T21:52:01.367",`
	`5`	`+ "lastModified": "2026-02-26T08:16:15.703",`
`6`	`6`	`"vulnStatus": "Awaiting Analysis",`
`7`	`7`	`"cveTags": [],`
`8`	`8`	`"descriptions": [`
`9`	`9`	`{`
`10`	`10`	`"lang": "en",`
`11`		- "value": "A vulnerability identified in the Trellix HX Agent driver file fekern.sys allowed a threat actor with local user access the ability to gain elevated system privileges. Utilization of a Bring Your Own Vulnerable Driver (BYOVD) was leveraged to gain access to the critical Windows process memory lsass.exe (Local Security Authority Subsystem Service). The fekern.sys; a driver file associated with Trellix HX Agent (used in all existing HX Agent versions). \u00a0 The vulnerable driver installed in a product or a system running fully functional HX Agent is, itself, not exploitable as the product\u2019s tamper protection restricts the ability to communicate with the driver to only the agent\u2019s processes."
	`11`	+ "value": "A vulnerability identified in the HX Agent driver file fekern.sys\u00a0allowed a threat actor with local user access the ability to gain elevated system privileges. Utilization of a Bring Your Own Vulnerable Driver (BYOVD) was leveraged to gain access to the critical Windows process memory lsass.exe\u00a0(Local Security Authority Subsystem Service). The\u00a0fekern.sys\u00a0is a driver file associated with the HX Agent (used in all existing HX Agent versions). The vulnerable driver installed in a product or a system running a fully functional HX Agent is, itself, not exploitable\u00a0as the product\u2019s tamper protection restricts the ability to communicate with the driver to only the Agent\u2019s processes."
`12`	`12`	`}`
`13`	`13`	`],`
`14`	`14`	`"metrics": {`
`@@ -60,7 +60,7 @@`
`60`	`60`	`"weaknesses": [`
`61`	`61`	`{`
`62`	`62`	`"source": "trellixpsirt@trellix.com",`
`63`		`- "type": "Primary",`
	`63`	`+ "type": "Secondary",`
`64`	`64`	`"description": [`
`65`	`65`	`{`
`66`	`66`	`"lang": "en",`