📦

server

Vendor: prorat

Actively Exploited 0 CISA KEV List

PoC / Exploits 9 Code Available

Total RCEs 16 Remote Access

Total CVEs 1 Total Indexed

Avg. EPSS 5.25% Exploit Prob.

Latest CVE CVE-2026-9156 May 27

Security Vulnerability Index

Page 1 / 1

6.5 CVSS

CVE-2026-9156

Tanium addressed a denial of service vulnerability in Tanium Server.

EPSS: 0.03%

Severity: MEDIUM

May 27, 2026

8.6 CVSS

CVE-2026-43640

Bitwarden Server prior to v2026.4.1 does not require master-password re-authentication when retrieving or rotating an organization's SCIM API key, allowing an authenticated user with SCIM management privileges to obtain the key using only a valid session.

EPSS: 0.13%

Severity: HIGH

May 11, 2026

8.9 CVSS

CVE-2026-43639

Bitwarden Server prior to v2026.4.0 contains a missing authorization vulnerability that allows a provider service user to add an arbitrary organization to their provider via `POST /providers/{providerId}/clients/existing`, resulting in takeover of the target organization; self-hosted installations are unaffected as this endpoint is restricted to Cloud via SelfHosted(NotSelfHostedOnly = true).

EPSS: 0.04%

Severity: HIGH

May 11, 2026

5.3 CVSS

CVE-2026-43638

Bitwarden Server prior to v2026.4.1 contains a missing authorization vulnerability that allows any authenticated user to write ciphers into an arbitrary organization via `POST /ciphers/import-organization` by submitting an empty `collections` array, which causes the server-side permission check to be skipped.

EPSS: 0.03%

Severity: MEDIUM

May 11, 2026

0.0 CVSS

CVE-2024-39847

EPSS: 0.00%

Severity:

Jan 01, 0001

Displaying 5 of 1 Total Entries

Total 1 Sections