CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2026/04/18 12:41 a.m.•3 views

EUVD-2026-23626

SecureDrop Client is a desktop app for journalists to securely communicate with sources and handle submissions on the SecureDrop Workstation. In versions 0.17.4 and below, a compromised SecureDrop Server can achieve code execution on the Client's virtual machine sd-app by exploiting improper...

8.1CVSS6.1AI score0.00927EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2002-1102

Malware in sbrugna...

7.5CVSS6.3AI score0.02829EPSS

Exploits0References6

OSV•added 2024/06/15 12:0 a.m.•11 views

OPENSUSE-SU-2024:11960-1 aide-0.17.4-1.1 on GA media

These are all security issues fixed in the aide-0.17.4-1.1 package on the GA media of openSUSE Tumbleweed...

7.8CVSS8AI score0.00493EPSS

Exploits1References1

Positive Technologies•added 2023/05/26 12:0 a.m.•2 views

PT-2023-24206 · Pomerium · Pomerium

Name of the Vulnerable Software and Affected Versions: Pomerium versions prior to 0.17.4 Pomerium versions prior to 0.18.1 Pomerium versions prior to 0.19.2 Pomerium versions prior to 0.20.1 Pomerium versions prior to 0.21.4 Pomerium versions prior to 0.22.2 Description: Pomerium is an identity a...

10CVSS7.2AI score0.00921EPSS

Exploits0References14

OpenVAS•added 2022/07/14 12:0 a.m.•13 views

Huawei EulerOS: Security Advisory for aide (EulerOS-SA-2022-2046)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.9AI score0.00493EPSS

Exploits1References2

Tenable Nessus•added 2022/01/25 12:0 a.m.•33 views

Debian DLA-2894-1 : aide - LTS security update

The remote Debian 9 host has packages installed that are affected by a vulnerability as referenced in the dla-2894 advisory. David Bouman discovered a heap-based buffer overflow vulnerability in the base64 functions of aide, an advanced intrusion detection system, which can be triggered via large...

7.8CVSS7.8AI score0.00493EPSS

Exploits1References5

Prion•added 2022/01/20 6:15 p.m.•23 views

Heap overflow

AIDE before 0.17.4 allows local users to obtain root privileges via crafted file metadata such as XFS extended attributes or tmpfs ACLs, because of a heap-based buffer overflow...

7.2CVSS7.4AI score0.00493EPSS

Exploits1References6Affected Software7

UbuntuCve•added 2022/01/20 2:0 p.m.•48 views

CVE-2021-45417

AIDE before 0.17.4 allows local users to obtain root privileges via crafted file metadata such as XFS extended attributes or tmpfs ACLs, because of a heap-based buffer overflow...

7.8CVSS7.4AI score0.00493EPSS

Exploits1References5

CVE•added 2022/01/20 12:0 a.m.•446 views

CVE-2021-45417

AIDE (Advanced Intrusion Detection Environment) is affected by CVE-2021-45417: before version 0.17.4, a heap-based buffer overflow in the base64 output path can be triggered by crafted file metadata (e.g., XFS extended attributes, tmpfs ACLs), allowing local users to escalate to root. The vulnera...

7.8CVSS7.5AI score0.00493EPSS

Exploits1References6Affected Software1