CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-12460

Malicious code in bioql PyPI...

8.2CVSS8.2AI score0.00095EPSS

Exploits0References1

Prion•added 2023/02/02 9:15 a.m.•13 views

Security feature bypass

The protection bypass vulnerability in DLP for Windows 11.9.x is addressed in version 11.10.0. This allowed a local user to bypass DLP controls when uploading sensitive data from a mapped drive into a web email client. Loading from a local driver was correctly prevented. Versions prior to 11.9...

4.1CVSS7.8AI score0.00095EPSS

Exploits0References1Affected Software1

CNNVD•added 2023/02/02 12:0 a.m.•3 views

Trellix Data Loss Prevention 代码问题漏洞

Trellix Data Loss Prevention Trellix DLP is a data loss prevention solution from American FireEye Trellix. It provides a comprehensive scan of inbound and outbound network traffic on all ports, protocols, etc. A security vulnerability exists in the Trellix Data Loss Prevention 11.9.x series of...

8.2CVSS7.8AI score0.00095EPSS

Exploits0References2

CVE•added 2023/02/01 4:34 p.m.•36 views

CVE-2023-0400

Summary for CVE-2023-0400 (Trellix DLP) : A protection-bypass vulnerability was found in Trellix Data Loss Prevention 11.9.x for Windows, allowing a local user to bypass DLP controls when uploading sensitive data from a mapped drive into a web email client. Loading from a local driver was correct...

8.2CVSS7.8AI score0.00095EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/02/01 4:34 p.m.•14 views

CVE-2023-0400

5.9CVSS8.1AI score0.00095EPSS

Exploits0References1

Tenable Nessus•added 2021/11/09 12:0 a.m.•43 views

GitLab 11.9.x < 13.8.8 / 13.9.x < 13.9.6 / 13.10.x < 13.10.3 Remote Code Execution

An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.9 through 13.8.8 / 13.9.6 / 13.10.3. This is the result of improper validation of image files by a 3rd-party file parser Exif-Tool, resulting in a remote command execution. No source data...

10CVSS9.7AI score0.94467EPSS

Exploits30References3

NVD•added 2019/09/16 5:15 p.m.•12 views

CVE-2019-15723

An issue was discovered in GitLab Community and Enterprise Edition 11.9.x and 11.10.x before 11.10.1. Merge requests created by email could be used to bypass push rules in certain situations...

5.3CVSS4.9AI score0.00241EPSS

Exploits0References2

UbuntuCve•added 2019/09/16 5:15 p.m.•13 views

CVE-2019-15723

An issue was discovered in GitLab Community and Enterprise Edition 11.9.x and 11.10.x before 11.10.1. Merge requests created by email could be used to bypass push rules in certain situations...

5.3CVSS6.1AI score0.00241EPSS

Exploits0References2

Cvelist•added 2019/09/09 6:49 p.m.•18 views

CVE-2019-11547

An issue was discovered in GitLab Community and Enterprise Edition before 11.8.9, 11.9.x before 11.9.10, and 11.10.x before 11.10.2. It has Improper Encoding or Escaping of Output. The branch name on new merge request notification emails isn't escaped, which could potentially lead to XSS issues...

5.9AI score0.00159EPSS

Exploits1References2

CVE•added 2013/11/13 1:0 a.m.•168 views

CVE-2013-5330

CVE-2013-5330 is a memory corruption vulnerability in Adobe Flash Player and related Adobe AIR components, arising from an error in parsing specially crafted SWF files. Affected versions include Flash Player before 11.7.700.252 and 11.8.x and 11.9.x before 11.9.900.152 on Windows/macOS, and Linux...

10CVSS7.8AI score0.02947EPSS

Exploits1References5Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by