CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

42 matches found

RedhatCVE•added 2026/03/26 3:2 p.m.•3 views

CVE-2026-32933

AutoMapper is a convention-based object-object mapper in .NET. Versions prior to 15.1.1 and 16.1.1 are vulnerable to a Denial of Service DoS attack. When mapping deeply nested object graphs, the library uses recursive method calls without enforcing a default maximum depth limit. This allows an...

7.5CVSS5.8AI score0.00027EPSS

Exploits1References1

NVD•added 2026/03/20 3:16 a.m.•0 views

CVE-2026-32933

7.5CVSS0.00027EPSS

Exploits1References4

ATTACKERKB•added 2026/03/20 2:38 a.m.•2 views

CVE-2026-32933

7.5CVSS5.8AI score0.00027EPSS

Exploits1References5Affected Software1

Cvelist•added 2026/03/20 2:38 a.m.•20 views

CVE-2026-32933 AutoMapper Vulnerable to Denial of Service (DoS) via Uncontrolled Recursion

7.5CVSS0.00027EPSS

Exploits1References4

EUVD•added 2026/03/20 2:38 a.m.•1 views

EUVD-2026-13505

7.5CVSS5.8AI score0.00027EPSS

Exploits1References4

OSV•added 2026/03/20 2:38 a.m.•1 views

CVE-2026-32933 AutoMapper Vulnerable to Denial of Service (DoS) via Uncontrolled Recursion

7.5CVSS5.9AI score0.00027EPSS

Exploits1References6

Snyk•added 2026/03/13 8:57 p.m.•2 views

Uncontrolled Recursion

Overview Affected versions of this package are vulnerable to Uncontrolled Recursion in the core mapping engine when handling deeply nested object graphs. An attacker can cause the application to crash. Remediation Upgrade AutoMapper to version 15.1.3, 16.1.1 or higher. References - GitHub Advisor...

8.7CVSS5.8AI score0.00027EPSS

Exploits1References2

vulnersOsv•added 2024/11/25 7:39 p.m.•7 views

org.keycloak:keycloak-guides (>=16.0.0 <=16.1.1), org.keycloak:keycloak-guides-maven-plugin (>=16.0.0 <=16.1.1) +3 more potentially affected by CVE-2024-9666 via org.keycloak:keycloak-quarkus-server (>=16.0.0 <=16.1.1)

org.keycloak:keycloak-quarkus-server MAVEN version =16.0.0, =16.0.0, =16.0.0, =16.0.0, =16.0.0, =16.0.0, =16.1.1 Source cves: CVE-2024-9666 Source advisory: OSV:GHSA-JGWC-JH89-RPGQ...

4.7CVSS5.8AI score0.00014EPSS

Exploits0

OSV•added 2024/03/06 11:8 a.m.•29 views

BIT-GITLAB-2023-2200 Improper Encoding or Escaping of Output in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions starting from 7.14 before 15.11.10, all versions starting from 16.0 before 16.0.6, all versions starting from 16.1 before 16.1.1, which allows an attacker to inject HTML in an email address field...

5.4CVSS4.6AI score0.01004EPSS

Exploits0References3

OSSF Malicious Packages•added 2024/01/14 6:59 p.m.•3 views

Malicious code in wdpr-node-http-error-handler (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 4afec8bd883f6042f7047f6b0d29cd37d57ef2e6f179a717a0ee7bbf44a16fe8 The OpenSSF Package Analysis project identified 'wdpr-node-http-error-handler' @ 16.1.1 npm as malicious. It is considered malicious because: -...

6.9AI score

Exploits0

Prion•added 2023/07/21 4:15 p.m.•20 views

Information disclosure

A sensitive information leak issue has been discovered in GitLab EE affecting all versions starting from 16.0 before 16.0.6, all versions starting from 16.1 before 16.1.1, which allows access to titles of private issue and MR...

5CVSS5.1AI score0.00393EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2023/07/21 12:0 a.m.•2 views

PT-2023-25026 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: GitLab EE versions 12.8 through 15.11.10 GitLab EE versions 16.0 through 16.0.6 GitLab EE versions 16.1 through 16.1.1 Description: An issue has been discovered in GitLab EE, allowing an attacker to change the name or path of a public top-lev...

8CVSS6.5AI score0.00114EPSS

Exploits0References9

NVD•added 2023/07/13 3:15 a.m.•18 views

CVE-2023-2620

An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.1 prior to 15.11.10, all versions from 16.0 prior to 16.0.6, all versions from 16.1 prior to 16.1.1. A maintainer could modify a webhook URL to leak masked webhook secrets by manipulating other masked portions...

5.5CVSS0.00368EPSS

Exploits0References2

NVD•added 2023/07/13 3:15 a.m.•17 views

CVE-2023-2200

5.4CVSS0.01004EPSS

Exploits0References2

Prion•added 2023/07/13 3:15 a.m.•24 views

Design/Logic Flaw

An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.3 before 15.11.10, all versions starting from 16.0 before 16.0.6, all versions starting from 16.1 before 16.1.1. A Regular Expression Denial of Service was possible via sending crafted payloads to the...

5CVSS7.2AI score0.00585EPSS

Exploits0References2Affected Software1

UbuntuCve•added 2023/07/13 3:15 a.m.•90 views

CVE-2023-2620

5.5CVSS5.8AI score0.00368EPSS

Exploits0References3

OSV•added 2023/07/13 3:15 a.m.•0 views

UBUNTU-CVE-2023-3424

7.5CVSS5.7AI score0.00585EPSS

Exploits0References4

Prion•added 2023/07/13 3:15 a.m.•21 views

Design/Logic Flaw

An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.7 before 15.11.10, all versions starting from 16.0 before 16.0.6, all versions starting from 16.1 before 16.1.1. This allowed a developer to remove the CODEOWNERS rules and merge to a protected branch...

4CVSS4.3AI score0.00153EPSS

Exploits0References2Affected Software1

OSV•added 2023/07/13 2:8 a.m.•15 views

CVE-2023-2576 Incorrect Authorization in GitLab

4.3CVSS4.6AI score0.00153EPSS

Exploits0References5