CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

RedhatCVE•added 2025/02/04 11:39 p.m.•10 views

CVE-2024-22130

Print preview option in SAP CRM WebClient UI - versions S4FND 102, S4FND 103, S4FND 104, S4FND 105, S4FND 106, S4FND 107, S4FND 108, WEBCUIF 700, WEBCUIF 701, WEBCUIF 730, WEBCUIF 731, WEBCUIF 746, WEBCUIF 747, WEBCUIF 748, WEBCUIF 800, WEBCUIF 801, does not sufficiently encode user-controlled...

7.6CVSS6.3AI score0.0038EPSS

Exploits0References1

NVD•added 2025/01/08 4:15 p.m.•11 views

CVE-2025-22130

Soft Serve is a self-hostable Git server for the command line. Prior to 0.8.2 , a path traversal attack allows existing non-admin users to access and take over other user's repositories. A malicious user then can modify, delete, and arbitrarily repositories as if they were an admin user without...

8.8CVSS0.00567EPSS

Exploits0References3

Circl•added 2025/01/08 3:46 p.m.•6 views

CVE-2025-22130

creationtimestamp| type| source ---|---|--- 2025-01-08 15:46:09+00:00| seen| https://infosec.exchange/users/cve/statuses/113793510200311392 2025-01-08 16:16:18+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfakrb4vc52i 2025-01-08 16:43:05+00:00| seen|...

8.8CVSS4.7AI score0.00567EPSS

Exploits0References4

CVE•added 2025/01/08 3:43 p.m.•61 views

CVE-2025-22130

CVE-2025-22130 affects the Soft Serve Git server. Prior to version 0.8.2, a path traversal vulnerability lets existing non-admin users access and take over other users’ repositories, enabling modification, deletion, and arbitrary admin-like actions on repositories without explicit permissions. Th...

8.8CVSS6.5AI score0.00567EPSS

Exploits0References3Affected Software1

Circl•added 2024/02/13 4:31 a.m.•1 views

CVE-2024-22130

creationtimestamp| type| source ---|---|--- 2024-02-13 04:31:45+00:00| seen| https://t.me/ctinow/183592...

7.6CVSS7.4AI score0.0038EPSS

Exploits0References1

NVD•added 2024/02/13 3:15 a.m.•18 views

CVE-2024-22130

7.6CVSS7AI score0.0038EPSS

Exploits0References2

CVE•added 2024/02/13 2:29 a.m.•47 views

CVE-2024-22130

The CVE-2024-22130 entry applies to SAP CRM WebClient UI, affecting SAP CRM WebClient UI versions S4FND 102–108 and WEBCUIF 700–801. The root cause is insufficient encoding of user-controlled inputs in the Print preview option, leading to a Cross‑Site Scripting (XSS) vulnerability. An attacker wi...

7.6CVSS6.9AI score0.0038EPSS

Exploits0References2Affected Software1

CVE•added 2023/10/17 9:3 p.m.•45 views

CVE-2023-22130

CVE-2023-22130 affects Oracle Sun ZFS Storage Appliance (Core) with affected version 8.8.60. The issue allows an unauthenticated, network-accessible attacker over HTTP to cause a hang or frequent crashes (complete DoS) on the Sun ZFS Storage Appliance. CVSS 3.1 base score 5.9 (A: High). Publicly ...

5.9CVSS5.4AI score0.00077EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/10/17 9:3 p.m.•9 views

CVE-2023-22130

...

5.9CVSS6.9AI score0.00077EPSS

Exploits0References1

Vulnrichment•added 2023/10/17 9:3 p.m.•10 views

CVE-2023-22130

...

5.9CVSS5.8AI score0.00077EPSS

Exploits0References1

CVE•added 2021/06/03 10:27 a.m.•46 views

CVE-2021-22130

FortiProxy physical appliance CLI is affected by a stack-based buffer overflow when issuing diagnose sys cpuset with a large cpuset mask. Affected versions include FortiProxy CLI 2.0.0–2.0.1 and 1.2.0–1.2.9, 1.1.0–1.1.6, and 1.0.0–1.0.7. The vulnerability enables an authenticated, remote attacker...

6.7CVSS5.5AI score0.00603EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by