CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

17 matches found

OSV•added yesterday•2 views

RHSA-2026:23329 Red Hat Security Advisory: kernel security update

Bulletin has no description...

7.8CVSS5.5AI score0.00072EPSS

Exploits4References40

OSV•added 2026/03/25 11:16 a.m.•2 views

DEBIAN-CVE-2026-23329

In the Linux kernel, the following vulnerability has been resolved: libie: don't unroll if fwlog isn't supported The libiefwlogdeinit function can be called during driver unload even when firmware logging was never properly initialized. This led to call trace: 148.576156 Oops: Oops: 0000 1 SMP...

5.5CVSS5.2AI score0.00017EPSS

Exploits0References1

UbuntuCve•added 2026/03/25 11:16 a.m.•1 views

CVE-2026-23329

5.5CVSS5.7AI score0.00017EPSS

Exploits0References5

CVE•added 2026/03/25 10:27 a.m.•5 views

CVE-2026-23329

CVE-2026-23329 affects the Linux kernel libie_fwlog_deinit in the ixgbe driver flow. The vulnerability arises when unloading the driver (even if firmware logging was never initialized), enabling a call path that can lead to a kernel oops and Denial of Service. Reproduced by unloading the ixgbe dr...

5.5CVSS5.6AI score0.00017EPSS

Exploits0References3Affected Software1

RedhatCVE•added 2026/01/09 10:54 a.m.•5 views

CVE-2022-23329

A vulnerability in $"freemarker.template.utility.Execute"?new of UJCMS Jspxcms v10.2.0 allows attackers to execute arbitrary commands via uploading malicious files...

9.8CVSS7.8AI score0.01439EPSS

Exploits1References1

vulnersOsv•added 2025/09/17 10:41 p.m.•2 views

antgrid-server (>=0.0.2 <=0.0.3), kani-tts (=0.0.1) +3 more potentially affected by CVE-2025-23329 via nvidia-pytriton (=0.7.0)

nvidia-pytriton PYPI version =0.7.0 is affected by a known vulnerability. The following packages have a transitive dependency on nvidia-pytriton and may be impacted: - antgrid-server =0.0.2, =0.1.0, =0.1.0rc1, =0.1.0, =0.4.0 Source cves: CVE-2025-23329 Source advisory:...

7.5CVSS5.8AI score0.00121EPSS

Exploits0

NVD•added 2025/09/17 10:15 p.m.•2 views

CVE-2025-23329

NVIDIA Triton Inference Server for Windows and Linux contains a vulnerability where an attacker could cause memory corruption by identifying and accessing the shared memory region used by the Python backend. A successful exploit of this vulnerability might lead to denial of service...

7.5CVSS0.00121EPSS

Exploits0References1

Cvelist•added 2024/01/19 7:49 p.m.•16 views

CVE-2024-23329 changedetection.io API endpoint is not secured with API token

changedetection.io is an open source tool designed to monitor websites for content changes. In affected versions the API endpoint /api/v1/watch//history can be accessed by any unauthorized user. As a result any unauthorized user can check one's watch history. However, because unauthorized party...

3.7CVSS4.3AI score0.00451EPSS

Exploits1References2

CVE•added 2024/01/19 7:49 p.m.•212 views

CVE-2024-23329

Product/issue: changedetection.io Vulnerability: The API endpoint /api/v1/watch//history can be accessed by an unauthorized user, exposing watch history paths. The underlying cause is missing access control on the WatchHistory resource. Impact (as stated): Unauthorized access to watch history wit...

3.7CVSS4AI score0.00451EPSS

Exploits1References2Affected Software1

Circl•added 2024/01/19 5:55 p.m.•0 views

CVE-2024-23329

creationtimestamp| type| source ---|---|--- 2024-01-19 17:55:57+00:00| published-proof-of-concept| https://github.com/dgtlmoon/changedetection.io/security/advisories/GHSA-hcvp-2cc7-jrwr 2024-01-19 21:31:55+00:00| seen| https://t.me/ctinow/170417 2024-01-26 23:16:38+00:00| seen|...

3.7CVSS5.7AI score0.00451EPSS

Exploits1References3

Circl•added 2022/02/05 12:31 a.m.•1 views

CVE-2022-23329

creationtimestamp| type| source ---|---|--- 2022-02-05 00:31:13+00:00| seen| https://t.me/cibsecurity/36885...

9.8CVSS8.7AI score0.01439EPSS

Exploits1References1

NVD•added 2022/02/04 10:15 p.m.•11 views

CVE-2022-23329

A vulnerability in $"freemarker.template.utility.Execute"?new of UJCMS Jspxcms v10.2.0 allows attackers to execute arbitrary commands via uploading malicious files...

9.8CVSS0.01439EPSS

Exploits1References1

CVE•added 2022/02/04 9:3 p.m.•143 views

CVE-2022-23329

The CVE-2022-23329 entry affects UJCMS Jspxcms v10.2.0, where a vulnerability in freemarker.template.utility.Execute?new() enables arbitrary command execution via uploading malicious files. Affected component: Jspxcms file upload handling leading to code execution. Root cause is the Freemarker Ex...

9.8CVSS9.6AI score0.01439EPSS

Exploits1References1Affected Software1

Cvelist•added 2022/02/04 9:3 p.m.•9 views

CVE-2022-23329

A vulnerability in $"freemarker.template.utility.Execute"?new of UJCMS Jspxcms v10.2.0 allows attackers to execute arbitrary commands via uploading malicious files...

9.9AI score0.01439EPSS

Exploits1References1

OSV•added 2021/01/31 4:15 p.m.•8 views

CVE-2021-23329

The package nested-object-assign before 1.0.4 are vulnerable to Prototype Pollution via the default function, as demonstrated by running the PoC below...

7.5CVSS6.7AI score

Exploits0References2

CVE•added 2021/01/31 3:25 p.m.•57 views

CVE-2021-23329

CVE-2021-23329 affects the npm package nested-object-assign, specifically versions prior to 1.0.4. The vulnerability is Prototype Pollution via the default function, allowing an attacker to inject properties into Object.prototype. Exploitation details are not provided in the provided documents, b...

7.5CVSS7.4AI score0.00332EPSS

Exploits1References2Affected Software1

Cvelist•added 2021/01/31 3:25 p.m.•12 views

CVE-2021-23329 Prototype Pollution

The package nested-object-assign before 1.0.4 are vulnerable to Prototype Pollution via the default function, as demonstrated by running the PoC below...

7.5CVSS7.7AI score0.00332EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by