CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

RedhatCVE•added 2026/01/09 8:53 a.m.•5 views

CVE-2021-27430

GE UR bootloader binary Version 7.00, 7.01 and 7.02 included unused hardcoded credentials. Additionally, a user with physical access to the UR IED can interrupt the boot sequence by rebooting the UR...

8.4CVSS6.6AI score0.00048EPSS

Exploits0References1

Circl•added 2025/03/11 1:41 a.m.•0 views

CVE-2025-27430

creationtimestamp| type| source ---|---|--- 2025-03-11 01:41:22+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/7085 2025-03-11 03:24:27+00:00| seen| https://t.me/cvedetector/20007...

3.5CVSS5.7AI score0.00079EPSS

Exploits0References2

Vulnrichment•added 2025/03/11 12:37 a.m.•4 views

CVE-2025-27430 Server Side Request Forgery (SSRF) in SAP CRM and SAP S/4 HANA (Interaction Center)

Under certain conditions, an SSRF vulnerability in SAP CRM and SAP S/4HANA Interaction Center allows an attacker with low privileges to access restricted information. This flaw enables the attacker to send requests to internal network resources, thereby compromising the application's...

3.5CVSS7AI score0.00079EPSS

Exploits0References2

SUSE CVE•added 2024/05/21 2:0 a.m.•2 views

SUSE CVE-2024-27430

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

6AI score

Exploits0References3

Cvelist•added 2024/05/17 12:2 p.m.•9 views

CVE-2024-27430

...

6.5AI score

Exploits0

Debian CVE•added 2024/05/17 12:2 p.m.•9 views

CVE-2024-27430

Removed by vendor...

6.9AI score

Exploits0

Circl•added 2023/05/18 2:32 p.m.•1 views

CVE-2023-27430

creationtimestamp| type| source ---|---|--- 2023-05-18 14:32:23+00:00| seen| https://t.me/cibsecurity/64392...

8.8CVSS8.6AI score0.00104EPSS

Exploits0References1

CVE•added 2023/05/18 10:38 a.m.•37 views

CVE-2023-27430

CVE-2023-27430 affects WordPress Mass Delete Unused Tags plugin (

8.8CVSS7.1AI score0.00104EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/05/18 10:38 a.m.•6 views

CVE-2023-27430 WordPress Mass Delete Unused Tags Plugin <= 2.0.0 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Ramon Fincken Mass Delete Unused Tags plugin = 2.0.0 versions...

5.4CVSS7AI score0.00104EPSS

Exploits0References1

Patchstack•added 2023/03/13 12:0 a.m.•10 views

WordPress Mass Delete Unused Tags Plugin <= 2.0.0 is vulnerable to Cross Site Request Forgery (CSRF)

Software Mass Delete Unused Tags Type Plugin Vulnerable versions = 2.0.0 Fixed in 3.0.0 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-27430 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 6d6176635537 Credits Mika Requir...

8.8CVSS6.6AI score0.00104EPSS

Exploits0References2Affected Software1

Cvelist•added 2022/03/23 7:46 p.m.•24 views

CVE-2021-27430 GE UR family hardcoded credentials

8.4CVSS8.3AI score0.00048EPSS

Exploits0References2

CVE•added 2022/03/23 7:46 p.m.•86 views

CVE-2021-27430

GE UR bootloader binary versions 7.00–7.02 include unused hardcoded credentials. With physical access to the UR Intelligent Electronic Device, an attacker can interrupt the boot sequence by rebooting the UR. The issue is fixed by upgrading UR firmware to 8.10 or newer (GE publication GES-2021-004...

8.4CVSS7.2AI score0.00048EPSS

Exploits0References2Affected Software1

ThreatPost•added 2021/03/22 8:39 p.m.•60 views

CISA Warns of Security Flaws in GE Power Management Devices

The U.S. Cybersecurity & Infrastructure Security Agency CISA is warning of critical-severity security flaws in GE’s Universal Relay UR family of power management devices. GE’s UR devices are the “basis of simplified power management for the protection of critical assets,” according to the company...

0.8AI score0.0029EPSS

Exploits0References14

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by