CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

Tenable Nessus•added 2026/03/24 12:0 a.m.•5 views

TencentOS Server 4: grafana (TSSA-2026:0177)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2026:0177 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

9.8CVSS8AI score0.02784EPSS

Exploits3References2

OPENSUSE Linux•added 2026/03/14 12:0 a.m.•3 views

heroic-games-launcher-2.20.1-3.1 on GA media (moderate)

heroic-games-launcher-2.20.1-3.1 on GA media Announcement ID: openSUSE-SU-2026:10327-1 Rating: moderate Cross-References: CVE-2026-28292 CVSS scores: CVE-2026-28292 SUSE : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: openSUSE Tumbleweed An update that solves one vulnerabili...

9.8CVSS5.8AI score0.01272EPSS

Exploits1

NVD•added 2026/03/10 7:17 p.m.•5 views

CVE-2026-28292

simple-git, an interface for running git commands in any node.js application, has an issue in versions 3.15.0 through 3.32.2 that allows an attacker to bypass two prior CVE fixes CVE-2022-25860 and CVE-2022-25912 and achieve full remote code execution on the host machine. Version 3.23.0 contains ...

9.8CVSS0.01272EPSS

Exploits1References4

Circl•added 2026/03/10 6:38 p.m.•5 views

CVE-2026-28292

creationtimestamp| type| source ---|---|--- 2026-03-10 18:38:56+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-r275-fr43-pm7q 2026-03-10 20:10:05+00:00| seen| https://gist.github.com/alon710/55440ca983eb1e00bbb022804644523d 2026-03-12 18:00:14+00:00| seen|...

9.8CVSS7.1AI score0.01272EPSS

Exploits1References5

CVE•added 2026/03/10 6:34 p.m.•33 views

CVE-2026-28292

The CVE-2026-28292 entry concerns the Node.js package simple-git. Affected versions are 3.15.0 through 3.32.2 and the issue bypasses prior fixes from CVE-2022-25860 and CVE-2022-25912, enabling full remote code execution on the host. A fix is noted in version 3.23.0. No exploitation details or in...

9.8CVSS6.4AI score0.01272EPSS

Exploits1References4Affected Software1

OSV•added 2026/03/10 6:34 p.m.•6 views

CVE-2026-28292 simple-git has blockUnsafeOperationsPlugin bypass via case-insensitive protocol.allow config key enables RCE

9.8CVSS6.5AI score0.01272EPSS

Exploits1References4

NVD•added 2023/04/11 9:15 p.m.•20 views

CVE-2023-28292

Raw Image Extension Remote Code Execution Vulnerability...

7.8CVSS8AI score0.00598EPSS

Exploits0References1

Vulnrichment•added 2023/04/11 7:13 p.m.•24 views

CVE-2023-28292 Raw Image Extension Remote Code Execution Vulnerability

...

7.8CVSS7.2AI score0.00598EPSS

Exploits0References1

CVE•added 2023/04/11 7:13 p.m.•127 views

CVE-2023-28292

CVE-2023-28292 is a Windows Raw Image Extension Remote Code Execution vulnerability. The issues affect the Windows Raw Image Extensions component (Windows 10/11 families and related builds) and are described in multiple sources (NVD/MSRC/NCSC). Root cause and affected specifics are tied to the Ra...

7.8CVSS7.9AI score0.00598EPSS

Exploits0References1Affected Software1

Tenable Nessus•added 2023/04/11 12:0 a.m.•203 views

Microsoft Windows Raw Image Extensions Library Multiple Vulnerabilities (April 2023)

The Windows 'Raw Image Extensions' app installed on the remote host is affected by multiple code execution vulnerabilities: - A remote code execution vulnerability exists in the Microsoft Windows Codecs Library Raw Image. An attacker who successfully exploited the vulnerability could execute...

8.4CVSS9.3AI score0.00617EPSS

Exploits0References4