CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

Circl•added 2026/03/20 7:16 p.m.•3 views

CVE-2026-33140

creationtimestamp| type| source ---|---|--- 2026-03-20 19:16:49+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-33140...

6.1CVSS5.8AI score0.00217EPSS

Exploits1References1

Circl•added 2024/02/23 10:27 p.m.•2 views

CVE-2021-33140

creationtimestamp| type| source ---|---|--- 2024-02-23 22:27:15+00:00| seen| https://t.me/ctinow/192232...

4.8AI score

Exploits0References1

Exploit DB•added 2023/06/22 12:0 a.m.•365 views

Microsoft OneNote (Version 2305 Build 16.0.16501.20074) 64-bit - Spoofing

Title: Microsoft OneNote Version 2305 Build 16.0.16501.20074 64-bit - Spoofing Author: nu11secur1ty Date: 06.22.2023 Vendor: https://www.microsoft.com/ Software: https://www.microsoft.com/en/microsoft-365/onenote/digital-note-taking-app Reference:...

6.5CVSS6.8AI score0.01649EPSS

Exploits4

Circl•added 2023/06/14 10:24 a.m.•2 views

CVE-2023-33140

creationtimestamp| type| source ---|---|--- 2023-06-14 10:24:46+00:00| seen| https://t.me/kasperskyb2b/694 2023-06-14 13:25:38+00:00| seen| https://t.me/truesecator/4496 2023-06-26 10:59:01+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/8556 2023-06-28 15:12:59+00:00|...

6.5CVSS6.9AI score0.01649EPSS

Exploits4References7

CVE•added 2023/06/13 11:26 p.m.•203 views

CVE-2023-33140

CVE-2023-33140 concerns Microsoft OneNote spoofing. Connected sources provide concrete details: OneNote (example build 2305, 16.0.16501.20074 64-bit) is vulnerable to a spoofing vulnerability that requires a user to open a crafted file and click a crafted URL to spoof the UI. The vulnerability’s ...

6.5CVSS6.5AI score0.01649EPSS

Exploits4References2Affected Software1

Circl•added 2022/06/15 6:26 p.m.•23 views

CVE-2022-33140

creationtimestamp| type| source ---|---|--- 2022-06-15 18:26:47+00:00| seen| https://t.me/cibsecurity/44539 2024-01-28 03:26:30+00:00| seen| https://t.me/arpsyndicate/3183 2025-08-19 21:02:28+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lwrspzzl7b2m...

8.8CVSS8.1AI score0.03649EPSS

Exploits0References3

NVD•added 2022/06/15 3:15 p.m.•39 views

CVE-2022-33140

The optional ShellUserGroupProvider in Apache NiFi 1.10.0 to 1.16.2 and Apache NiFi Registry 0.6.0 to 1.16.2 does not neutralize arguments for group resolution commands, allowing injection of operating system commands on Linux and macOS platforms. The ShellUserGroupProvider is not included in the...

8.8CVSS0.03649EPSS

Exploits0References2

CVE•added 2022/06/15 2:25 p.m.•103 views

CVE-2022-33140

The Red Hat, CIRCL, OSV, and other connected feeds confirm CVE-2022-33140 affects Apache NiFi (1.10.0–1.16.2) and Apache NiFi Registry (0.6.0–1.16.2). The root cause is that the optional ShellUserGroupProvider does not neutralize arguments for group resolution commands, allowing command injection...

8.8CVSS8.9AI score0.03649EPSS

Exploits0References2Affected Software2