CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

CVE•added 2026/04/21 8:35 p.m.•5 views

CVE-2026-34298

CVE-2026-34298 affects Oracle Applications Framework within Oracle E-Business Suite, Personalization component. Affected: E-Business Suite versions 12.2.9–12.2.15. The vulnerability arises in the Personalization feature, enabling a high-privilege attacker with network access via HTTP to perform u...

4.7CVSS5.7AI score0.00042EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2026/04/21 8:35 p.m.•0 views

CVE-2026-34298

...

4.7CVSS7.3AI score0.00042EPSS

Exploits0References1

Cvelist•added 2026/04/21 8:35 p.m.•29 views

CVE-2026-34298

...

4.7CVSS0.00042EPSS

Exploits0References1

Circl•added 2025/10/30 10:53 p.m.•0 views

CVE-2025-34298

creationtimestamp| type| source ---|---|--- 2025-10-30 22:53:50+00:00| seen| Telegram/mlnohv2FAaq78AwOaxuLZCI2vV0bvjnubEXI8-BvCwFccJM...

8.8CVSS4.8AI score0.00081EPSS

Exploits0

RedhatCVE•added 2025/05/22 7:50 p.m.•9 views

CVE-2021-34298

A vulnerability has been identified in JT2Go All versions V13.2, Teamcenter Visualization All versions V13.2. The BMPLoader.dll library in affected applications lacks proper validation of user-supplied data prior to performing further free operations on an object when parsing BMP files. An attack...

7.8CVSS6.9AI score0.00418EPSS

Exploits0References1

Tenable Nessus•added 2023/06/23 12:0 a.m.•73 views

Ivanti Secure Access Client < 22.3R3 Local Privilege Escalation (CVE-2023-34298)

The Ivanti Secure Access Client installed on the remote Windows system is prior to 22.3R3. It is, therefore, affected by a local privilege escalation vulnerability. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number...

7.8CVSS7.4AI score0.00116EPSS

Exploits0References2

Ivanti•added 2023/06/22 6:28 p.m.•8 views

CVE (2023-34298) Ivanti Secure Access Client Local Privilege Escalation

Summary A logged in Windows user can leverage functionality of the Pulse Secure / Ivanti Secure Access Client or Pulse Secure Installer Service to carry out a privilege escalation on the user machine. Mitigation None Currently Related Links https://forums.ivanti.com/s/article/New-Client-Side...

7.8CVSS7.5AI score0.00116EPSS

Exploits0

Circl•added 2022/06/23 8:36 p.m.•2 views

CVE-2022-34298

creationtimestamp| type| source ---|---|--- 2022-06-23 20:36:03+00:00| seen| https://t.me/cibsecurity/45016...

5.3CVSS5.5AI score0.4507EPSS

Exploits1References1

Cvelist•added 2022/06/22 1:18 p.m.•15 views

CVE-2022-34298

The NT auth module in OpenAM before 14.6.6 allows a "replace Samba username attack."...

5.5AI score0.4507EPSS

Exploits1References3

CVE•added 2022/06/22 1:18 p.m.•82 views

CVE-2022-34298

OpenAM before 14.6.6 is affected by a vulnerability in the NT auth module that enables a "replace Samba username attack." Multiple sources (Veracode and Red Hat) describe privilege escalation via the userPassword parameter in the process function, enabling an authenticated local attacker to manip...

5.3CVSS5.2AI score0.4507EPSS

Exploits1References3Affected Software1

CVE•added 2021/07/13 11:3 a.m.•58 views

CVE-2021-34298

CVE-2021-34298 affects Siemens JT2Go and Teamcenter Visualization (versions prior to 13.2). The BMP_Loader.dll parses BMP files and lacks proper validation, enabling an attacker to execute code in the current process with local, likely remoteом? exploitation described by ZDI—double free in BMP pa...

7.8CVSS7.6AI score0.00418EPSS

Exploits0References2Affected Software2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by