CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

OSV•added 2025/08/14 6:52 p.m.•1 views

MAL-2025-34606 Malicious code in tddmaven (npm)

The package tddmaven was found to contain malicious code...

7.2AI score

Exploits0

RedhatCVE•added 2025/05/23 10:25 a.m.•8 views

CVE-2024-34606

Improper access control in SmartThingsService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background...

6.2CVSS6.7AI score0.00142EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 11:5 p.m.•10 views

CVE-2022-34606

H3C Magic R200 R200V200R004L02 was discovered to contain a stack overflow via the EditvsList parameter at /dotrace.asp...

9.8CVSS7.9AI score0.00992EPSS

Exploits1References1

CVE•added 2022/07/20 1:41 p.m.•57 views

CVE-2022-34606

CVE-2022-34606 affects H3C Magic R200 R200V200R004L02. A stack overflow in the /dotrace.asp EditvsList parameter is reported, with exploitation described as potentially crashing the service and, in some sources, executing arbitrary code in the application context. Remote attacker access is implie...

9.8CVSS9.7AI score0.00992EPSS

Exploits1References1Affected Software1

CVE•added 2022/05/11 2:25 p.m.•70 views

CVE-2021-34606

CVE-2021-34606 affects XINJE XD/E Series PLC Program Tool up to version 3.5.1. The issue is due to an Uncontrolled Search Path Element (DLL hijacking) that could allow an authenticated, local attacker with file-write privileges to place a malicious DLL and cause arbitrary code execution with the ...

7.3CVSS7.3AI score0.00445EPSS

Exploits1References1Affected Software1