CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

ATTACKERKB•added 2026/04/30 4:30 p.m.•2 views

CVE-2026-34998

DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...

5.2AI score

Exploits0References1

RedhatCVE•added 2025/05/22 11:43 p.m.•2 views

CVE-2022-34998

JPEGDEC commit be4843c was discovered to contain a global buffer overflow via JPEGDecodeMCU at /src/jpeg.inl...

7.8CVSS7.8AI score0.00052EPSS

Exploits1References1

Circl•added 2023/09/05 8:17 p.m.•0 views

CVE-2023-34998

creationtimestamp| type| source ---|---|--- 2023-09-05 20:17:10+00:00| seen| https://t.me/cibsecurity/69862...

8.1CVSS8.6AI score0.00009EPSS

Exploits0References1

Cvelist•added 2023/09/05 4:15 p.m.•13 views

CVE-2023-34998

An authentication bypass vulnerability exists in the OAS Engine functionality of Open Automation Software OAS Platform v18.00.0072. A specially crafted series of network requests can lead to arbitrary authentication. An attacker can sniff network traffic to trigger this vulnerability...

8.1CVSS8.4AI score0.00009EPSS

Exploits0References2

CVE•added 2023/09/05 4:15 p.m.•40 views

CVE-2023-34998

CVE-2023-34998 : Open Automation Software OAS Platform v18.00.0072 OAS Engine contains an authentication bypass. An attacker who can sniff traffic can capture a valid U_EP credential and craft privileged requests, bypassing authentication. The vulnerability enables access via unencrypted admin tr...

8.1CVSS9AI score0.00009EPSS

Exploits0References2Affected Software1

Talos•added 2023/09/05 12:0 a.m.•52 views

Open Automation Software OAS Platform OAS Engine authentication bypass vulnerability

Talos Vulnerability Report TALOS-2023-1770 Open Automation Software OAS Platform OAS Engine authentication bypass vulnerability September 5, 2023 CVE Number CVE-2023-34998 SUMMARY An authentication bypass vulnerability exists in the OAS Engine functionality of Open Automation Software OAS Platfor...

8.1CVSS8.2AI score0.00009EPSS

Exploits0

CVE•added 2022/08/16 8:0 p.m.•66 views

CVE-2022-34998

CVE-2022-34998 concerns JPEGDEC, a JPEG decoder. The connected records specify a global buffer overflow in the JPEGDecodeMCU path inside /src/jpeg.inl, caused by commit be4843c. This issue applies to JPEGDEC’s decoding component and is described with a HIGH impact context (CVSS 3.1 metrics indica...

7.8CVSS7.8AI score0.00052EPSS

Exploits1References1Affected Software1

OSV•added 2022/01/13 10:15 p.m.•0 views

CVE-2021-34998

This vulnerability allows local attackers to escalate privileges on affected installations of Panda Security Free Antivirus 20.2.0.0. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists with...

7.8CVSS6.2AI score0.00049EPSS

Exploits0References2

CVE•added 2022/01/13 9:44 p.m.•76 views

CVE-2021-34998

CVE-2021-34998 affects Panda Security Free Antivirus 20.2.0.0. The flaw is in named pipes handling, where an untrusted process can impersonate the pipe client, enabling local privilege escalation to SYSTEM. Documents indicate local exploitation with low authentication, and references include ZDI-...

7.8CVSS7.8AI score0.00049EPSS

Exploits0References2Affected Software1

Cvelist•added 1976/01/01 12:0 a.m.•22 views

CVE-2026-34998

...

Exploits0

CVE•added 1976/01/01 12:0 a.m.•2 views

CVE-2026-34998

CVE-2026-34998 is rejected/not used; this record is withdrawn and does not represent an active vulnerability.

Exploits0

CVE•added 1976/01/01 12:0 a.m.•10 views

CVE-2025-34998