CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

90 matches found

AlpineLinux•added 2026/05/27 6:33 p.m.•6 views

CVE-2026-9759

ROHC protocol dissector crash in Wireshark 4.6.0 to 4.6.5 and 4.4.0 to 4.4.15 allows denial of service...

5.5CVSS5.8AI score0.0001EPSS

Exploits0References2

Tenable Nessus•added 2026/01/20 12:0 a.m.•2 views

MiracleLinux 7 : python-lxml-3.2.1-4.0.1.el7.AXS7 (AXSA:2024-8989:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-8989:01 advisory. CVE-2021-43818: prevent certain crafted script content passing through in HTML Cleaner CVEs: CVE-2021-43818 lxml is a library for processing XML and HTML in...

8.2CVSS7.3AI score0.05428EPSS

Exploits0References2

Tenable Nessus•added 2026/01/15 12:0 a.m.•4 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002762)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002762 advisory. The apparmorsetprocattr function in security/apparmor/lsm.c in the Linux kernel before 4.6.5 does not validate the buffer size, which allows local users to gain...

7.8CVSS7.8AI score0.06081EPSS

Exploits5References10

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2018-0735

Malware in sbrugna...

7.5CVSS7.6AI score0.00456EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2013-2504

Malware in sbrugna...

2.1CVSS5.6AI score0.00074EPSS

Exploits1References4

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2018-7363

Malware in sbrugna...

9.1CVSS9.3AI score0.01074EPSS

Exploits2References4

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2008-3698

Malware in sbrugna...

2.6CVSS6.4AI score0.04188EPSS

Exploits1References7

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-43896

Malicious code in bioql PyPI...

6.5CVSS5.8AI score0.00048EPSS

Exploits1References2

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2022-4463

Malicious code in bioql PyPI...

8.8CVSS8.8AI score0.00134EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-2898

Malicious code in bioql PyPI...

5.9CVSS6.4AI score0.00234EPSS

Exploits1References5

Tenable Nessus•added 2025/08/25 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2016-9857

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in phpMyAdmin. XSS is possible because of a weakness in a regular expression used in some JavaScript processing. All 4.6.x versions prio...

6.1CVSS6.6AI score0.00258EPSS

Exploits0References2

Tenable Nessus•added 2025/08/20 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2018-19039

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Grafana before 4.6.5 and 5.x before 5.3.3 allows remote authenticated users to read arbitrary files by leveraging Editor or Admin permissions. CVE-2018-19039 No...

6.5CVSS7.2AI score0.09218EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 10:45 a.m.•6 views

CVE-2024-48913

Hono, a web framework, prior to version 4.6.5 is vulnerable to bypass of cross-site request forgery CSRF middleware by a request without Content-Type header. Although the CSRF middleware verifies the Content-Type Header, Hono always considers a request without a Content-Type header to be safe. Th...

5.9CVSS7AI score0.00234EPSS

Exploits1

RedhatCVE•added 2025/05/23 3:48 a.m.•3 views

CVE-2023-3218

Race Condition within a Thread in GitHub repository it-novum/openitcockpit prior to 4.6.5...

6.5CVSS6.8AI score0.00048EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 10:0 a.m.•3 views

CVE-2011-3754

Mambo 4.6.5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by includes/sef.php and certain other files...

5CVSS6.5AI score0.00283EPSS

Exploits1References1

Positive Technologies•added 2024/09/25 12:0 a.m.•1 views

PT-2024-38569 · WordPress · Jupiter X Core

Name of the Vulnerable Software and Affected Versions: Jupiter X Core plugin for WordPress versions up to, and including, 4.6.5 Description: The Jupiter X Core plugin for WordPress is vulnerable to arbitrary file uploads due to a mishandled file type validation in the validate function. This make...

9.8CVSS8.1AI score0.08646EPSS

Exploits0References16

Tenable Nessus•added 2024/04/27 12:0 a.m.•19 views

RHEL 7 : CloudForms 4.6.5 (RHSA-2018:3466)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:3466 advisory. Red Hat CloudForms Management Engine delivers the insight, control, and automation needed to address the challenges of managing virtual environments...

9.8CVSS8AI score0.0066EPSS

Exploits1References71

Tenable Nessus•added 2024/02/29 12:0 a.m.•15 views

CentOS 9 : python-lxml-4.6.5-3.el9

The remote CentOS Linux 9 host has a package installed that is affected by a vulnerability as referenced in the python- lxml-4.6.5-3.el9 build changelog. - NULL Pointer Dereference allows attackers to cause a denial of service or application crash. This only applies when lxml is used together wit...

7.5CVSS6.4AI score0.01251EPSS

Exploits1References2

IBM Security Bulletins•added 2023/06/13 8:57 p.m.•25 views

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to HTTP request smuggling in Apache Tomcat (CVE-2022-42252).

Summary IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to HTTP request smuggling in Apache Tomcat caused by the failure to reject a request containing an invalid Content-Length header when configured to ignore invalid HTTP headers via setting rejectIllegalHeader to...

7.5CVSS7.2AI score0.0029EPSS

Exploits0Affected Software1