CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2026/01/20 12:0 a.m.•1 views

MiracleLinux 8 : thunderbird-115.3.1-1.el8.ML.1 (AXSA:2023-6497:29)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-6497:29 advisory. firefox: use-after-free in workers CVE-2023-3600 Mozilla: Out-of-bounds write in PathOps CVE-2023-5169 Mozilla: Use-after-free in Ion Compiler...

9.8CVSS8.6AI score0.04976EPSS

Tenable Nessus•added 2026/01/20 12:0 a.m.•2 views

MiracleLinux 9 : thunderbird-115.3.1-1.el9.ML.1 (AXSA:2023-6492:28)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-6492:28 advisory. firefox: use-after-free in workers CVE-2023-3600 Mozilla: Out-of-bounds write in PathOps CVE-2023-5169 Mozilla: Use-after-free in Ion Compiler...

9.8CVSS8.6AI score0.04976EPSS

Tenable Nessus•added 2025/06/16 12:0 a.m.•4 views

TencentOS Server 2: thunderbird (TSSA-2023:0235)

The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0235 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities...

9.8CVSS8.8AI score0.04976EPSS

Tenable Nessus•added 2025/06/16 12:0 a.m.•2 views

TencentOS Server 4: aom (TSSA-2024:0714)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0714 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

10CVSS7.9AI score0.00198EPSS

RedhatCVE•added 2025/05/28 6:18 a.m.•10 views

CVE-2025-5171

A vulnerability, which was classified as critical, has been found in llisoft MTA Maita Training System 4.5. This issue affects the function this.fileService.download of the file com\llisoft\controller\OpenController.java. The manipulation of the argument url leads to unrestricted upload. The atta...

9.8CVSS6.8AI score0.00339EPSS

Exploits1References1

NVD•added 2025/05/26 6:17 a.m.•10 views

CVE-2025-5171

9.8CVSS0.00339EPSS

OSV•added 2025/05/26 6:17 a.m.•1 views

CVE-2025-5171

9.8CVSS5.4AI score0.00339EPSS

Circl•added 2025/05/26 5:47 a.m.•17 views

CVE-2025-5171

creationtimestamp| type| source ---|---|--- 2025-05-26 05:47:10+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17529 2025-05-26 09:41:19+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lq2uzza4nv2m...

9.8CVSS6.2AI score0.00339EPSS

Vulnrichment•added 2025/05/26 5:31 a.m.•6 views

CVE-2025-5171 llisoft MTA Maita Training System OpenController.java this.fileService.download unrestricted upload

6.5CVSS6.4AI score0.00339EPSS

CVE•added 2025/05/26 5:31 a.m.•46 views

CVE-2025-5171

The CVE-2025-5171 entry concerns llisoft MTA Maita Training System 4.5. Affected: the file download path through this.fileService.download in com\llisoft\controller\OpenController.java. Root cause: argument url manipulation enables unrestricted upload. Impact: remote attack possible with high sev...

9.8CVSS6.4AI score0.00339EPSS

Exploits1References4Affected Software1

Cvelist•added 2025/05/26 5:31 a.m.•12 views

CVE-2025-5171 llisoft MTA Maita Training System OpenController.java this.fileService.download unrestricted upload

6.5CVSS0.00339EPSS

RedhatCVE•added 2025/05/22 2:16 a.m.•4 views

CVE-2010-5171

Race condition in Outpost Security Suite Pro 6.7.3.3063.452.0726 and 7.0.3330.505.1221 BETA on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certa...

6.2CVSS7AI score0.00058EPSS

Exploits0References1

OpenVAS•added 2025/04/01 12:0 a.m.•4 views

Ubuntu: Security Advisory (USN-7397-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.6AI score0.00198EPSS

Tenable Nessus•added 2025/03/06 12:0 a.m.•10 views

Linux Distros Unpatched Vulnerability : CVE-2024-5171

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in libaom internal function imgallochelper can lead to heap buffer overflow. This function can be reached via 3 callers: Calling aomimgalloc wi...

10CVSS7.8AI score0.00198EPSS

Debian•added 2024/09/07 7:13 p.m.•8 views

[SECURITY] [DLA 3881-1] aom security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3881-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk September 07, 2024 https://wiki.debian.org/LTS -...

10CVSS6.5AI score0.00198EPSS

Exploits1

OpenVAS•added 2024/08/20 12:0 a.m.•13 views

SUSE: Security Advisory (SUSE-SU-2024:2052-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.4AI score0.00198EPSS

OpenVAS•added 2024/08/20 12:0 a.m.•16 views

openSUSE Security Advisory (SUSE-SU-2024:2052-1)

10CVSS8.4AI score0.00198EPSS

Tenable Nessus•added 2024/06/19 12:0 a.m.•26 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : libaom (SUSE-SU-2024:2056-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:2056-1 advisory. - CVE-2024-5171: Fixed heap buffer overflow in imgallochelper caused by integer overflow bsc1226020...

10CVSS7.8AI score0.00198EPSS