CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

82 matches found

Tenable Nessus•added 2026/04/22 12:0 a.m.•1 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013472)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013472 advisory. In the Linux kernel, the following vulnerability has been resolved: aoe: fix the potential use-after-free problem in aoecmdcfgpkts This patch is against CVE-2023-627...

7.8CVSS5.9AI score0.00029EPSS

Exploits0References3

Tenable Nessus•added 2026/04/21 12:0 a.m.•4 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-011391)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011391 advisory. In the Linux kernel, the following vulnerability has been resolved: aoe: fix the potential use-after-free problem in aoecmdcfgpkts This patch is against CVE-2023-627...

7.8CVSS6.3AI score0.00029EPSS

Exploits0References3

vulnersOsv•added 2026/04/16 10:29 p.m.•4 views

@bechara/crux (>=6.0.0 <=6.6.2), @cappa/cli (>=0.1.0 <=0.8.2) +11 more potentially affected by CVE-2026-6270 via @fastify/middie (>=9.0.2 <=9.3.1)

@fastify/middie NPM version =9.0.2, =6.0.0, =0.1.0, =0.1.0, =1.0.0, =1.0.11, =0.1.51, =1.0.36, =11.0.0, =1.3.0, =5.0.0, =0.6.1-dev, =1.1.48 Source cves: CVE-2026-6270 Source advisory: SNYK:JS-FASTIFYMIDDIE-16098213...

9.1CVSS5.4AI score0.00085EPSS

Exploits1

NVD•added 2026/04/16 2:16 p.m.•1 views

CVE-2026-6270

@fastify/middie versions 9.3.1 and earlier do not register inherited middleware directly on child plugin engine instances. When a Fastify application registers authentication middleware in a parent scope and then registers child plugins with @fastify/middie, the child scope does not inherit the...

9.1CVSS0.00085EPSS

Exploits1References3

Circl•added 2026/04/16 1:50 p.m.•0 views

CVE-2026-6270

creationtimestamp| type| source ---|---|--- 2026-04-16 13:50:08+00:00| seen| https://bsky.app/profile/ulisesgascon.com/post/3mjmki3smik2n 2026-04-16 15:19:53+00:00| seen| Telegram/5D912vOHN-G66auq1Hho6wwp26h6YJ5ZFpozWyyt1z6weM...

9.1CVSS5.3AI score0.00085EPSS

Exploits1References1

Tenable Nessus•added 2026/04/07 12:0 a.m.•2 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-006568)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006568 advisory. In the Linux kernel, the following vulnerability has been resolved: aoe: fix the potential use-after-free problem in aoecmdcfgpkts This patch is against CVE-2023-627...

7.8CVSS6.3AI score0.00029EPSS

Exploits0References3

CVE•added 2025/06/19 4:31 p.m.•24 views

CVE-2025-6270

The CVE-2025-6270 entry concerns HDF5 up to 1.14.6, affecting the function H5FS__sect_find_node in H5FSsection.c. The vulnerability is a heap-based buffer overflow disclosed as exploitable on the local host, with PoC shown in public references. Connected documents confirm affected software and ro...

5.3CVSS5.3AI score0.00146EPSS

Exploits1References5Affected Software1

OpenVAS•added 2024/11/20 12:0 a.m.•25 views

SUSE: Security Advisory (SUSE-SU-2024:4038-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.7AI score0.00495EPSS

Exploits2References17

OpenVAS•added 2024/11/14 12:0 a.m.•30 views

openSUSE Security Advisory (SUSE-SU-2024:3984-1)

9.1CVSS8.6AI score0.00119EPSS

Exploits4References344

Circl•added 2024/08/05 8:53 a.m.•3 views

CVE-2024-6270

creationtimestamp| type| source ---|---|--- 2024-08-05 08:53:27+00:00| seen| https://t.me/cvedetector/2435...

4.8CVSS4.8AI score0.0027EPSS

Exploits1References1

CVE•added 2024/08/05 6:0 a.m.•26 views

CVE-2024-6270

CVE-2024-6270 affects the WordPress plugin Community Events prior to 1.5.1. The issue is a Stored XSS vulnerability caused by insufficient sanitization and escaping of certain plugin settings. This can allow high-privilege users (e.g., administrators) to inject XSS even when unfiltered_html is di...

4.8CVSS5.4AI score0.0027EPSS

Exploits1References1Affected Software1

OpenVAS•added 2024/08/05 12:0 a.m.•74 views

Ubuntu: Security Advisory (USN-6895-4)

7.8CVSS7.5AI score0.00292EPSS

Exploits1References2

Patchstack•added 2024/08/05 12:0 a.m.•14 views

WordPress Community Events Plugin < 1.5.1 is vulnerable to Cross Site Scripting (XSS)

Software Community Events Type Plugin Vulnerable versions 1.5.1 Fixed in 1.5.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-6270 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 41e2dd4ebfb2 Credits Bob Matyas Required...

4.8CVSS5.8AI score0.0027EPSS

Exploits1References4Affected Software1

Ubuntu•added 2024/08/02 9:36 a.m.•227 views

USN-6895-4: Linux kernel vulnerabilities

It was discovered that the ATA over Ethernet AoE driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An attacker could use this to cause a denial of service or possibly execute arbitrary code. CVE-2023-6270 It was discovered that the HugeTLB file syst...

7.8CVSS7.4AI score0.00292EPSS

Exploits1

OpenVAS•added 2024/07/24 12:0 a.m.•46 views

Ubuntu: Security Advisory (USN-6896-5)

9.1CVSS8.2AI score0.02683EPSS

Exploits1References2

Ubuntu•added 2024/07/19 9:4 a.m.•287 views

USN-6895-3: Linux kernel vulnerabilities

7.8CVSS7.4AI score0.00292EPSS

Exploits1

OpenVAS•added 2024/07/19 12:0 a.m.•21 views

Ubuntu: Security Advisory (USN-6895-3)