CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

602 matches found

CNNVD•added 2026/04/23 12:0 a.m.•9 views

OpenVPN OpenSource 安全漏洞

OpenVPN OpenSource is a virtual private network communication software developed by OpenVPN Inc., based on the SSL/TLS protocol. OpenVPN OpenSource has a security vulnerability; this vulnerability stems from bypassing access restrictions through the TLS handshake, potentially leading to the readi...

5.8AI score0.00481EPSS

Exploits0References1

NVD•added 2026/02/25 4:23 p.m.•5 views

CVE-2026-27700

Hono is a Web application framework that provides support for any JavaScript runtime. In versions 4.12.0 and 4.12.1, when using the AWS Lambda adapter hono/aws-lambda behind an Application Load Balancer ALB, the getConnInfo function incorrectly selected the first value from the X-Forwarded-For...

8.2CVSS0.00244EPSS

Exploits0References3

RedhatCVE•added 2026/01/09 12:36 p.m.•5 views

CVE-2023-49002

An issue in Xenom Technologies sinous Phone Dialer-voice Call Dialer v.1.2.5 allows an attacker to bypass intended access restrictions via interaction with com.funprime.calldialer.ui.activities.OutgoingActivity...

7.5CVSS6.8AI score0.00664EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 12:11 p.m.•4 views

CVE-2018-18531

text/impl/DefaultTextCreator.java, text/impl/ChineseTextProducer.java, and text/impl/FiveLetterFirstNameTextCreator.java in kaptcha 2.3.2 use the Random rather than SecureRandom function for generating CAPTCHA values, which makes it easier for remote attackers to bypass intended access restrictio...

9.8CVSS7AI score0.01468EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 11:51 a.m.•7 views

CVE-2009-4998

The Workplace aka WP component in IBM FileNet P8 Application Engine P8AE 3.5.1 before 3.5.1-019 and 4.0.2.x before 4.0.2.7-P8AE-FP007, in certain FileTracker configurations, does not apply a security policy to the first document added during a session, which might allow remote attackers to bypass...

2.6CVSS7AI score0.01099EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 11:50 a.m.•8 views

CVE-2009-4520

The CCK Comment Reference module 5.x before 5.x-1.2 and 6.x before 6.x-1.3, a module for Drupal, allows remote attackers to bypass intended access restrictions and read comments by using the autocomplete path...

5CVSS7.1AI score0.01242EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 11:48 a.m.•6 views

CVE-2010-0215

ActiveCollab before 2.3.2 allows remote authenticated users to bypass intended access restrictions, and 1 delete an attachment or 2 subscribe to an object, via a crafted URL...

6CVSS6.6AI score0.01521EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:28 a.m.•8 views

CVE-2019-12002

A remote session reuse vulnerability leading to access restriction bypass was discovered in HPE MSA 2040 SAN Storage; HPE MSA 1040 SAN Storage; HPE MSA 1050 SAN Storage; HPE MSA 2042 SAN Storage; HPE MSA 2050 SAN Storage; HPE MSA 2052 SAN Storage versions: GL225P001 and earlier; GL225P001 and...

10CVSS7AI score0.02067EPSS

Exploits0References1