CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSSF Malicious Packages•added 2025/02/03 4:43 p.m.•2 views

Malicious code in @toloka-annotation-studio/app (npm)

--- -= Per source details. Do not edit below this line.=-...

7AI score

OSV•added 2025/02/03 4:43 p.m.•3 views

MAL-2025-781 Malicious code in @toloka-annotation-studio/app (npm)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score

CVE•added 2025/01/28 3:19 p.m.•2125 views

CVE-2025-23045

CVE-2025-23045 affects Computer Vision Annotation Tool (CVAT). An attacker with an account on an affected CVAT instance can execute arbitrary code in the Nuclio function container via serverless tracker functions (TransT and SiamMask); deployments with custom tracker functions may also be affecte...

9.8CVSS7AI score0.00903EPSS

Exploits0References2Affected Software1

CNNVD•added 2025/01/28 12:0 a.m.•2 views

Computer Vision Annotation Tool 代码问题漏洞

Computer Vision Annotation Tool CVAT is a cvat.ai open source interactive video and image annotation tool for computer vision. A code issue vulnerability exists in Computer Vision Annotation Tool that originates when running certain types of serverless functions, which could allow an attacker to...

9.8CVSS7AI score0.00903EPSS

Positive Technologies•added 2025/01/01 12:0 a.m.•2 views

PT-2026-2878

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's block layer related to request queue freezing within sysfs store callbacks. Freezing the request queue during these callbacks can lead to a deadlock...

7.8CVSS5.4AI score0.00068EPSS

Exploits0References169

OSV•added 2024/12/28 9:46 a.m.•1 views

CVE-2024-56676 thermal: testing: Initialize some variables annoteded with _free()

In the Linux kernel, the following vulnerability has been resolved: thermal: testing: Initialize some variables annoteded with free Variables annotated with free need to be initialized if the function can return before they get updated for the first time or the attempt to free the memory pointed ...

5.5CVSS6.5AI score0.00019EPSS

Exploits0References5

vulnersOsv•added 2024/11/27 7:0 p.m.•3 views

ai.langsa:ccaas-starter (>=cloud-0.1 <=cloud-0.2.1), be.mogo.generator:mogo-generator-model (=1.0.0.RELEASE) +436 more potentially affected by CVE-2024-49203 via com.querydsl:querydsl-apt (>=4.0.0 <=5.1.0)

com.querydsl:querydsl-apt MAVEN version =4.0.0, =cloud-0.1, =1.0.2.RELEASE, =1.0.0.RELEASE, =1.1.8.RELEASE, =1.1.5.RELEASE, =1.2.7.RELEASE, =1.0.0.RELEASE, =1.0.1, =1.0.1, =1.0.1, =2.0.1, =1.0.1, =1.0.1, =1.0.1, =2.1.17 and more Source cves: CVE-2024-49203 Source advisory: OSV:GHSA-6Q3Q-6V5J-H6VG...

5.8AI score0.00212EPSS

CVE-2024-9255

Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious...

7.8CVSS6.3AI score

NVD•added 2024/11/22 10:15 p.m.•20 views

CVE-2024-9251

Foxit PDF Reader Annotation Use-After-Free Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS0.00549EPSS

8.8CVSS7.6AI score0.01609EPSS

CVE-2024-9254

NVD•added 2024/11/22 10:15 p.m.•16 views

CVE-2024-9255

7.8CVSS0.01759EPSS

OSV•added 2024/11/22 10:15 p.m.•2 views

CVE-2024-9251

7.8CVSS4.7AI score

7.1CVSS4.9AI score0.00349EPSS

CVE-2024-9246

Foxit PDF Reader Annotation Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit...

CVE-2024-9247

Foxit PDF Reader Annotation Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS7.5AI score

NVD•added 2024/11/22 10:15 p.m.•18 views

CVE-2024-9247

7.8CVSS0.01126EPSS

NVD•added 2024/11/22 10:15 p.m.•10 views

CVE-2024-9246

7.1CVSS0.00349EPSS