CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-28079

Malware in sbrugna...

7.5CVSS7.5AI score0.00598EPSS

RedhatCVE•added 2025/05/22 4:54 p.m.•4 views

CVE-2020-9501

Attackers can obtain Cloud Key information from the Dahua Web P2P control in specific ways. Cloud Key is used to authenticate the connection between the client tool and the platform. An attacker may use the leaked Cloud Key to impersonate the client to connect to the platform, resulting in...

5.5CVSS6.7AI score0.0006EPSS

RedhatCVE•added 2025/05/22 4:10 p.m.•4 views

CVE-2020-11607

An issue was discovered on Samsung mobile devices with P9.0 and Q10.0 software. Notification exposure occurs in Lockdown mode because of the Edge Lighting application. The Samsung ID is SVE-2020-16680 April 2020...

5.3CVSS7.1AI score0.00132EPSS

RedhatCVE•added 2025/05/22 4:10 p.m.•5 views

CVE-2020-11606

An issue was discovered on Samsung mobile devices with Q10.0 software. Information about application preview in the Secure Folder leaks on a locked device. The Samsung ID is SVE-2019-16463 April 2020...

2.4CVSS7AI score0.00029EPSS

SUSE CVE•added 2023/02/15 4:3 a.m.•2 views

SUSE CVE-2020-5260

Affected versions of Git have a vulnerability whereby Git can be tricked into sending private credentials to a host controlled by an attacker. Git uses external "credential helper" programs to store and retrieve passwords or other credentials from secure storage provided by the operating system...

7.5CVSS9.7AI score0.35581EPSS

Exploits2References12

NVD•added 2022/06/21 5:15 p.m.•10 views

CVE-2021-36761

The GeoAnalytics feature in Qlik Sense April 2020 patch 4 allows SSRF...

5.3CVSS0.00365EPSS

CNNVD•added 2022/06/21 12:0 a.m.•4 views

Qlik Sense 代码问题漏洞

Qlik Sense is an application from Qlik USA. that allows users to create visualizations, charts, interactive dashboards, and analytics applications for local and offline use. A code issue vulnerability exists in Qlik Sense April 2020 patch 4, which stems from a server-side request forgery...

5.3CVSS5.9AI score0.00365EPSS

Tenable Nessus•added 2022/06/10 12:0 a.m.•279 views

Security Updates for Microsoft Office Products C2R (April 2020)

The Microsoft Office Products are missing security updates. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists when Microsoft Office improperly loads arbitrary type libraries. An attacker could then install programs; view, change, or delete dat...

9.3CVSS8.8AI score0.40161EPSS

Exploits0References7

Tenable Nessus•added 2022/06/10 12:0 a.m.•39 views

Security Updates for Microsoft Publisher Products C2R (April 2020)

The Microsoft Publisher Products are missing a security update. It is, therefore, affected by the following vulnerability : - A remote code execution vulnerability exists when Microsoft Office improperly loads arbitrary type libraries. An attacker could then install programs; view, change, or...

8.8CVSS8.7AI score0.33494EPSS

IBM Security Bulletins•added 2021/05/04 5:16 p.m.•23 views

Security Bulletin: Multiple vulnerabilities in IBM Java SDK addressed in IBM Cloud Pak System (April 2020 updates)

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition used in IBM Cloud Pak System. These issues were disclosed as part of the IBM Java SDK quarterly April 2020 CPU updates. IBM Cloud Pak System addressed vulnerabilities. Vulnerability Details CVEID: CVE-2020-2604...

8.3CVSS1.1AI score0.02622EPSS

IBM Security Bulletins•added 2021/03/01 4:34 p.m.•26 views

Security Bulletin: Multiple Vulnerabilities in IBM Java Runtime affect IBM Cognos Command Center

Summary There are vulnerabilities in IBM® Runtime Environment Java™ Technology Edition, Version 8 that is used by IBM Cognos Command Center. These issues were disclosed as part of the IBM Java SDK update for April 2020 and July 2020. Vulnerability Details CVEID: CVE-2020-2781 DESCRIPTION: An...

5.3CVSS2.7AI score0.00461EPSS

IBM Security Bulletins•added 2020/10/27 1:52 p.m.•42 views

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Z Development and Test Environment - April 2020

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 8 that is used by IBM Z Development and Test Environment. These issues were disclosed as part of the IBM Java SDK updates in October 2019 CVE-2019-2989, in January 2020 CVE-2020-2593, CVE-2020-2654 and in Apr...

6.8CVSS2AI score0.02946EPSS

OpenVAS•added 2020/10/20 12:0 a.m.•20 views

Apache Tomcat HTTP/2 Vulnerability (Oct 2020) - Windows

Apache Tomcat is prone to an information disclosure vulnerability in HTTP/2. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

4.3CVSS4.7AI score0.12123EPSS

IBM Security Bulletins•added 2020/08/05 6:13 a.m.•52 views

Security Bulletin: Multiple Vulnerabilities in IBM® Java SDK affect WebSphere Application Server shipped with IBM Tivoli Netcool Performance Manager for Wireline April 2020 CPU plus deferred CVE-2019-2949 and CVE-2020-2654

Summary There are vulnerabilities in IBM® SDK Java™ Technology Edition, Version that is used by Tivoli Netcool Performance Manager. This issues is disclosed as part of the IBM Java SDK updates for April 2020. Information about a security vulnerability affecting IBM WebSphere Application Server ha...

0.1AI score0.00551EPSS

IBM Security Bulletins•added 2020/06/09 2:20 a.m.•47 views

Security Bulletin: Multiple security vulnerabilities has been identified in IBM WebSphere Application Server shipped with Tivoli Netcool/OMNIbus WebGUI - April 2020 CPU plus deferred CVE-2019-2949 and CVE-2020-2654

Summary Websphere Application Server WAS is shipped as a component of Tivoli Netcool/OMNIbus WebGUI. Information about security vulnerabilities affecting WAS has been published in a security bulletin. Vulnerability Details Refer to the security bulletinss listed in the Remediation/Fixes section...

6.8CVSS2.6AI score0.00551EPSS

IBM Security Bulletins•added 2020/06/05 4:22 a.m.•29 views

6.8CVSS2.5AI score0.00551EPSS

IBM Security Bulletins•added 2020/05/28 8:43 p.m.•33 views

Security Bulletin: Multiple vulnerabilities have been identified in IBM WebSphere Application Server shipped with IBM Security Identity Manager

Summary IBM WebSphere Application Server WAS is shipped with IBM Security Identity Manager ISIM. Information about security vulnerabilities affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Refer to the security bulletins listed in the...

6.8CVSS2.8AI score0.00551EPSS

IBM Security Bulletins•added 2020/05/14 6:22 p.m.•27 views

Security Bulletin: Multiple vulnerabilities in IBM® Java SDK affect WebSphere Service Registry and Repository and WebSphere Service Registry and Repository Studio April 2020 CPU plus deferred CVE-2019-2949 and CVE-2020-2654

Summary Vulnerabilities in IBM® SDK Java Technology Edition, Versions 7 and 8 used by WebSphere Service Registry and Repository and WebSphere Service Registry and Repository Studio. These issues were disclosed as part of the IBM Java SDK updates in April 2020. These issues are also addressed by...

6.8CVSS0.9AI score0.00551EPSS

OSV•added 2020/05/13 4:15 p.m.•1 views

CVE-2020-9501

5.5CVSS6.1AI score0.0006EPSS