CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

33 matches found

Network Log Analysis: Why Collecting Logs is Not Enough

Network Log Analysis helps teams turn raw logs into useful alerts, timelines, audit records, and incident evidence instead of storing data without action...

5.5AI score

Exploits0

RedhatCVE•added 2026/05/27 8:10 p.m.•5 views

CVE-2026-46057

A flaw was found in the Linux kernel's Landlock security module regarding the inheritance of LOGSUBDOMAINSOFF across process forks. When a process mutes subdomain logs using landlockrestrictself without creating a domain, this setting is not properly transferred to forked child processes...

5.8AI score0.00022EPSS

Exploits0References4

Cvelist•added 2026/05/27 12:57 p.m.•33 views

CVE-2026-46057 landlock: Fix LOG_SUBDOMAINS_OFF inheritance across fork()

In the Linux kernel, the following vulnerability has been resolved: landlock: Fix LOGSUBDOMAINSOFF inheritance across fork hookcredtransfer only copies the Landlock security blob when the source credential has a domain. This is inconsistent with landlockrestrictself which can set LOGSUBDOMAINSOFF...

0.00022EPSS

Exploits0References3

Positive Technologies•added 2026/05/27 12:0 a.m.•9 views

PT-2026-43924

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Landlock security module where the LOG SUBDOMAINS OFF setting is not correctly inherited across fork. The hook cred transfer function only copies the Landlock...

9.8CVSS5.9AI score0.00254EPSS

Exploits12References279

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2021-29597

Malicious code in bioql PyPI...

5.3CVSS5.6AI score0.00697EPSS

Exploits1References7

RedhatCVE•added 2025/05/22 9:6 p.m.•10 views

CVE-2021-42633

PrinterLogic Web Stack versions 19.1.1.13 SP9 and below are vulnerable to SQL Injection, which may allow an attacker to access additional audit records...

5.3CVSS7.5AI score0.00697EPSS

Exploits1

RedhatCVE•added 2025/05/22 3:25 p.m.•6 views

CVE-2020-27628

In JetBrains TeamCity before 2020.1.5, the Guest user had access to audit records...

4.3CVSS6.9AI score0.00003EPSS

Exploits0

BDU FSTEC•added 2024/09/12 12:0 a.m.•1 views

The vulnerability of the audit plugin (of the TracePluginImpl class in the TracePluginImpl module) of the “Red Database” database management system allows a perpetrator to influence audit records.

The vulnerability of the audit plugin of the TracePluginImpl class within the TracePluginImpl module of the “Red Database” database management system relates to the possibility of assigning incorrect severity and facility parameters to certain events when these events are recorded in the OS syslo...

5.3CVSS5.5AI score

Exploits0References1Affected Software1

NVD•added 2024/04/10 4:15 p.m.•10 views

CVE-2023-6916

Audit records for OpenAPI requests may include sensitive information. This could lead to unauthorized accesses and privilege escalation...

7.5CVSS7AI score0.0014EPSS

Exploits0References1

Cvelist•added 2024/04/10 3:50 p.m.•13 views

CVE-2023-6916 Information disclosure via audit records for OpenAPI requests in Guardian/CMC before 23.4.1

Audit records for OpenAPI requests may include sensitive information. This could lead to unauthorized accesses and privilege escalation...

7.5CVSS7.2AI score0.0014EPSS

Exploits0References1

CVE•added 2024/04/10 3:50 p.m.•54 views

CVE-2023-6916

CVE-2023-6916 affects Nozomi Guardian/CMC before version 23.4.1. The issue is that audit records for OpenAPI requests may contain sensitive information, creating a path to unauthorized access and privilege escalation. The connected documents explicitly associate this vulnerability with Guardian/C...

7.5CVSS6.7AI score0.0014EPSS

Exploits0References1

NOZOMI•added 2024/04/10 12:0 a.m.•3 views

Information disclosure via audit records for OpenAPI requests in Guardian/CMC before 23.4.1

Summary Audit records for OpenAPI requests may include sensitive information. Impact Unauthorized access, privilege escalation. Mitigation Nozomi Networks recommends creating specific users for OpenAPI usage, with only the necessary permissions to access the required data sources. Additionally, i...

7.5CVSS6.8AI score0.0014EPSS

Exploits0Affected Software2

Positive Technologies•added 2024/04/10 12:0 a.m.•2 views

PT-2024-5072 · Nozomi · Nozomi Central Management Console +1

Name of the Vulnerable Software and Affected Versions: Nozomi Guardian and Nozomi Central Management Console CMC affected versions not specified OpenAPI affected versions not specified Description: The issue is related to insufficient protection of audit records for OpenAPI requests, which may...

9CVSS6.8AI score0.0014EPSS

Exploits0References10

OSV•added 2022/02/02 6:15 p.m.•2 views

CVE-2021-42633

PrinterLogic Web Stack versions 19.1.1.13 SP9 and below are vulnerable to SQL Injection, which may allow an attacker to access additional audit records...

5.3CVSS5.8AI score0.00697EPSS

Exploits1References7

NVD•added 2022/02/02 6:15 p.m.•11 views

CVE-2021-42633

PrinterLogic Web Stack versions 19.1.1.13 SP9 and below are vulnerable to SQL Injection, which may allow an attacker to access additional audit records...

5.3CVSS0.00697EPSS

Exploits1References7

Cvelist•added 2022/02/02 5:10 p.m.•13 views

CVE-2021-42633

PrinterLogic Web Stack versions 19.1.1.13 SP9 and below are vulnerable to SQL Injection, which may allow an attacker to access additional audit records...

5.9AI score0.00697EPSS

Exploits1References7

OSV•added 2020/11/16 3:15 p.m.•2 views

CVE-2020-27628

In JetBrains TeamCity before 2020.1.5, the Guest user had access to audit records...

4.3CVSS5.8AI score0.00003EPSS

Exploits0References2

NVD•added 2020/11/16 3:15 p.m.•15 views

CVE-2020-27628

In JetBrains TeamCity before 2020.1.5, the Guest user had access to audit records...

4.3CVSS4.6AI score0.00003EPSS

Exploits0References2