CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1022 matches found

Ivanti Avalanche - Remote Code Execution

An unauthenticated attacker could achieve the code execution through a RemoteControl server. id: CVE-2023-32563 info: name: Ivanti Avalanche - Remote Code Execution author: princechaddha severity: critical description: An unauthenticated attacker could achieve the code execution through a...

9.8CVSS7.7AI score0.93007EPSS

Exploits0References4

Nuclei•added 3 days ago•20 views

Ivanti Avalanche 6.3.2 - Local File Inclusion

Ivanti Avalanche 6.3.2 is vulnerable to local file inclusion because it allows remote unauthenticated user to access files that reside outside the 'image' folder. id: CVE-2021-30497 info: name: Ivanti Avalanche 6.3.2 - Local File Inclusion author: gy741 severity: high description: Ivanti Avalanch...

7.5CVSS7.2AI score0.92672EPSS

Exploits1References5

Nuclei•added 4 days ago•24 views

Ivanti Avalanche SmartDeviceServer - XML External Entity

XXE in SmartDeviceServer in Ivanti Avalanche 6.3.1 allows a remote unauthenticated attacker to read arbitrary files on the server. id: CVE-2024-38653 info: name: Ivanti Avalanche SmartDeviceServer - XML External Entity author: DhiyaneshDK severity: high description: | XXE in SmartDeviceServer in...

8.2CVSS7.5AI score0.90726EPSS

Exploits1References3

Packet Storm News•added 2026/04/27 12:0 a.m.•4 views

Detecting Avalanche Effect in Adversarial Settings: Spotting the Encryption Loops in Ransomware

Spotting encryption loops in binary-only ransomware is a critical reverse engineering task. Since the existence of avalanche effect, an intrinsic characteristic of any secure encryption algorithms, is unavoidable during a victim data encryption attack, it is a very promising direction to spot...

5.4AI score

Exploits0

Packet Storm News•added 2026/03/08 12:0 a.m.•0 views

Energy-Time Attack on Detectors in Quantum Key Distribution

Quantum key distribution is unbreakable in theory but may be hacked via imperfections in its hardware implementations. While many imperfections have been mitigated by countermeasures and advanced security proofs, several remain unsolved. One of these is a superlinear behaviour in single-photon...

5.8AI score

Exploits0

Packet Storm News•added 2026/03/03 12:0 a.m.•0 views

Blockchain Communication Vulnerabilities

Blockchains are diverse in the way they handle communications between their nodes to disseminate information, mitigate attacks, and agree on the next block. While security vulnerabilities have been identified, they rely on an attack custom-made for a specific blockchain communication protocol. To...

6AI score

Exploits0

RedhatCVE•added 2026/01/09 9:56 a.m.•7 views

CVE-2020-12442

Ivanti Avalanche 6.3 allows a SQL injection that is vaguely associated with the Apache HTTP Server, aka Bug 683250...

9.8CVSS8AI score0.02833EPSS

Exploits0References1

vulnersOsv•added 2026/01/08 9:46 p.m.•0 views

avalanche-config-installer (>=0.2.36 <=0.2.43), avalanche-installer (>=0.0.18 <=0.0.32) +39 more potentially affected by unknown CVE via aws-sdk-s3 (>=0.0.26-alpha <=0.9.0)

aws-sdk-s3 CARGO version =0.0.26-alpha, =0.2.36, =0.0.18, =0.0.42, =0.0.5, =0.0.24, =0.0.1, =0.0.0, =0.0.46, =0.1.7, =0.4.0, =0.4.0, =0.1.1, =0.1.0, =0.8.0, =0.8.0, =0.12.0 and more Source cves: unknown CVE Source advisory: OSV:GHSA-G59M-GF8J-GJF5...

5.8AI score

Exploits0

vulnersOsv•added 2025/11/20 5:36 p.m.•2 views

@avalabs/avalanche-module (>=0.0.0-CP-8940-20240801175729 <=3.8.0), @avalabs/bitcoin-module (>=0.0.0-CP-8940-20240801175729 <=3.8.0) +19 more potentially affected by CVE-2025-64767 via @hpke/core (>=1.2.5 <=1.7.4)

@hpke/core NPM version =1.2.5, =0.0.0-CP-8940-20240801175729, =0.0.0-CP-8940-20240801175729, =2.8.0-canary.a436aaa.0, =2.8.0-alpha.197, =2.8.0-alpha.197, =2.8.0-alpha.197, =2.8.0-alpha.197, =2.8.0-canary.a436aaa.0, =2.8.0-alpha.197, =2.8.0-alpha.197, =2.8.0-alpha.197, =2.8.0-canary.a436aaa.0,...

9.1CVSS5.8AI score0.0003EPSS

Exploits0