CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

54 matches found

JumpServer > 3.6.4 - Information Disclosure

JumpServer is an open source bastion host and a professional operation and maintenance security audit system. Starting in version 3.0.0 and prior to versions 3.5.5 and 3.6.4, session replays can download without authentication. Session replays stored in S3, OSS, or other cloud storage are not...

8.2CVSS6.6AI score0.88166EPSS

Exploits5References5

EUVD•added 2026/05/12 10:44 p.m.•8 views

EUVD-2026-29882

Warpgate is an open source SSH, HTTPS and MySQL bastion host for Linux. Prior to 0.23.3, the SSO flow does not validate the state parameter, which makes it possible for an attacker to trick a user into logging into the attacker's account, possibly convincing them to perform sensitive actions on t...

5.8CVSS5.8AI score0.00015EPSS

Exploits1References1

Positive Technologies•added 2026/05/12 12:0 a.m.•8 views

PT-2026-40469

Name of the Vulnerable Software and Affected Versions Warpgate versions prior to 0.23.3 Description The SSO flow fails to validate the state parameter. This allows an attacker to trick a user into logging into an account controlled by the attacker, which could lead the user to perform sensitive...

5.8CVSS5.8AI score0.00015EPSS

Exploits1References4

NVD•added 2026/03/13 7:54 p.m.•2 views

CVE-2026-31798

JumpServer is an open source bastion host and an operation and maintenance security audit system. Prior to v4.10.16-lts, JumpServer improperly validates certificates in the Custom SMS API Client. When JumpServer sends MFA/OTP codes via Custom SMS API, an attacker can intercept the request and...

5CVSS0.00025EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:30 a.m.•3 views

CVE-2023-43660

Warpgate is a smart SSH, HTTPS and MySQL bastion host for Linux that doesn't need special client apps. The SSH key verification for a user can be bypassed by sending an SSH key offer without a signature. This allows bypassing authentication under following conditions: 1. The attacker knows the...

8.1CVSS6.8AI score0.00038EPSS

Exploits0References1

RedhatCVE•added 2025/10/31 10:7 p.m.•3 views

CVE-2023-7325

Anheng Mingyu Operation and Maintenance Audit and Risk Control System up to 2023-08-10 contains a server-side request forgery SSRF vulnerability in the xmlrpc.sock handler. The product accepts specially crafted XML-RPC requests that can be used to instruct the server to connect to internal unix...

9.3CVSS7.1AI score0.00057EPSS

Exploits0References1

CVE•added 2025/10/30 9:17 p.m.•12 views

CVE-2023-7325

Anheng Mingyu Operation and Maintenance Audit and Risk Control System (versions up to 2023-08-10) contains an SSRF vulnerability in the xmlrpc.sock handler. The product accepts specially crafted XML-RPC requests that can direct the server to connect to internal Unix socket RPC endpoints and invok...

9.3CVSS6.8AI score0.00057EPSS

In wildExploits0References3

Vulnrichment•added 2025/10/30 9:17 p.m.•5 views

CVE-2023-7325 Mingyu Operations and Maintenance Audit and Risk Control System xmlrpc.sock SSRF

9.3CVSS6.8AI score0.00057EPSS

Exploits0References3

EUVD•added 2025/10/30 4:56 p.m.•4 views

EUVD-2025-37046

JumpServer is an open source bastion host and an operation and maintenance security audit system. Prior to v3.10.21-lts and v4.10.12-lts, a low-privileged authenticated user can invoke LDAP configuration tests and start LDAP synchronization by sending crafted messages to the /ws/ldap/ WebSocket...

7.1CVSS6.1AI score0.00047EPSS

Exploits1References1

NVD•added 2025/10/30 4:15 p.m.•11 views

CVE-2025-62712

JumpServer is an open source bastion host and an operation and maintenance security audit system. In JumpServer versions prior to v3.10.20-lts and v4.10.11-lts, an authenticated, non-privileged user can retrieve connection tokens belonging to other users via the super-connection API endpoint...

9.6CVSS0.00071EPSS

Exploits0References2

VulnCheck KEV•added 2025/10/30 12:0 a.m.•3 views

VulnCheck KEV: CVE-2023-7325

9.3CVSS5.9AI score0.00057EPSS

In wildExploits0References100

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-41181