CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

32 matches found

Circl•added 2026/03/16 3:1 a.m.•2 views

CVE-2026-32941

creationtimestamp| type| source ---|---|--- 2026-03-16 03:01:34+00:00| published-proof-of-concept| https://github.com/BishopFox/sliver/security/advisories/GHSA-97vp-pwqj-46qc...

7.1CVSS6.3AI score0.00062EPSS

Exploits1References1

CNNVD•added 2026/03/07 12:0 a.m.•3 views

Sliver 代码问题漏洞

Sliver is an open-source, cross-platform opponent simulation/red team framework developed by Bishop Fox. It can be used by organizations of various sizes for security testing. Versions of Sliver prior to 1.7.3 have code vulnerabilities; these vulnerabilities stem from Protobuf deserialization log...

6.5CVSS7.3AI score0.00035EPSS

Exploits1References2

OSV•added 2026/02/17 6:9 p.m.•4 views

GO-2026-4445 Sliver Vulnerable to Website Path Traversal / Arbitrary File Read (Authenticated) in github.com/bishopfox/sliver

Sliver Vulnerable to Website Path Traversal / Arbitrary File Read Authenticated in github.com/bishopfox/sliver...

6.5CVSS5.5AI score0.00023EPSS

Exploits1References3

GithubExploit•added 2025/12/04 11:31 p.m.•132 views

Exploit for CVE-2025-6980

Arista NGFW Sensitive Information Disclosure Check Arista NGF...

7.5CVSS6.5AI score0.00053EPSS

Exploits2

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2022-39503

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00336EPSS

Exploits0References1

OSV•added 2025/03/03 7:22 p.m.•4 views

GO-2025-3472 SSRF in sliver teamserver in github.com/bishopfox/sliver

SSRF in sliver teamserver in github.com/bishopfox/sliver...

6.9CVSS5.3AI score0.00814EPSS

Exploits1References4

Schneier on Security•added 2024/05/22 11:3 a.m.•11 views

Unredacting Pixelated Text

Experiments in unredacting text that has been pixelated...

7.3AI score

Exploits0

GithubExploit•added 2024/01/10 6:26 a.m.•352 views

Exploit for Server-Side Request Forgery in Anyscale Ray

CVE-2023-48022 CVE-2023-48022 explo...

9.8CVSS8.8AI score0.92192EPSS

Exploits6

The Hacker News•added 2023/07/04 6:58 a.m.•59 views

Alert: 330,000 FortiGate Firewalls Still Unpatched to CVE-2023-27997 RCE Flaw

No less than 330,000 FortiGate firewalls are still unpatched and vulnerable to CVE-2023-27997, a critical security flaw affecting Fortinet devices that has come under active exploitation in the wild. Cybersecurity firm Bishop Fox, in a report published last week, said that out of nearly 490,000...

9.8CVSS8AI score0.91909EPSS

Exploits9

CNNVD•added 2023/06/26 12:0 a.m.•2 views

编号撤回

Sliver is Bishop Fox open source an open source cross-platform adversary simulation / red team framework. It can be used by organizations of all sizes to perform security testing. This CVE number has been withdrawn...

5.4AI score

Exploits0References6

GithubExploit•added 2023/06/21 9:22 p.m.•363 views

Exploit for Out-of-bounds Write in Fortinet Fortios

CVE-2022-42475 Background This is the exploit for the blog...

9.8CVSS9.8AI score0.94005EPSS

Exploits11

Circl•added 2023/06/20 6:36 p.m.•2 views

CVE-2023-35170

creationtimestamp| type| source ---|---|--- 2023-06-20 18:36:50+00:00| published-proof-of-concept| https://github.com/BishopFox/sliver/security/advisories/GHSA-8jxm-xp43-qh3q 2023-06-20 18:36:50+00:00| published-proof-of-concept|...

5.8AI score

Exploits0References1

NVD•added 2022/10/14 4:15 a.m.•15 views

CVE-2022-36803

The MasterUserEdit API in Atlassian Jira Align Server before version 10.109.2 allows An authenticated attacker with the People role permission to use the MasterUserEdit API to modify any users role to Super Admin. This vulnerability was reported by Jacob Shafer from Bishop Fox...

8.8CVSS0.00336EPSS

Exploits0References1

Prion•added 2022/10/14 4:15 a.m.•18 views

Design/Logic Flaw

6.5CVSS8.4AI score0.00336EPSS

Exploits0References1Affected Software1

CVE•added 2022/10/14 3:45 a.m.•65 views

CVE-2022-36803

The CVE-2022-36803 vulnerability affects Atlassian Jira Align Server prior to version 10.109.2, due to improper access control in the MasterUserEdit API. An authenticated attacker with the People role can use MasterUserEdit to elevate any user’s role to Super Admin. The issue is explicitly tied t...

8.8CVSS8.4AI score0.00336EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2022/10/14 3:45 a.m.•17 views

CVE-2022-36803

6.5AI score0.00336EPSS

Exploits0References1

Cvelist•added 2022/10/14 3:45 a.m.•18 views

CVE-2022-36803

8.7AI score0.00336EPSS

Exploits0References1

Github Security Blog•added 2022/10/07 7:31 a.m.•16 views

Twisted vulnerable to HTTP Request Smuggling Attacks

Impact Twisted Web is vulnerable to request smuggling attacks: 1. "When presented with two content-length headers, Twisted Web ignored the first header. When the second content-length was set to zero this caused Twisted Web to interpret the request body as a pipelined request. According to RFC 72...

7AI score

Exploits0References4Affected Software1

The Hacker News•added 2022/07/16 5:7 a.m.•70 views

New Netwrix Auditor Bug Could Let Attackers Compromise Active Directory Domain

Researchers have disclosed details about a security vulnerability in the Netwrix Auditor application that, if successfully exploited, could lead to arbitrary code execution on affected devices. "Since this service is typically executed with extensive privileges in an Active Directory environment,...

2.6AI score

Exploits0

Atlassian•added 2022/07/15 8:57 p.m.•30 views

Jira Align - Improper Authorization in MasterUserEdit API - CVE-2022-36803

The MasterUserEdit API in Atlassian Jira Align before version 10.109.2 allows an authenticated attacker with the People role permission can use the MasterUserEdit API to modify any users role to Super Admin. This vulnerability was reported by Jacob Shafer from Bishop Fox. Affected versions: versi...

8.8CVSS8AI score0.00336EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by