CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1285 matches found

RedHat Linux•added 2025/07/28 10:12 p.m.•5 views

sqlite: Integer Truncation in SQLite

A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior...

9.8CVSS7.1AI score0.01629EPSS

Exploits3References6

SUSE CVE•added 2025/07/16 11:34 p.m.•1 views

SUSE CVE-2025-6965

There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above...

7.7CVSS7AI score0.01629EPSS

Exploits3References14

CNNVD•added 2025/07/15 12:0 a.m.•3 views

SQLite 安全漏洞

SQLite is a lightweight database from the SQLite open source, a relational database management system that adheres to ACID. A security vulnerability exists in SQLite versions prior to 3.50.2 that stems from the number of aggregated items may exceed the number of available columns, which may resul...

9.8CVSS7AI score0.01629EPSS

Exploits3References8

Packet Storm News•added 2025/07/10 12:0 a.m.•3 views

Beyond the Worst Case: Extending Differential Privacy Guarantees to Realistic Adversaries

Differential Privacy DP is a family of definitions that bound the worst-case privacy leakage of a mechanism. One important feature of the worst-case DP guarantee is it naturally implies protections against adversaries with less prior information, more sophisticated attack goals, and complex...

6.5AI score

Exploits0

OSV•added 2025/07/02 3:15 p.m.•1 views

CVE-2025-53494

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation Mediawiki - TwoColConflict Extension allows Stored XSS.This issue affects Mediawiki - TwoColConflict Extension: from 1.39.X before 1.39.13, from 1.42.X before 1.42.7, fr...

6.5CVSS5.8AI score

Exploits0References2

OSSF Malicious Packages•added 2025/07/01 2:33 p.m.•3 views

Malicious code in list_column_item (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 852a009865162cf31792b006bb5a76b659b3dad12f5ebf7815895ed6da956582 Any computer that has this package installed or running should be considered...

6.8AI score

Exploits0References1

OSV•added 2025/06/20 1:26 p.m.•1 views

OESA-2025-1660 wireshark security update

Wireshark allows you to examine protocol data stored in files or as it is captured from wired or wireless WiFi or Bluetooth networks, USB devices, and many other sources. It supports dozens of protocol capture file formats and understands more than a thousand protocols. Security Fixes: A...

7.8CVSS6.8AI score0.00138EPSS

Exploits2References3

Packet Storm News•added 2025/06/18 12:0 a.m.•2 views

Sudoku: Decomposing DRAM Address Mapping into Component Functions

Decomposing DRAM address mappings into component-level functions is critical for understanding memory behavior and enabling precise RowHammer attacks, yet existing reverse-engineering methods fall short. We introduce novel timing-based techniques leveraging DRAM refresh intervals and consecutive...

7AI score

Exploits0

CNVD•added 2025/06/06 12:0 a.m.•1 views

Wireshark Denial of Service Vulnerability (CNVD-2025-30216)

Wireshark is a very popular network packet analyzer that intercepts various network packets and displays packet details. A denial of service vulnerability exists in Wireshark. The vulnerability exists in Wireshark's column processing feature. When Wireshark attempts to process network packets or...

7.8CVSS7.1AI score0.00138EPSS

Exploits1References1

SUSE CVE•added 2025/06/05 3:22 a.m.•4 views

SUSE CVE-2025-5601