CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-680612 advisory. libtiff's tiffcrop tool has a uint32t underflow which leads to out of bounds read and write in the extractContigSamples8bits routine. An attacker who supplies a...

5.5CVSS6.9AI score0.00025EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-51205

Malicious code in bioql PyPI...

7.8CVSS5.5AI score0.00066EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2023-53548

Malicious code in bioql PyPI...

8.1CVSS7.9AI score0.00259EPSS

Exploits1References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-41711

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00169EPSS

Exploits1References1

Tenable Nessus•added 2025/09/10 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2016-2495

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SampleTable.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-06-01 allows remote...

7.1CVSS6.3AI score0.00284EPSS

Exploits0References2

Tenable Nessus•added 2025/09/10 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2017-0552

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A remote denial of service vulnerability in libavc in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot. Thi...

7.1CVSS6.3AI score0.00198EPSS

Exploits0References2

Tenable Nessus•added 2025/08/27 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2018-11230

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - jbig2addpage in jbig2enc.cc in libjbig2enc.a in jbig2enc 0.29 allows remote attackers to cause a denial of service use-after-free or possibly have unspecified...

8.8CVSS7.4AI score0.00601EPSS

Exploits0References2

OSV•added 2025/08/25 2:15 p.m.•3 views

CVE-2025-54486

A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch 35a819fa. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.This...

9.8CVSS8.1AI score

Exploits0References2

Tenable Nessus•added 2025/08/25 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2017-6842

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ColorChanger::GetColorFromStack function in colorchanger.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service NULL pointer dereference v...

5.5CVSS6.8AI score0.00393EPSS

Exploits0References2

Tenable Nessus•added 2025/08/25 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2017-6848

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The PoDoFo::PdfXObject::PdfXObject function in PdfXObject.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service NULL pointer dereference via ...

5.5CVSS6.9AI score0.00176EPSS

Exploits0References2

NVD•added 2025/08/21 9:15 p.m.•11 views

CVE-2009-20004

gAlan 0.2.1, a modular audio processing environment for Windows, is vulnerable to a stack-based buffer overflow when parsing .galan files. The application fails to properly validate the length of input data, allowing a specially crafted file to overwrite the stack and execute arbitrary code...

8.4CVSS0.04186EPSS

Exploits0References7

Tenable Nessus•added 2025/08/18 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2023-36747

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple heap-based buffer overflow vulnerabilities exist in the fstReaderIterBlocks2 fstWritex len functionality of GTKWave 3.3.115. A specially crafted .fst...

7.8CVSS7.3AI score0.00049EPSS

Exploits1References2

BDU FSTEC•added 2025/08/11 12:0 a.m.•1 views

The vulnerability in the web interface for managing the Cisco Unified Intelligence Center reporting software and the Cisco Unified Contact Center Express operator automation software allows a malicious individual to execute arbitrary commands and increase their privileges.

The vulnerability in the web interface for creating reports using the Cisco Unified Intelligence Center and the Cisco Unified Contact Center Express software lies in the unlimited download of dangerous files. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands and...

6.5CVSS5.8AI score0.00959EPSS

Exploits0References3Affected Software1

Cvelist•added 2025/06/03 12:0 a.m.•14 views

CVE-2025-45854

/server/executeExec of JEHC-BPM 2.0.1 allows attackers to execute arbitrary code via execParams...

10CVSS0.21433EPSS

Exploits1References3

RedhatCVE•added 2025/05/23 3:45 a.m.•8 views

CVE-2023-32541

A use-after-free vulnerability exists in the footerr functionality of Hancom Office 2020 HWord 11.0.0.7520. A specially crafted .doc file can lead to a use-after-free. An attacker can trick a user into opening a malformed file to trigger this vulnerability...

8.8CVSS6.8AI score0.00325EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 7:12 a.m.•4 views

CVE-2017-10976

When SWFTools 0.9.2 processes a crafted file in ttftool, it can lead to a heap-based buffer over-read in the readBlock function in lib/ttf.c...

7.5CVSS6.9AI score0.00334EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by