CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-40164

Malicious code in bioql PyPI...

5.3CVSS6.5AI score0.00245EPSS

Exploits0References1

OSV•added 2024/08/31 2:15 a.m.•1 views

CVE-2024-39747

IBM Sterling Connect:Direct Web Services 6.0, 6.1, 6.2, and 6.3 uses default credentials for potentially critical functionality...

9.8CVSS5.8AI score0.00081EPSS

Exploits0References2

NVD•added 2024/08/31 2:15 a.m.•15 views

CVE-2024-39747

IBM Sterling Connect:Direct Web Services 6.0, 6.1, 6.2, and 6.3 uses default credentials for potentially critical functionality...

9.8CVSS0.00081EPSS

Exploits0References2

Vulnrichment•added 2024/08/31 1:1 a.m.•16 views

CVE-2024-39747 IBM Sterling Connect:Direct Web Services information disclosure

IBM Sterling Connect:Direct Web Services 6.0, 6.1, 6.2, and 6.3 uses default credentials for potentially critical functionality...

8.1CVSS6.9AI score0.00081EPSS

Exploits0References2

CVE•added 2024/08/31 1:1 a.m.•53 views

CVE-2024-39747

IBM Sterling Connect:Direct Web Services versions 6.0–6.3 are affected by CVE-2024-39747 due to the use of default credentials for potentially critical functionality. The Red Hat and IBM advisory entries corroborate the same issue and specify remediation paths: Affected products: IBM Sterling Con...

9.8CVSS8.2AI score0.00081EPSS

Exploits0References2Affected Software1

CNVD•added 2024/07/23 12:0 a.m.•5 views

Certification Vulnerabilities for Multiple SICAM Products Lacking Critical Functionality

The SICAM 8 power automation platform is a universal, integrated hardware and software-based solution for all applications in the power supply sector.The SICAM A8000 RTUs are modular devices for remote control and automation applications in all areas of energy supply.The SICAM EGS is the gateway ...

7.1CVSS7.1AI score0.00432EPSS

Exploits1References1

Code423n4•added 2023/05/04 12:0 a.m.•9 views

Zero address pauser assignment

Lines of code Vulnerability details Impact By allowing any address to be assigned as the pauser, the StrategyBase contract leaves itself vulnerable to losing critical functionality that controls token transfers in and out. Assigning a zero address would result in no valid pauser, preventing the...

7.2AI score

Exploits0

OSV•added 2022/04/01 11:15 p.m.•0 views

CVE-2022-0922

The software does not perform any authentication for critical system functionality...

6.5CVSS5.8AI score

Exploits0References1

OSV•added 2019/09/11 4:15 a.m.•9 views

CVE-2019-16214

Libra Core before 2019-09-03 has an erroneous regular expression for inline comments, which makes it easier for attackers to interfere with code auditing by using a nonstandard line-break character for a comment. For example, a Move module author can enter the // sequence which introduces a...

5.7CVSS7AI score

Exploits0References3

Prion•added 2019/09/11 4:15 a.m.•15 views

Code injection

3.5CVSS5.7AI score0.00249EPSS

Exploits1References3Affected Software1

Cvelist•added 2019/09/11 3:51 a.m.•11 views

CVE-2019-16214

5.7AI score0.00249EPSS

Exploits1References3

CVE•added 2019/09/11 3:51 a.m.•141 views

CVE-2019-16214

CVE-2019-16214 affects Libra Core prior to 2019-09-03, where an erroneous regular expression for inline comments lets a nonstandard line-break character (\r) appear to terminate a comment in audits, potentially misleading readers about code execution. The Move module author could place // followe...

5.7CVSS5.6AI score0.00249EPSS

Exploits1References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by