CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

218 matches found

GithubExploit•added 2025/11/29 5:20 p.m.•152 views

Exploit for Path Traversal in Rarlab Winrar

☠️ CVE-2025-8088 WinRAR Exploit Tool ☠️ SYSTEM ACCESS:...

8.8CVSS6.8AI score0.85778EPSS

Exploits35

Tenable Nessus•added 2025/11/05 12:0 a.m.•6 views

Samba Information Disclosure (CVE-2025-9640)

In the vfsstreamsxattr module, where uninitialized heap memory could be written into alternate data streams. This allows an authenticated user to read residual memory content that may include sensitive data, resulting in an information disclosure vulnerability. Note that Nessus has not tested for...

4.3CVSS6.3AI score0.00421EPSS

Exploits0References2

GithubExploit•added 2025/11/02 7:23 p.m.•154 views

Exploit for Path Traversal in Rarlab Winrar

🧩 CVE-2025-8088 — WinRAR Zero-Day Vulnerability Type: Pat...

8.8CVSS8.1AI score0.85778EPSS

Exploits35

AstraLinux•added 2025/11/01 10:54 a.m.•6 views

Astra Linux – Vulnerability in Samba

A flaw was discovered in Samba, specifically in the vfsstreamsxattr module. In this module, uninitialized heap memory could be written into alternate data streams. This allows an authenticated user to read residual memory content, which may include sensitive data, resulting in an information...

4.3CVSS7.5AI score0.00421EPSS

Exploits0References3

Amazon•added 2025/10/27 12:0 a.m.•7 views

Medium: samba

Issue Overview: A flaw was found in Samba, in the vfsstreamsxattr module, where uninitialized heap memory could be written into alternate data streams. This allows an authenticated user to read residual memory content that may include sensitive data, resulting in an information disclosure...

4.3CVSS6.1AI score0.00421EPSS

Exploits0

OSV•added 2025/10/21 7:17 p.m.•16 views

JLSEC-2025-182 An issue was discovered in libgit2 before 0.28.4 and 0.9x before 0.99.0

An issue was discovered in libgit2 before 0.28.4 and 0.9x before 0.99.0. path.c mishandles equivalent filenames that exist because of NTFS Alternate Data Streams. This may allow remote code execution when cloning a repository. This issue is similar to CVE-2019-1352...

9.8CVSS8.2AI score0.0511EPSS

Exploits0References14

OSV•added 2025/10/15 1:16 p.m.•4 views

DEBIAN-CVE-2025-9640

A flaw was found in Samba, in the vfsstreamsxattr module, where uninitialized heap memory could be written into alternate data streams. This allows an authenticated user to read residual memory content that may include sensitive data, resulting in an information disclosure vulnerability...

4.3CVSS6AI score0.00421EPSS

Exploits0References1

OSV•added 2025/10/15 1:16 p.m.•4 views

AZL-68936 CVE-2025-9640 affecting package samba 4.18.3-2

4.3CVSS7.2AI score0.00421EPSS

Exploits0References1

OSV•added 2025/10/15 1:16 p.m.•5 views

ALPINE-CVE-2025-9640

4.3CVSS5.8AI score0.00421EPSS

Exploits0References1

NVD•added 2025/10/15 1:16 p.m.•5 views

CVE-2025-9640

4.3CVSS0.00421EPSS

Exploits0References6

Cvelist•added 2025/10/15 12:47 p.m.•11 views

CVE-2025-9640 Samba: vfs_streams_xattr uninitialized memory write possible

4.3CVSS0.00421EPSS

Exploits0References3

CVE•added 2025/10/15 12:47 p.m.•77 views

CVE-2025-9640

The CVE-2025-9640 advisory concerns Samba’s vfs_streams_xattr module, where uninitialized heap memory can be written to alternate data streams, enabling an authenticated user to read residual memory and disclose sensitive data. Public references in Debian LTS (DLA-4384-1) state a fix in Samba 2:4...

4.3CVSS5.4AI score0.00421EPSS

Exploits0References6