CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

This update for glibc fixes the following issues: CVE-2025-8058: Fixed double-free after allocation failure in regcomp. bsc1246965 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

6.6CVSS6.2AI score0.00027EPSS

Exploits0References6

RedhatCVE•added 2025/08/22 9:32 a.m.•10 views

CVE-2025-57730

In JetBrains IntelliJ IDEA before 2025.2 hTML injection was possible via Remote Development feature...

5.2CVSS7.6AI score0.00001EPSS

Exploits0References1

Tenable Nessus•added 2025/08/22 12:0 a.m.•3 views

IntelliJ IDEA < 2025.2 Multiple Vulnerabilities (macOS)

The version of IntelliJ IDEA installed on the remote host is prior to 2025.2. It is, therefore, affected by a multiple vulnerabilities as referenced in the advisory. - In JetBrains IntelliJ IDEA before 2025.2 credentials disclosure was possible via remote reference. CVE-2025-57727 - In JetBrains...

7.5CVSS5.7AI score0.00017EPSS

Exploits0References5

OPENSUSE Linux•added 2025/08/22 12:0 a.m.•2 views

abseil-cpp-devel-20250814.0-2.1 on GA media (moderate)

abseil-cpp-devel-20250814.0-2.1 on GA media Announcement ID: openSUSE-SU-2025:15474-1 Rating: moderate Cross-References: CVE-2025-0838 CVSS scores: CVE-2025-0838 SUSE : 5.6 CVSS:3.1/AV:A/AC:H/PR:L/UI:R/S:U/C:L/I:H/A:L CVE-2025-0838 SUSE : 5.9...

5.9CVSS5.7AI score0.00128EPSS

Exploits0

Redos•added 2025/08/22 12:0 a.m.•2 views

ROS-20250822-16

A vulnerability in the 2D component of the Oracle Java SE software platform and Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines is related to insufficient input validation. and Oracle GraalVM Enterprise Edition virtual machines is related to insufficient input...

8.1CVSS8.2AI score0.02123EPSS

Exploits1

Cvelist•added 2025/08/21 4:3 p.m.•7 views

CVE-2025-57753 vite-plugin-static-copy files not included in `src` are accessible with a crafted request

vite-plugin-static-copy is rollup-plugin-copy for Vite with dev server support. Files not included in src are accessible with a crafted request. The vulnerability is fixed in 2.3.2 and 3.1.2...

6CVSS0.00191EPSS

Exploits0References1

Fedora•added 2025/08/21 12:55 a.m.•4 views

[SECURITY] Fedora 42 Update: python3.6-3.6.15-49.fc42

Python 3.6 package for developers. This package exists to allow developers to test their code against an older version of Python. This is not a full Python stack and if you wish to run your applications with Python 3.6, see other distributions that support it, such as CentOS or RHEL with Software...

7.5CVSS7.2AI score0.01007EPSS

Exploits0

Tenable Nessus•added 2025/08/21 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2023-6955

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A missing authorization check vulnerability exists in GitLab Remote Development affecting all versions prior to 16.5.6, 16.6 prior to 16.6.4 and 16.7 prior to...

6.6CVSS6AI score0.00067EPSS

Exploits0References2

OSV•added 2025/08/21 12:0 a.m.•0 views

OPENSUSE-SU-2025:15473-1 abseil-cpp-devel-20250814.0-2.1 on GA media

These are all security issues fixed in the abseil-cpp-devel-20250814.0-2.1 package on the GA media of openSUSE Tumbleweed...

9.8CVSS5.8AI score0.00128EPSS

Exploits0References1

Tenable Nessus•added 2025/08/21 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2024-21098

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Compiler. Supported versions that are affect...

3.7CVSS6.1AI score0.00117EPSS

Exploits0References2

Veracode•added 2025/08/20 10:54 a.m.•1 views

Remote Code Execution (RCE)

@nestjs/devtools-integration is vulnerable to Remote Code Execution RCE. The vulnerability is due to improper sandboxing and missing cross-origin protections due to unsafe execution of attacker-controlled input in a JavaScript sandbox via the /inspector/graph/interact endpoint...

9.4CVSS7.9AI score0.35077EPSS

Exploits4References7Affected Software1

OSV•added 2025/08/20 10:15 a.m.•2 views

CVE-2025-57730

In JetBrains IntelliJ IDEA before 2025.2 hTML injection was possible via Remote Development feature...

4.6CVSS5.8AI score

Exploits0References1

NVD•added 2025/08/20 10:15 a.m.•5 views

CVE-2025-57730

In JetBrains IntelliJ IDEA before 2025.2 hTML injection was possible via Remote Development feature...

5.2CVSS0.00001EPSS

Exploits0References1

Vulnrichment•added 2025/08/20 9:13 a.m.•3 views

CVE-2025-57730

In JetBrains IntelliJ IDEA before 2025.2 hTML injection was possible via Remote Development feature...

5.2CVSS7.6AI score0.00001EPSS

Exploits0References1

CVE•added 2025/08/20 9:13 a.m.•13 views

CVE-2025-57730

Summary: CVE-2025-57730 affects JetBrains IntelliJ IDEA prior to 2025.2, with an HTML injection vulnerability in the Remote Development feature. What’s affected: IntelliJ IDEA (before 2025.2); the issue is a HTML injection in the Remote Development workflow. Cause: underlying HTML injection vulne...

5.2CVSS7.6AI score0.00001EPSS

Exploits0References1Affected Software1

Cvelist•added 2025/08/20 9:13 a.m.•7 views

CVE-2025-57730

In JetBrains IntelliJ IDEA before 2025.2 hTML injection was possible via Remote Development feature...

5.2CVSS0.00001EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by