CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8263 matches found

Positive Technologies•added 2025/08/20 12:0 a.m.•4 views

PT-2025-34031 · Jetbrains · Intellij Idea

Name of the Vulnerable Software and Affected Versions: JetBrains IntelliJ IDEA versions prior to 2025.2 Description: A HTML injection issue was possible through the Remote Development feature. Recommendations: Update JetBrains IntelliJ IDEA to version 2025.2 or later...

5.2CVSS6.7AI score0.00001EPSS

Exploits0References5

CNNVD•added 2025/08/20 12:0 a.m.•1 views

JetBrains IntelliJ IDEA 安全漏洞

JetBrains IntelliJ IDEA is an integrated development environment IDE developed by JetBrains , designed to improve developer productivity and code quality , mainly for Java programming , but also supports Kotlin, Web, Spring and other languages and frameworks . JetBrains IntelliJ IDEA suffers from...

5.2CVSS7AI score0.00001EPSS

Exploits0References2

Tenable Nessus•added 2025/08/19 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2025-48050

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In DOMPurify through 3.2.5 before 6bc6d60, scripts/server.js does not ensure that a pathname is located under the current working directory. NOTE: the Supplier...

7.5CVSS7.1AI score0.00392EPSS

Exploits0References3

OPENSUSE Linux•added 2025/08/19 12:0 a.m.•3 views

cairo-devel-1.18.4-3.1 on GA media (moderate)

cairo-devel-1.18.4-3.1 on GA media Announcement ID: openSUSE-SU-2025:15458-1 Rating: moderate Cross-References: CVE-2025-50422 CVSS scores: CVE-2025-50422 SUSE : 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now...

3.3CVSS9.6AI score0.00102EPSS

Exploits0

Tenable Nessus•added 2025/08/19 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2025-21587

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions tha...

7.4CVSS6.7AI score0.00226EPSS

Exploits0References3

VulnCheck KEV•added 2025/08/18 12:0 a.m.•2 views

VulnCheck KEV: CVE-2025-54782

Nest is a framework for building scalable Node.js server-side applications. In versions 0.2.0 and below, a critical Remote Code Execution RCE vulnerability was discovered in the @nestjs/devtools-integration package. When enabled, the package exposes a local development HTTP server with an API...

9.4CVSS6.3AI score0.35077EPSS

In wildExploits4References125

Tenable Nessus•added 2025/08/18 12:0 a.m.•3 views

Amazon Linux 2023 : captree, libcap, libcap-devel (ALAS2023-2025-1141)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-1141 advisory. Calling Verify with a VerifyOptions.KeyUsages that contains ExtKeyUsageAny unintentionally disabledpolicy validation. This only affected certificate chains which contain policy graphs, which a...

7.5CVSS6.5AI score0.00076EPSS

Exploits0References6

Tenable Nessus•added 2025/08/18 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2022-3178

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer Over-read in GitHub repository gpac/gpac prior to 2.1.0-DEV. CVE-2022-3178 Note that Nessus relies on the presence of the package as reported by the...

7.8CVSS7.4AI score0.00153EPSS

Exploits1References2

RedhatCVE•added 2025/08/16 3:26 p.m.•3 views

CVE-2025-7972

A security issue exists within the FactoryTalk Linx Network Browser. By modifying the process.env.NODEENV to ‘development’, the attacker can disable FTSP token validation. This bypass allows access to create, update, and delete FTLinx drivers...

8.4CVSS7.2AI score0.002EPSS

Exploits0References1