CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3970 matches found

CVE-2026-40605

Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Prior to version 2.17.1, a path traversal vulnerability in the cache deletion endpoint allows authenticated API access to delete directories outside the configured cache path. This can cause arbitrary data loss and...

7.1CVSS

Exploits0References2

EUVD•added 2 hours ago•2 views

EUVD-2026-34256

7.1CVSS5.9AI score

Exploits0References2

NVD•added 3 hours ago•3 views

CVE-2026-10840

A flaw was found in the OpenShift Pipelines operator. The tekton-scheduler-rolebinding ClusterRoleBinding grants the system:authenticated group write access to Kueue and cert-manager custom resources via the tekton-scheduler-role ClusterRole. When Kueue or cert-manager CRDs are present on the...

9.6CVSS

Exploits0References2

Cvelist•added 3 hours ago•4 views

CVE-2026-10840 Openshift-pipelines-operator-rh: openshift-pipelines-operator: tekton-scheduler-rolebinding grants system:authenticated write access to kueue and cert-manager resources

9.6CVSS

Exploits0References2

The Hacker News•added 9 hours ago•4 views

DoJ Disrupts Southeast Asia Crypto Fraud Networks, Freezes $3.8 Million in Assets

The U.S. Department of Justice DoJ on Wednesday announced the results of a sweeping action undertaken by government authorities and private sector companies to combat cyber-enabled and cryptocurrency fraud targeting Americans. The "Disruption Week" operation began May 18, 2026, leading to the...

5.9AI score

Exploits0

Positive Technologies•added 15 hours ago•3 views

PT-2026-46191

9.6CVSS5.8AI score

Exploits0References3

ATTACKERKB•added yesterday•3 views

CVE-2019-25720

Dräger SC Monitoring devices SC 6002XL, SC 6802XL, SC 7000, SC 8000, SC 9000 XL contain a denial-of-service vulnerability in all software versions that allows unauthenticated attackers to reboot the monitor by sending a malformed network packet. Attackers can repeatedly send such malformed packet...

7.1CVSS5.8AI score

Exploits0References3

EUVD•added yesterday•3 views

EUVD-2019-20161

7.1CVSS5.8AI score

Exploits0References2

NVD•added 2 days ago•5 views

CVE-2019-25722

Dräger SC Monitoring devices SC 6002XL, SC 6802XL, SC 7000, SC 8000, SC 9000 XL contain hard-coded plaintext credentials in source code and a denial-of-service vulnerability that allows local and remote attackers to compromise device integrity across all software versions. A local attacker with...

7.6CVSS0.00043EPSS

Exploits0References2

Vulnrichment•added 2 days ago•2 views

CVE-2019-25724 Dräger Infinity M300 VG2.x Network-Based Denial of Service

Dräger Infinity M300 patient worn monitors with software version VG2.x and earlier contain a network-based denial of service vulnerability that allows attackers with access to the hospital or Infinity Network to repeatedly trigger device reboots until the device enters a fail state requiring manu...

7.1CVSS5.8AI score0.00016EPSS

Exploits0References2

ATTACKERKB•added 2 days ago•3 views

CVE-2019-25724

7.1CVSS5.8AI score0.00016EPSS

Exploits0References4

CVE•added 2 days ago•9 views

CVE-2019-25724

The CVE-2019-25724 entry describes a network-based Denial of Service impacting Dräger Infinity M300 patient-worn monitors running VG2.x and earlier. The underlying issue allows an attacker with access to the hospital network or Infinity Network to repeatedly trigger device reboots, driving the de...

7.1CVSS5.8AI score0.00016EPSS

Exploits0References2

EUVD•added 2 days ago•4 views

EUVD-2019-20158

7.6CVSS5.9AI score0.00043EPSS

Exploits0References2

Cvelist•added 2 days ago•19 views

CVE-2019-25722 Dräger SC Monitoring Devices Hard-coded Credentials and DoS

7.6CVSS0.00043EPSS

Exploits0References2

RedHat Linux•added 2 days ago•5 views

org.apache.logging.log4j: Apache Log4j JsonTemplateLayout: Denial of Service via invalid JSON output

A flaw was found in Apache Log4j's JsonTemplateLayout. This vulnerability allows a remote attacker to disrupt log processing systems. By sending log events that include specific non-numeric floating-point values, the attacker can cause the JsonTemplateLayout to generate invalid JSON output. This...

7.5CVSS5.8AI score0.00055EPSS

Exploits0References9

Cvelist•added 2 days ago•22 views

CVE-2019-25721 Dräger Infinity M300 VG2.3.1 Network-Based Denial of Service

Dräger Infinity M300 patient worn monitors with software version VG2.3.1 and earlier contain a network-based denial of service vulnerability that allows network-adjacent attackers to repeatedly trigger device reboots by sending malicious requests over the Infinity Network. Attackers can exploit...

7.1CVSS0.00016EPSS

Exploits0References2

ATTACKERKB•added 2 days ago•3 views

CVE-2019-25721

7.1CVSS5.8AI score0.00016EPSS

Exploits0References3

RedhatCVE•added 2 days ago•5 views

CVE-2026-48132

The Security Gateway does not correctly validate a length value in certain IKE packets when NAT-T is used 4500/UDP. As a result, a specially crafted or malformed packet can cause the VPN processing service to terminate unexpectedly, leading to denial of service temporary interruption of VPN...

8.1CVSS5.8AI score0.00072EPSS

Exploits0References1

NVD•added 3 days ago•7 views

CVE-2026-37223

FlexRIC v2.0.0 contains a reachable assertion in the iApp message dispatcher. The dispatcher validates incoming E2AP messages against a 9-entry whitelist using assert. A remote unauthenticated attacker can send any decodable E2AP PDU with a message type not in the whitelist to crash the iApp...

7.5CVSS0.00081EPSS

Exploits0References2

Cvelist•added 3 days ago•22 views

CVE-2026-37232

An issue was discovered in OpenAirInterface5G 2.4.0 nr-softmodem in the E2SM-KPM RAN Function's PRB utilization metric calculation. The functions fillRRUPrbTotDl and fillRRUPrbTotUl in openair2/E2AP/RANFUNCTION/O-RAN/ranfunckpmsubs.c lines 182 and 197 compute PRB usage percentages by dividing by...

0.00059EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by