CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

21 matches found

EUVD•added 2025/10/07 12:30 a.m.•0 views

EUVD-2019-0394

Malware in sbrugna...

9.8CVSS9.3AI score0.00635EPSS

Exploits0References5

Tenable Nessus•added 2025/08/27 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2019-0187

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unauthenticated RCE is possible when JMeter is used in distributed mode -r or -R command line options. Attacker can establish a RMI connection to a jmeter-serve...

9.8CVSS7.3AI score0.00635EPSS

Exploits0References3

RedhatCVE•added 2025/02/05 10:35 p.m.•4 views

CVE-2022-27183

The Monitoring Console app configured in Distributed mode allows for a Reflected XSS in a query parameter in Splunk Enterprise versions before 8.1.4. The Monitoring Console app is a bundled app included in Splunk Enterprise, not for download on SplunkBase, and not installed on Splunk Cloud Platfo...

8.8CVSS6AI score0.0035EPSS

Exploits0References1

Vulnrichment•added 2024/07/11 4:13 p.m.•17 views

CVE-2024-39536 Junos OS and Junos OS Evolved: Flaps of BFD sessions with authentication cause a ppmd memory leak

A Missing Release of Memory after Effective Lifetime vulnerability in the Periodic Packet Management Daemon ppmd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated adjacent attacker to cause a Denial-of-Service DoS. When a BFD session configured with authentication...

6CVSS7.4AI score0.00154EPSS

Exploits0References1

NVD•added 2022/05/06 5:15 p.m.•13 views

CVE-2022-27183

8.8CVSS0.0035EPSS

Exploits0References2

ATTACKERKB•added 2022/05/06 5:15 p.m.•3 views

CVE-2022-27183

8.8CVSS6.4AI score0.0035EPSS

Exploits0References3Affected Software1

Prion•added 2022/05/06 5:15 p.m.•12 views

Design/Logic Flaw

4.3CVSS6AI score0.0035EPSS

Exploits0References2Affected Software1

Cvelist•added 2022/05/06 4:38 p.m.•10 views

CVE-2022-27183 Reflected XSS in a query parameter of the Monitoring Console

8.8CVSS8.5AI score0.0035EPSS

Exploits0References2

CNNVD•added 2022/05/05 12:0 a.m.•2 views

Splunk Enterprise 跨站脚本漏洞

Splunk is a suite of data collection and analysis software from Splunk, Inc. in the United States. The software is primarily used to collect, index, and analyze and the data it generates, including data generated by all IT systems and infrastructures physical, virtual machines, and cloud. A...

8.8CVSS5.9AI score0.0035EPSS

Exploits0References4

OSV•added 2019/03/07 6:47 p.m.•0 views

GHSA-WG37-7MRV-CFWM Unauthenticated Remote Code Execution in Apache JMeter

Unauthenticated RCE is possible when JMeter is used in distributed mode -r or -R command line options. Attacker can establish a RMI connection to a jmeter-server using RemoteJMeterEngine and proceed with an attack using untrusted data deserialization. This only affect tests running in Distributed...

9.8CVSS5.9AI score0.00635EPSS

Exploits0References4

Github Security Blog•added 2019/03/07 6:47 p.m.•22 views

Unauthenticated Remote Code Execution in Apache JMeter

9.8CVSS3AI score0.00635EPSS

Exploits0References4Affected Software1

UbuntuCve•added 2019/03/06 5:29 p.m.•14 views

CVE-2019-0187

9.8CVSS7.2AI score0.00635EPSS

Exploits0References3

OSV•added 2019/03/06 5:29 p.m.•0 views

UBUNTU-CVE-2019-0187

9.8CVSS7.3AI score0.00635EPSS

Exploits0References4

OSV•added 2019/03/06 5:29 p.m.•0 views

DEBIAN-CVE-2019-0187

9.8CVSS6.9AI score0.00635EPSS

Exploits0References1

OSV•added 2019/03/06 5:29 p.m.•9 views

CVE-2019-0187

9.8CVSS9.4AI score

Exploits0References2

Cvelist•added 2019/03/06 5:0 p.m.•10 views

CVE-2019-0187

9.5AI score0.00635EPSS

Exploits0References2

CVE•added 2019/03/06 5:0 p.m.•87 views

CVE-2019-0187

Apache JMeter in distributed mode (-r/-R) is affected by CVE-2019-0187, enabling unauthenticated remote code execution via a RemoteJMeterEngine over RMI using untrusted data deserialization. The issue is limited to tests running in Distributed mode; pre-4.0 versions do not encrypt traffic between...

9.8CVSS9.3AI score0.00635EPSS

Exploits0References2Affected Software1

Debian CVE•added 2019/03/06 5:0 p.m.•12 views

CVE-2019-0187

9.8CVSS9.5AI score0.00635EPSS

Exploits0

Veracode•added 2019/03/04 6:19 a.m.•17 views

Remote Code Execution (RCE)

ApacheJMetercore is vulnerable to remote code execution RCE. The vulnerability exists due to a lack of client authentication when Apache JMeter is configured in a distributed mode, allowing an attacker to perform arbitrary deserialization of untrusted data which will lead to arbitrary code...

9.8CVSS9.8AI score0.00635EPSS

Exploits0References6Affected Software2

CNVD•added 2018/02/24 12:0 a.m.•4 views

Apache JMeter Remote Command Execution Vulnerability

Apache Jmeter is an open source Java application designed to test functional behavior and measure performance for load ... Apache JMeter suffers from a remote command execution vulnerability in distributed mode using an insecure RMI connection, which can be exploited by an attacker to execute...

9.8CVSS7.8AI score0.17994EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by