Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

77 matches found

RedhatCVE
RedhatCVEadded 2026/02/11 1:33 a.m.3 views

CVE-2026-25495

Craft is a platform for creating digital experiences. In Craft versions 4.0.0-RC1 through 4.16.17 and 5.0.0-RC1 through 5.8.21, the element-indexes/get-elements endpoint is vulnerable to SQL Injection via the criteriaorderBy parameter JSON body. The application fails to sanitize this input before...

8.8CVSS6.2AI score0.00015EPSS
Exploits1References1
Cvelist
Cvelistadded 2026/02/09 7:42 p.m.26 views

CVE-2026-25495 Craft has a SQL Injection in Element Indexes via criteria[orderBy]

Craft is a platform for creating digital experiences. In Craft versions 4.0.0-RC1 through 4.16.17 and 5.0.0-RC1 through 5.8.21, the element-indexes/get-elements endpoint is vulnerable to SQL Injection via the criteriaorderBy parameter JSON body. The application fails to sanitize this input before...

8.7CVSS0.00015EPSS
Exploits1References3
RedhatCVE
RedhatCVEadded 2025/05/23 2:1 a.m.3 views

CVE-2023-42523

Certain WithSecure products allow a remote crash of a scanning engine via unpacking of a PE file. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security fo...

7.5CVSS7.1AI score0.00218EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/05/22 7:13 p.m.10 views

CVE-2024-4454 WithSecure Elements Endpoint Protection Link Following Local Privilege Escalation Vulnerability

WithSecure Elements Endpoint Protection Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of WithSecure Elements Endpoint Protection. User interaction on the part of an administrator is required to...

7.3CVSS7AI score0.0013EPSS
Exploits0References1
CNNVD
CNNVDadded 2024/02/26 12:0 a.m.1 views

WithSecure products Security breaches

WithSecure products is a line of security software from the Finnish company WithSecure. A security vulnerability exists in WithSecure products, which stems from the fact that the engine scanning program may enter an infinite loop when processing archived files, resulting in a denial of service. T...

7.5CVSS6.7AI score0.00142EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2024/02/25 12:0 a.m.13 views

CVE-2024-27359

Certain WithSecure products allow a Denial of Service because the engine scanner can go into an infinite loop when processing an archive file. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protectio...

6.9AI score0.00142EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2024/02/25 12:0 a.m.2 views

PT-2024-1945 · Withsecure · Withsecure Server Security +7

Name of the Vulnerable Software and Affected Versions: WithSecure Client Security version 15 WithSecure Server Security version 15 WithSecure Email and Server Security version 15 WithSecure Elements Endpoint Protection versions 17 and later WithSecure Client Security for Mac version 15 WithSecure...

10CVSS7.2AI score0.00142EPSS
Exploits0References7
NVD
NVDadded 2024/02/08 7:15 p.m.9 views

CVE-2024-23764

Certain WithSecure products allow Local Privilege Escalation. This affects WithSecure Client Security 15 and later, WithSecure Server Security 15 and later, WithSecure Email and Server Security 15 and later, and WithSecure Elements Endpoint Protection 17 and later...

6.7CVSS6.6AI score0.00031EPSS
Exploits0References2
OSV
OSVadded 2024/02/08 7:15 p.m.1 views

CVE-2024-23764

Certain WithSecure products allow Local Privilege Escalation. This affects WithSecure Client Security 15 and later, WithSecure Server Security 15 and later, WithSecure Email and Server Security 15 and later, and WithSecure Elements Endpoint Protection 17 and later...

6.7CVSS5.8AI score0.00031EPSS
Exploits0References2
CNNVD
CNNVDadded 2024/02/08 12:0 a.m.1 views

WithSecure products Security breaches

WithSecure products are a range of security software from the Finnish company WithSecure. A security vulnerability exists in some WithSecure products. An attacker can exploit the vulnerability to escalate privileges. The following products and versions are affected: WithSecure Client Security...

6.7CVSS6.9AI score0.00031EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2024/02/08 12:0 a.m.1 views

PT-2024-20067 · Withsecure · Withsecure Elements Endpoint Protection +3

Name of the Vulnerable Software and Affected Versions: WithSecure Client Security versions 15 and later WithSecure Server Security versions 15 and later WithSecure Email and Server Security versions 15 and later WithSecure Elements Endpoint Protection versions 17 and later Description: Certain...

6.7CVSS6.6AI score0.00031EPSS
Exploits0References5
Cvelist
Cvelistadded 2024/02/08 12:0 a.m.14 views

CVE-2024-23764

Certain WithSecure products allow Local Privilege Escalation. This affects WithSecure Client Security 15 and later, WithSecure Server Security 15 and later, WithSecure Email and Server Security 15 and later, and WithSecure Elements Endpoint Protection 17 and later...

6.8AI score0.00031EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2024/02/08 12:0 a.m.6 views

CVE-2024-23764

Certain WithSecure products allow Local Privilege Escalation. This affects WithSecure Client Security 15 and later, WithSecure Server Security 15 and later, WithSecure Email and Server Security 15 and later, and WithSecure Elements Endpoint Protection 17 and later...

6.5AI score0.00031EPSS
Exploits0References2
OSV
OSVadded 2023/11/27 12:15 a.m.2 views

CVE-2023-49322

Certain WithSecure products allow a Denial of Service because there is an unpack handler crash that can lead to a scanning engine crash. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 a...

7.5CVSS7.3AI score0.00148EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2023/11/27 12:15 a.m.1 views

CVE-2023-49321

Certain WithSecure products allow a Denial of Service because scanning a crafted file takes a long time, and causes the scanner to hang. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 a...

5.3CVSS5.8AI score0.00084EPSS
Exploits0References3
OSV
OSVadded 2023/11/27 12:15 a.m.4 views

CVE-2023-49321

Certain WithSecure products allow a Denial of Service because scanning a crafted file takes a long time, and causes the scanner to hang. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 a...

5.3CVSS5.5AI score0.00084EPSS
Exploits0References1
CNNVD
CNNVDadded 2023/11/26 12:0 a.m.3 views

WithSecure products Security breaches

WithSecure products are a range of security software from the Finnish company WithSecure. A security vulnerability exists in some WithSecure products. An attacker could exploit the vulnerability to cause a denial of service on the system. The following products and versions are affected: WithSecu...

5.3CVSS6.5AI score0.00084EPSS
Exploits0References1
Cvelist
Cvelistadded 2023/11/26 12:0 a.m.17 views

CVE-2023-49321

Certain WithSecure products allow a Denial of Service because scanning a crafted file takes a long time, and causes the scanner to hang. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 a...

5.5AI score0.00084EPSS
Exploits0References1
CNNVD
CNNVDadded 2023/11/26 12:0 a.m.2 views

WithSecure products Security breaches

WithSecure products are a range of security software from the Finnish company WithSecure. A security vulnerability exists in some WithSecure products. An attacker has exploited the vulnerability to cause the scanning engine to crash. The following products and versions are affected: WithSecure...

7.5CVSS6.6AI score0.00148EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2023/11/26 12:0 a.m.2 views

PT-2023-31167 · Withsecure · Withsecure Linux Protection +7

Name of the Vulnerable Software and Affected Versions: WithSecure Client Security version 15 WithSecure Server Security version 15 WithSecure Email and Server Security version 15 WithSecure Elements Endpoint Protection versions 17 and later WithSecure Client Security for Mac version 15 WithSecure...

5.3CVSS5.1AI score0.00084EPSS
Exploits0References3
Rows per page
Query Builder