CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

108 matches found

OSV•added 2026/03/25 10:33 a.m.•8 views

CVE-2026-23395 Bluetooth: L2CAP: Fix accepting multiple L2CAP_ECRED_CONN_REQ

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix accepting multiple L2CAPECREDCONNREQ Currently the code attempts to accept requests regardless of the command identifier which may cause multiple requests to be marked as pending FLAGDEFERSETUP which can cau...

8.8CVSS5.7AI score0.00047EPSS

Exploits0References9

Veracode•added 2025/12/23 10:42 a.m.•6 views

Missing Authorization

Jenkins is vulnerable to Missing Authorization. The vulnerability is due to a missing permission check on viewing encrypted credential data, which allows attackers with only View/Read permissions to access and view encrypted password values in views...

4.3CVSS6.9AI score0.00215EPSS

Exploits0References3Affected Software1

GithubExploit•added 2025/11/26 4:37 p.m.•128 views

Exploit for Missing Authentication for Critical Function in Veeam Veeam_Backup_\&_Replication

CVE-2023-27532 - Veeam Backup & Replication Vulnerability...

7.5CVSS6.8AI score0.83808EPSS

Exploits4

Rapid7 Blog•added 2025/11/19 5:30 p.m.•5 views

CVE-2025-13315, CVE-2025-13316: Critical Twonky Server Authentication Bypass (NOT FIXED)

Overview Twonky Server version 8.5.2 is susceptible to two vulnerabilities that facilitate administrator authentication bypass on Linux and Windows. An unauthenticated attacker can improperly access a privileged web API endpoint to leak application logs, which contain encrypted administrator...

9.8CVSS7AI score0.83986EPSS

Exploits3

CVE•added 2025/10/22 8:16 a.m.•6 views

CVE-2025-41110

CVE-2025-41110 affects Ghost Robotics Vision 60, specifically APK v0.27.2. The issue arises from an authorization flaw in the ROS 2 stack, permitting connections to the robot’s WiFi and SSH without authentication. Consequences stated across sources include data exposure and full control of the ro...

8.8CVSS6.4AI score0.00026EPSS

Exploits0References1Affected Software1

HackRead•added 2025/10/09 8:53 p.m.•3 views

SonicWall Says All Firewall Backups Were Accessed by Hackers

SonicWall has confirmed that attackers accessed cloud backup configuration files for all customers using its backup service exposing encrypted credentials and network configurations...

7.1AI score

Exploits0

The Hacker News•added 2025/10/09 1:48 p.m.•5 views

Hackers Access SonicWall Cloud Firewall Backups, Spark Urgent Security Checks

SonicWall on Wednesday disclosed that an unauthorized party accessed firewall configuration backup files for all customers who have used the cloud backup service. "The files contain encrypted credentials and configuration data; while encryption remains in place, possession of these files could...

6.5AI score

Exploits0