CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9454 matches found

ICS•added 2024/01/23 7:0 a.m.•31 views

APsystems Energy Communication Unit (ECU-C) Power Control Software

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION : Exploitable via adjacent network / low attack complexity Vendor : APsystems Equipment : Energy communication Unit ECU-C Power Control Software Vulnerability : Improper Access Control 2. RISK EVALUATION Successful exploitation of this...

8.8CVSS9AI score0.00085EPSS

Exploits1References8

Mozilla•added 2024/01/23 12:0 a.m.•48 views

Security Vulnerabilities fixed in Firefox ESR 115.7 — Mozilla

An out of bounds write in ANGLE could have allowed an attacker to corrupt memory leading to a potentially exploitable crash. It was possible for certain browser prompts and dialogs to be activated or dismissed unintentionally by the user due to an incorrect timestamp used to prevent input after...

8.8CVSS8.4AI score0.47284EPSS

Exploits0References8Affected Software1

UbuntuCve•added 2024/01/23 12:0 a.m.•32 views

CVE-2024-0741

An out of bounds write in ANGLE could have allowed an attacker to corrupt memory leading to a potentially exploitable crash. This vulnerability affects Firefox 122, Firefox ESR 115.7, and Thunderbird 115.7...

6.5CVSS6.9AI score0.47284EPSS

Exploits0References10

Tenable Nessus•added 2024/01/23 12:0 a.m.•24 views

Mozilla Thunderbird < 115.7

The version of Thunderbird installed on the remote Windows host is prior to 115.7. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2024-04 advisory. - Memory safety bugs present in Firefox 121, Firefox ESR 115.6, and Thunderbird 115.6. Some of these bugs showed...

8.8CVSS7.8AI score0.47284EPSS

Exploits0References10

Tenable Nessus•added 2024/01/23 12:0 a.m.•22 views

Oracle MySQL Cluster 7.6.x < 7.6.29 (January 2024 CPU)

The versions of MySQL Cluster installed on the remote host are affected by a vulnerability as referenced in the January 2024 CPU advisory. - Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General. Supported versions that are affected are 7.5.32 and prior, 7.6.28 an...

4.9CVSS6AI score0.00515EPSS

Exploits0References3

UbuntuCve•added 2024/01/23 12:0 a.m.•33 views

CVE-2024-0743

An unchecked return value in TLS handshake code could have caused a potentially exploitable crash. This vulnerability affects Firefox 122, Firefox ESR 115.9, and Thunderbird 115.9...

7.5CVSS7.2AI score0.00892EPSS

Exploits0References6

UbuntuCve•added 2024/01/23 12:0 a.m.•18 views

CVE-2024-0745

The WebAudio OscillatorNode object was susceptible to a stack buffer overflow. This could have led to a potentially exploitable crash. This vulnerability affects Firefox 122...

8.8CVSS7.2AI score0.00755EPSS

Exploits0References5

Tenable Nessus•added 2024/01/23 12:0 a.m.•63 views

Mozilla Firefox < 122.0

The version of Firefox installed on the remote macOS or Mac OS X host is prior to 122.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2024-01 advisory. - Memory safety bugs present in Firefox 121, Firefox ESR 115.6, and Thunderbird 115.6. Some of these bugs show...

8.8CVSS7.9AI score0.47284EPSS

Exploits0References16

Tenable Nessus•added 2024/01/19 12:0 a.m.•46 views

Oracle Solaris Critical Patch Update : jan2024_SRU11_4_63_157_1

The version of Solaris installed on the remote host is prior to 11.4.63.157.1. It is, therefore, affected by a vulnerability as referenced in the solaris11jan2024SRU114631571 advisory. - Vulnerability in the Oracle Solaris product of Oracle Systems component: Kernel. The supported version that is...

5.5CVSS6.6AI score0.00056EPSS

Exploits0References3

Tenable Nessus•added 2024/01/18 12:0 a.m.•61 views

Amazon Linux 2 : java-17-amazon-corretto (ALAS-2024-2415)

The version of java-17-amazon-corretto installed on the remote host is prior to 17.0.10+7-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2024-2415 advisory. A vulnerability that allows an attacker to execute arbitrary java code from the javascript engine even...

7.5CVSS7.1AI score0.00344EPSS

Exploits0References20

Qualys Blog•added 2024/01/17 3:29 p.m.•88 views

Oracle Patch Update, January 2024 Security Update Review

Oracle has released its first quarterly edition of Critical Patch Update, which contains patches for 389 security vulnerabilities. Some of the vulnerabilities addressed in this update impact more than one product. These patches address vulnerabilities in a wide range of product families, includin...

10CVSS10AI score0.94436EPSS

Exploits69

RedhatCVE•added 2024/01/17 12:5 p.m.•39 views

CVE-2024-20978

Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash complete DOS of MySQL Server...

4.9CVSS7.9AI score0.00218EPSS

Exploits0References4

RedhatCVE•added 2024/01/17 12:5 p.m.•36 views

CVE-2024-20977

Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash complete DOS of MySQL Server...

6.5CVSS6.6AI score0.00244EPSS

Exploits0References4

RedhatCVE•added 2024/01/17 12:5 p.m.•37 views

CVE-2024-20974

4.9CVSS7.9AI score0.00054EPSS

Exploits0References4

RedhatCVE•added 2024/01/17 12:4 p.m.•26 views

CVE-2024-20973

6.5CVSS6.6AI score0.00209EPSS

Exploits0References4

RedhatCVE•added 2024/01/17 12:4 p.m.•36 views

CVE-2024-20972