CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2025/03/31 5:0 a.m.•14 views

CVE-2025-2977 GFI KerioConnect PDF File cross site scripting

5.1CVSS0.00236EPSS

Vulnrichment•added 2025/03/31 5:0 a.m.•6 views

CVE-2025-2977 GFI KerioConnect PDF File cross site scripting

5.1CVSS3.7AI score0.00236EPSS

CNNVD•added 2025/03/31 12:0 a.m.•3 views

GFI KerioConnect 代码注入漏洞

GFI KerioConnect is an enterprise-grade email and collaboration solution from GFI that provides mail, calendar, contacts, tasks, and file sharing. A code injection vulnerability exists in GFI KerioConnect version 10.0.6, which stems from a cross-site scripting vulnerability in the PDF File Handle...

5.4CVSS4.9AI score0.00236EPSS

CNNVD•added 2025/03/31 12:0 a.m.•1 views

Open Asset Import Library（assimp）安全漏洞

Open Asset Import Library assimp is a library in the Open Asset Import Library open source. A security vulnerability exists in Open Asset Import Library assimp version 5.4.3, which stems from an out-of-bounds read in the ASE File Handler component...

8.8CVSS6.3AI score0.00135EPSS

CNNVD•added 2025/03/31 12:0 a.m.•1 views

Open Asset Import Library 安全漏洞

Open Asset Import Library assimp is an Open Asset Import Library open source library. A security vulnerability exists in Open Asset Import Library version 5.4.3, which stems from a resource consumption in the MDL File Handler component...

6.5CVSS5.6AI score0.00092EPSS

OSV•added 2025/03/30 5:15 p.m.•1 views

CVE-2025-2954

A vulnerability, which was classified as problematic, was found in mannaandpoem OpenManus up to 2025.3.13. This affects the function execute of the file app/tool/filesaver.py of the component File Handler. The manipulation leads to improper access controls. Local access is required to approach th...

5.5CVSS4.7AI score0.00096EPSS

NVD•added 2025/03/30 5:15 p.m.•10 views

CVE-2025-2954

5.5CVSS0.00096EPSS

Positive Technologies•added 2025/03/30 12:0 a.m.•3 views

PT-2025-13627 · Totolink · Totolink A3000Ru

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3000RU versions up to 5.9c.5185 Description: A vulnerability has been found in the IBMS Configuration File Handler component, affecting the /cgi-bin/ExportIbmsConfig.sh file. This issue leads to improper access controls and can be...

6.9CVSS5AI score0.00234EPSS

Exploits1References12

OSV•added 2025/03/29 6:22 a.m.•1 views

OESA-2025-1328 assimp security update

Assimp is a library to load and process geometric scenes from various data formats. Assimp aims to provide a full asset conversion pipeline for use in game engines and real-time rendering systems of any kind, but is not limited to this purpose. Security Fixes: A vulnerability classified as critic...

8.8CVSS7.3AI score0.00206EPSS

Exploits1References2

RedhatCVE•added 2025/03/27 9:16 a.m.•8 views

CVE-2025-2755

A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been rated as critical. Affected by this issue is the function Assimp::AC3DImporter::ConvertObjectSection of the file code/AssetLib/AC/ACLoader.cpp of the component AC3D File Handler. The manipulation of the argument...

8.8CVSS7.2AI score0.00097EPSS

RedhatCVE•added 2025/03/27 8:19 a.m.•6 views

CVE-2025-2751

A vulnerability has been found in Open Asset Import Library Assimp 5.4.3 and classified as problematic. This vulnerability affects the function Assimp::CSMImporter::InternReadFile of the file code/AssetLib/CSM/CSMLoader.cpp of the component CSM File Handler. The manipulation of the argument na...

8.8CVSS7.2AI score0.0006EPSS

SUSE CVE•added 2025/03/25 4:1 p.m.•2 views

SUSE CVE-2025-2751

8.8CVSS4.3AI score0.0006EPSS

Exploits1References3

SUSE CVE•added 2025/03/25 4:1 p.m.•2 views

SUSE CVE-2025-2752

A vulnerability was found in Open Asset Import Library Assimp 5.4.3 and classified as problematic. This issue affects the function fastatorealmove in the library include/assimp/fastatof.h of the component CSM File Handler. The manipulation leads to out-of-bounds read. The attack may be initiated...

8.8CVSS4.2AI score0.00096EPSS

Exploits1References3

OSV•added 2025/03/25 10:15 a.m.•0 views

PYSEC-2025-167

A vulnerability classified as critical has been found in Open Asset Import Library Assimp 5.4.3. This affects the function Assimp::AC3DImporter::ConvertObjectSection of the file code/AssetLib/AC/ACLoader.cpp of the component AC3D File Handler. The manipulation of the argument tmp leads to...

8.8CVSS6AI score0.0012EPSS

PyPA•added 2025/03/25 10:15 a.m.•5 views

PYSEC-2025-167

8.8CVSS6.7AI score0.0012EPSS

Exploits1References5Affected Software1

Cvelist•added 2025/03/25 9:31 a.m.•11 views

CVE-2025-2757 Open Asset Import Library Assimp MD5 File MD5Parser.cpp AI_MD5_PARSE_STRING_IN_QUOTATION heap-based overflow

A vulnerability classified as critical was found in Open Asset Import Library Assimp 5.4.3. This vulnerability affects the function AIMD5PARSESTRINGINQUOTATION of the file code/AssetLib/MD5/MD5Parser.cpp of the component MD5 File Handler. The manipulation of the argument data leads to heap-based...

7.5CVSS0.00108EPSS

Cvelist•added 2025/03/25 9:31 a.m.•13 views

CVE-2025-2756 Open Asset Import Library Assimp AC3D File ACLoader.cpp ConvertObjectSection heap-based overflow

7.5CVSS0.0012EPSS

OSV•added 2025/03/25 9:15 a.m.•2 views

PYSEC-2025-164

A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been classified as critical. Affected is the function SceneCombiner::MergeScenes of the file code/AssetLib/LWS/LWSLoader.cpp of the component LWS File Handler. The manipulation leads to out-of-bounds read. It is possible ...

8.8CVSS5.5AI score0.00097EPSS

OSV•added 2025/03/25 9:15 a.m.•1 views

DEBIAN-CVE-2025-2753

8.8CVSS5.9AI score0.00097EPSS