CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2025/06/26 8:21 p.m.•81 views

CVE-2025-52555

Ceph CephFS vulnerability CVE-2025-52555 affects Ceph versions 17.2.7, 18.2.1–18.2.4, and 19.0.0–19.2.2 where an unprivileged user can escalate to root by chmod 777 a directory owned by root on a ceph-fuse mounted CephFS. The attacker gains read/write/execute access to any root-owned directory, i...

6.5CVSS7.7AI score0.00055EPSS

Exploits0References3

Tenable Nessus•added 2025/06/17 12:0 a.m.•2 views

RHEL 9 : git-lfs (RHSA-2025:9205)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:9205 advisory. Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing th...

9.1CVSS7.2AI score0.00294EPSS

Tenable Nessus•added 2025/06/16 12:0 a.m.•3 views

RHEL 9 : git-lfs (RHSA-2025:9106)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:9106 advisory. Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing th...

9.1CVSS7.2AI score0.00294EPSS

AlmaLinux•added 2025/06/16 12:0 a.m.•2 views

Moderate: git-lfs security update

Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server. Security Fixes: net/http: Request smuggling due to acceptance of invalid chunked data in net/http CVE-2025-22871...

9.1CVSS7.3AI score0.00294EPSS

OSV•added 2025/06/16 12:0 a.m.•3 views

ALSA-2025:9060 Moderate: git-lfs security update

9.1CVSS7.8AI score0.00294EPSS

AlmaLinux•added 2025/06/16 12:0 a.m.•2 views

Moderate: git-lfs security update

9.1CVSS8.1AI score0.00294EPSS

OSV•added 2025/06/16 12:0 a.m.•2 views

ALSA-2025:9063 Moderate: git-lfs security update

9.1CVSS7.8AI score0.00294EPSS

OSV•added 2025/06/16 12:0 a.m.•2 views

ALSA-2025:9106 Moderate: git-lfs security update

9.1CVSS7.8AI score0.00294EPSS

Tenable Nessus•added 2025/06/16 12:0 a.m.•2 views

RHEL 9 : git-lfs (RHSA-2025:9078)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:9078 advisory. Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing th...

9.1CVSS7.2AI score0.00294EPSS

RedhatCVE•added 2025/05/22 7:48 p.m.•7 views

CVE-2021-33669

Under certain conditions, SAP Mobile SDK Certificate Provider allows a local unprivileged attacker to exploit an insecure temporary file storage. For a successful exploitation user interaction from another user is required and could lead to complete impact of confidentiality integrity and...

7.8CVSS6.6AI score0.00027EPSS

RedhatCVE•added 2025/05/22 6:40 p.m.•7 views

CVE-2021-37196

A vulnerability has been identified in COMOS V10.2 All versions only if web components are used, COMOS V10.3 All versions = V10.3.3.3 only if web components are used, COMOS V10.4 All versions V10.4.1 only if web components are used. The COMOS Web component of COMOS unpacks specially crafted archi...

6.5CVSS8.4AI score0.00338EPSS

RedhatCVE•added 2025/05/22 8:7 a.m.•6 views

CVE-2019-14252

An issue was discovered in the secure portal in Publisure 2.1.2. Once successfully authenticated as an administrator, one is able to inject arbitrary PHP code by using the adminCons.php form. The code is then stored in the E:\PUBLISURE\webservice\webpages\AdminDir\Templates\ folder even if remove...

7.2CVSS6.8AI score0.00995EPSS

Exploits2References1

RedhatCVE•added 2025/05/22 4:44 a.m.•5 views

CVE-2019-20846

An issue was discovered in Mattermost Server before 5.18.0. It has weak permissions for server-local file storage...

7.5CVSS7AI score0.00209EPSS

OSV•added 2025/05/13 12:0 a.m.•2 views

ALSA-2025:7256 Moderate: git-lfs security update

Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server. Security Fixes: golang: crypto/tls: panic when processing post-handshake message on QUIC connections...

9.8CVSS7.6AI score0.01018EPSS

Exploits0References14

AlmaLinux•added 2025/05/13 12:0 a.m.•2 views

Moderate: git-lfs security update

Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server. Security Fixes: golang: crypto/tls: panic when processing post-handshake message on QUIC connections...

9.8CVSS7.3AI score0.01018EPSS

Exploits0References14

CNNVD•added 2025/04/26 12:0 a.m.•2 views

CodiMD 安全漏洞

CodiMD is a real-time collaborative note-taking application open-sourced by HackMD. A security vulnerability exists in CodiMD 2.5.4 and earlier versions, which stems from a CSP-based XSS protection mechanism that can be bypassed in cross-domain file storage scenarios, potentially leading to...

4.9CVSS5.5AI score0.00034EPSS

NVD•added 2025/04/22 6:16 p.m.•7 views

CVE-2025-32959

CUBA Platform is a high level framework for enterprise applications development. Prior to version 7.2.23, the local file storage implementation does not restrict the size of uploaded files. An attacker could exploit this by uploading excessively large files, potentially causing the server to run...

6.5CVSS0.00158EPSS