CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

321 matches found

RedhatCVE•added 2026/01/07 9:27 a.m.•5 views

CVE-2019-12366

The Nine application through 4.5.3a for Android allows XSS via an event attribute and arbitrary file loading via a src attribute, if the application has the READEXTERNALSTORAGE permission...

6.1CVSS6AI score0.00994EPSS

Exploits1References1

RedhatCVE•added 2025/12/15 11:33 p.m.•3 views

CVE-2025-67900

NXLog Agent before 6.11 can load a file specified by the OPENSSLCONF environment variable...

8.1CVSS6.9AI score0.00104EPSS

Exploits0References1

Positive Technologies•added 2025/12/09 12:0 a.m.•3 views

PT-2025-49828

Name of the Vulnerable Software and Affected Versions RUGGEDCOM ROX II versions prior to 2.17.0 Description A flaw exists in the RUGGEDCOM ROX II family that could allow an attacker to gain root access on the affected system. This is due to inadequate validation when installing and loading certai...

9CVSS9.2AI score0.00466EPSS

Exploits0References5

OSV•added 2025/11/21 7:16 p.m.•3 views

PYSEC-2025-139

MLX is an array framework for machine learning on Apple silicon. Prior to version 0.29.4, there is a segmentation fault in mlx::core::loadgguf when loading malicious GGUF files. Untrusted pointer from external gguflib library is dereferenced without validation, causing application crash. This iss...

7.5CVSS5.8AI score0.00323EPSS

Exploits1References1

Vulnrichment•added 2025/10/10 11:5 a.m.•3 views

CVE-2025-61864

A use after free vulnerability exists in VS6ComFile!loadlinkinf of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...

8.4CVSS7.3AI score0.00153EPSS

Exploits0References2