CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6680 matches found

OSV•added 2024/01/10 4:15 p.m.•34 views

CVE-2023-47861

A cross-site scripting xss vulnerability exists in the channelBody.php user name functionality of WWBN AVideo 11.6 and dev master commit 15fed957fb. A specially crafted HTTP request can lead to arbitrary Javascript execution. An attacker can get a user to visit a webpage to trigger this...

5.4CVSS6.4AI score

Exploits0References2

NVD•added 2024/01/10 4:15 p.m.•16 views

CVE-2023-47861

9CVSS8.8AI score0.008EPSS

Exploits1References2

Cvelist•added 2024/01/10 3:48 p.m.•12 views

CVE-2023-47171

An information disclosure vulnerability exists in the aVideoEncoder.json.php chunkFile path functionality of WWBN AVideo 11.6 and dev master commit 15fed957fb. A specially crafted HTTP request can lead to arbitrary file read...

6.5CVSS6.5AI score0.01072EPSS

Exploits1References1

Cvelist•added 2024/01/10 3:48 p.m.•42 views

CVE-2023-48730

A cross-site scripting xss vulnerability exists in the navbarMenuAndLogo.php user name functionality of WWBN AVideo dev master commit 15fed957fb. A specially crafted HTTP request can lead to arbitrary Javascript execution. An attacker can get a user to visit a webpage to trigger this vulnerabilit...

8.5CVSS8.2AI score0.00581EPSS

Exploits0References1

Vulnrichment•added 2024/01/10 3:48 p.m.•3 views

CVE-2023-48730

8.5CVSS6.5AI score0.00581EPSS

Exploits0References1

Vulnrichment•added 2024/01/10 3:48 p.m.•2 views

CVE-2023-47861

9CVSS9.1AI score0.008EPSS

Exploits1References1

Hewlett-Packard•added 2024/01/09 12:0 a.m.•23 views

UC Software - Hidden Functionality

A potential vulnerability was discovered in certain Trio devices. An attacker can enable a hidden configuration with knowledge of the administrator password, physical access to the device, and the ability to bypass the authentication process of the hidden configuration to gain a shell with elevat...

6.6CVSS7.5AI score0.00263EPSS

Exploits1

Tenable Nessus•added 2024/01/09 12:0 a.m.•39 views

Ubuntu 20.04 LTS : Linux kernel (GKE) vulnerabilities (USN-6548-4)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6548-4 advisory. It was discovered that Spectre-BHB mitigations were missing for Ampere processors. A local attacker could potentially use this to expose sensitive...

8.8CVSS7.3AI score0.09141EPSS

Exploits4References11

Hacker One•added 2024/01/08 5:10 p.m.•4 views

Mars: RXSS in ███ via S parameter

A Reflected Cross-Site Scripting RXSS vulnerability was identified in the search functionality of the application. The vulnerability was triggered when a user manipulated the search parameter 's'. User input was not properly sanitized before being reflected back to users...

6.4AI score

Exploits0

NVD•added 2024/01/08 3:15 p.m.•10 views

CVE-2023-39234

Multiple out-of-bounds write vulnerabilities exist in the VZT vztrdprocessblock autosort functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns...

7.8CVSS8AI score0.00432EPSS

Exploits1References3

NVD•added 2024/01/08 3:15 p.m.•20 views

CVE-2023-38650

Multiple integer overflow vulnerabilities exist in the VZT vztrdblockvchdecode times parsing functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to memory corruption. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the...

7.8CVSS7.4AI score0.00372EPSS

Exploits1References3

OSV•added 2024/01/08 3:15 p.m.•16 views

CVE-2023-38623

Multiple integer overflow vulnerabilities exist in the VZT facgeometry parsing functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the intege...

7.8CVSS8AI score

Exploits0References3

OSV•added 2024/01/08 3:15 p.m.•6 views

CVE-2023-36747

Multiple heap-based buffer overflow vulnerabilities exist in the fstReaderIterBlocks2 fstWritex len functionality of GTKWave 3.3.115. A specially crafted .fst file can lead to memory corruption. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability...

7.8CVSS7.9AI score

Exploits0References3

NVD•added 2024/01/08 3:15 p.m.•17 views

CVE-2023-36747

7.8CVSS7.5AI score0.00382EPSS

Exploits1References3

NVD•added 2024/01/08 3:15 p.m.•15 views

CVE-2023-35994

Multiple improper array index validation vulnerabilities exist in the fstReaderIterBlocks2 tdelta functionality of GTKWave 3.3.115. A specially crafted .fst file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability...

7.8CVSS7.9AI score0.00414EPSS

Exploits1References3

NVD•added 2024/01/08 3:15 p.m.•16 views

CVE-2023-35997

7.8CVSS7.9AI score0.00414EPSS

Exploits1References3

OSV•added 2024/01/08 3:15 p.m.•4 views

CVE-2023-35995

7.8CVSS7.9AI score

Exploits0References3

OSV•added 2024/01/08 3:15 p.m.•7 views

CVE-2023-35994

7.8CVSS7.9AI score

Exploits0References3

Prion•added 2024/01/08 3:15 p.m.•24 views

Integer overflow

Multiple integer overflow vulnerabilities exist in the FST fstReaderIterBlocks2 chaintable allocation functionality of GTKWave 3.3.115. A specially crafted .fst file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This...

4.4CVSS7.9AI score0.00432EPSS

Exploits1References1Affected Software1

UbuntuCve•added 2024/01/08 3:15 p.m.•21 views

CVE-2023-35995

7.8CVSS7.2AI score0.00414EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by