CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3128 matches found

Github Security Blog•added 2025/08/26 6:42 p.m.•12 views

GraphQL Armor Max-Depth Plugin Bypass via Introspection Query Obfuscation

Summary A query depth restriction using the max-depth property can be bypassed if ignoreIntrospection is enabled which is the default configuration by naming your query/fragment schema. Details At the start of the countDepth function, we have the following check for the ignoreIntrospection option...

7AI score

Exploits0References4Affected Software1

Tenable Nessus•added 2025/08/26 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2025-5846

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab EE affecting all versions from 16.10 before 17.11.5, 18.0 before 18.0.3, and 18.1 before 18.1.1 that could have allowed...

4.3CVSS5.5AI score0.00211EPSS

Exploits0References2

Tenable Nessus•added 2025/08/26 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2024-4006

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.7 before 16.9.6, all versions starting from 16.10 before 16.10.4, all...

4.3CVSS5.8AI score0.00468EPSS

Exploits1References2

Tenable Nessus•added 2025/08/20 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2025-27407

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - graphql-ruby is a Ruby implementation of GraphQL. Starting in version 1.11.5 and prior to versions 1.11.8, 1.12.25, 1.13.24, 2.0.32, 2.1.14, 2.2.17, and 2.3.21,...

9CVSS7.6AI score0.02865EPSS

Exploits2References3

Tenable Nessus•added 2025/08/18 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2024-8116

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab CE/EE affecting all versions from 16.9 before 17.4.6, 17.5 before 17.5.4, and 17.6 before 17.6.2. By using a specific...

5.3CVSS5.4AI score0.0041EPSS

Exploits1References2

Tenable Nessus•added 2025/08/18 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2021-22228

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab affecting all versions before 13.11.6, all versions starting from 13.12 before 13.12.6, and all versions starting from 14...

6.5CVSS6.3AI score0.0135EPSS

Exploits1References2

Tenable Nessus•added 2025/08/18 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2022-0172

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab CE/EE affecting all versions starting with 12.3. Under certain conditions it was possible to bypass the IP restriction fo...

6.5CVSS6.3AI score0.00765EPSS

Exploits0References2