CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

62 matches found

Vulnrichment•added 2026/05/15 9:20 a.m.•3 views

CVE-2026-41960

Permission control vulnerability in calls. Impact: Successful exploitation of this vulnerability may affect availability...

5.8CVSS5.8AI score0.00016EPSS

Exploits0References1

Vulnrichment•added 2026/05/15 9:6 a.m.•6 views

CVE-2026-41965

Use-After-Free UAF vulnerability in the web. Impact: Successful exploitation of this vulnerability may affect availability...

5.6CVSS5.8AI score0.00023EPSS

Exploits0References2

NVD•added 2026/04/13 5:16 a.m.•0 views

CVE-2026-34864

Boundary-unlimited vulnerability in the application read module. Impact: Successful exploitation of this vulnerability may affect availability...

6.8CVSS0.00007EPSS

Exploits0References2

Cvelist•added 2026/04/13 4:7 a.m.•25 views

CVE-2026-34859

UAF vulnerability in the kernel module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality...

5.9CVSS0.00007EPSS

Exploits0References2

ATTACKERKB•added 2026/04/13 3:49 a.m.•0 views

CVE-2026-34860

Access control vulnerability in the memo module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality...

4.1CVSS5.8AI score0.00004EPSS

Exploits0References3Affected Software1

RedhatCVE•added 2026/02/11 7:30 a.m.•3 views

CVE-2026-23685

Due to a Deserialization vulnerability in SAP NetWeaver JMS service, an attacker authenticated as an administrator with local access could submit specially crafted content to the server. If processed by the application, this content could trigger unintended behavior during internal logic executio...

4.4CVSS5.6AI score0.00214EPSS

Exploits0References1

OSV•added 2026/02/10 4:16 a.m.•1 views

CVE-2026-0505

The BSP applications allow an unauthenticated user to manipulate user-controlled URL parameters that are not sufficiently validated. This could result in unvalidated redirection to attacker-controlled websites, leading to a low impact on confidentiality and integrity, and no impact on the...

6.1CVSS5.8AI score

Exploits0References2

CVE•added 2025/11/28 2:40 a.m.•3 views

CVE-2025-58314

CVE-2025-58314 is an invalid-memory-access vulnerability in a Huawei HarmonyOS/EMUI component driver module. The issue stems from a driver module accessing invalid memory, with documented impact to availability and confidentiality. Affected platforms include Huawei HarmonyOS and EMUI. The CVE det...

7.1CVSS6.5AI score0.0001EPSS

Exploits0References1Affected Software2

NVD•added 2025/11/11 5:15 p.m.•1 views

CVE-2025-24918

Improper link resolution before file access 'link following' for some IntelR Server Configuration Utility software and IntelR Server Firmware Update Utility software before version 16.0.12. within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an...

6.7CVSS0.00015EPSS

Exploits0References1

Cvelist•added 2025/11/11 4:50 p.m.•4 views

CVE-2025-24848

Protection mechanism failure for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This...

6.3CVSS0.00013EPSS

Exploits0References1

CVE•added 2025/11/11 12:15 a.m.•4 views

CVE-2025-42889

CVE-2025-42889 affects SAP Starter Solution. An authenticated attacker can execute crafted database queries, exposing the back-end database. Impact is described as low for confidentiality and integrity, with no availability impact. Multiple connected sources (NVD/Red Hat/NCSc/CVE listing) confirm...

5.4CVSS6.5AI score0.00032EPSS

Exploits0References2