CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

64 matches found

Tenable Nessus•added 2026/04/14 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2026-4158

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - KeePassXC OpenSSL Configuration Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate...

7.3CVSS7.5AI score0.00226EPSS

Exploits0References2

NVD•added 2026/04/11 1:16 a.m.•4 views

CVE-2026-4158

KeePassXC OpenSSL Configuration Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of KeePassXC. An attacker must first obtain the ability to execute low-privileged code on the targe...

7.3CVSS0.00226EPSS

Exploits0References2

OSV•added 2026/04/11 1:16 a.m.•2 views

UBUNTU-CVE-2026-4158

7.3CVSS6.2AI score0.00226EPSS

Exploits0References4

Cvelist•added 2026/04/11 12:17 a.m.•31 views

CVE-2026-4158 KeePassXC OpenSSL Configuration Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

7.3CVSS0.00226EPSS

Exploits0References2

ATTACKERKB•added 2026/04/11 12:17 a.m.•3 views

CVE-2026-4158

7.3CVSS7.5AI score0.00226EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2026/04/11 12:17 a.m.•2 views

CVE-2026-4158 KeePassXC OpenSSL Configuration Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

7.3CVSS6.2AI score0.00226EPSS

Exploits0References2

EUVD•added 2026/04/11 12:17 a.m.•2 views

EUVD-2026-21645

7.3CVSS7.5AI score0.00226EPSS

Exploits0References2

Debian CVE•added 2026/04/11 12:17 a.m.•1 views

CVE-2026-4158

7.3CVSS7.8AI score0.00226EPSS

Exploits0

CVE•added 2026/04/11 12:17 a.m.•37 views

CVE-2026-4158

CVE-2026-4158 affects KeePassXC due to an OpenSSL configuration issue where the program loads configuration from an unsecured location, enabling a local attacker who can run low-privileged code to escalate privileges and execute arbitrary code within KeePassXC. Connected documents corroborate a l...

7.3CVSS7.5AI score0.00226EPSS

Exploits0References2

CNNVD•added 2026/04/11 12:0 a.m.•3 views

KeePassXC 代码问题漏洞

KeePassXC is an open-source cross-platform password manager. KeePassXC has code vulnerabilities, which stem from uncontrolled OpenSSL configuration paths, potentially leading to local privilege escalation...

7.3CVSS7.2AI score0.00226EPSS

Exploits0References2

Tenable Nessus•added 2026/03/20 12:0 a.m.•12 views

KeePassXC < 2.7.12 Local Privilege Escalation

The version of KeePassXC installed on the remote Windows host is prior to 2.7.12. It is, therefore, affected by a local privilege escalation vulnerability due to loading OpenSSL configuration from an unsecured location. A local attacker with low-privileged access could leverage this vulnerability...

7.3CVSS7.3AI score0.00226EPSS

Exploits0References3

Positive Technologies•added 2026/03/16 12:0 a.m.•3 views

PT-2026-25837

Name of the Vulnerable Software and Affected Versions KeePassXC affected versions not specified Description KeePassXC installations are susceptible to local privilege escalation. An attacker who can execute low-privileged code may be able to gain elevated access. This issue is related to the...

7.3CVSS7.1AI score0.00226EPSS

Exploits0References10

Zero Day Initiative•added 2026/03/16 12:0 a.m.•4 views

KeePassXC OpenSSL Configuration Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of KeePassXC. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the configuration of...

7.3CVSS6.2AI score0.00226EPSS

Exploits0References1

RedhatCVE•added 2025/12/18 12:36 a.m.•12 views

CVE-2025-65203

KeePassXC-Browser thru 1.9.9.2 autofills or prompts to fill stored credentials into documents rendered under a browser-enforced CSP directive and iframe attribute sandbox, allowing attacker-controlled script in the sandboxed document to access populated form fields and exfiltrate credentials...

7.1CVSS6.8AI score0.00113EPSS

Exploits0References1

NVD•added 2025/12/17 6:15 p.m.•6 views

CVE-2025-65203

7.1CVSS0.00113EPSS

Exploits0References2

OSV•added 2025/12/17 6:15 p.m.•4 views

CVE-2025-65203

7.1CVSS6.5AI score

Exploits0References2

Cvelist•added 2025/12/17 12:0 a.m.•25 views

CVE-2025-65203

0.00113EPSS

Exploits0References2

Vulnrichment•added 2025/12/17 12:0 a.m.•3 views

CVE-2025-65203

6.4AI score0.00113EPSS

Exploits0References2

Positive Technologies•added 2025/12/17 12:0 a.m.•5 views

PT-2025-51850

Name of the Vulnerable Software and Affected Versions KeePassXC-Browser versions through 1.9.9.2 Description The software autofills or prompts users to fill stored credentials into documents rendered under a browser-enforced Content Security Policy CSP directive and iframe attribute sandbox. This...

7.1CVSS6.5AI score0.00113EPSS

Exploits0References5

CVE•added 2025/12/17 12:0 a.m.•9 views

CVE-2025-65203

CVE-2025-65203 affects KeePassXC-Browser up to version 1.9.9.2. The vulnerability arises when autofilled credentials in sandboxed documents under browser CSP and iframe sandbox allow attacker-controlled scripts in the sandbox to access populated form fields and exfiltrate credentials. Public advi...

7.1CVSS6.4AI score0.00113EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by