CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2025/03/04 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2018-14033

8.8CVSS6.9AI score0.00546EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•13 views

Linux Distros Unpatched Vulnerability : CVE-2021-28875

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the standard library in Rust before 1.50.0, readtoend does not validate the return value from Read in an unsafe context. This bug could lead to a buffer...

7.5CVSS7.8AI score0.00416EPSS

Exploits1References3

Tenable Nessus•added 2025/03/04 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2018-14035

8.8CVSS7.5AI score0.00376EPSS

Cvelist•added 2025/03/03 12:0 a.m.•14 views

CVE-2025-27219

In the CGI gem before 0.4.2 for Ruby, the CGI::Cookie.parse method in the CGI library contains a potential Denial of Service DoS vulnerability. The method does not impose any limit on the length of the raw cookie value it processes. This oversight can lead to excessive resource consumption when...

5.8CVSS0.00349EPSS

Tenable Nessus•added 2025/03/03 12:0 a.m.•8 views

Linux Distros Unpatched Vulnerability : CVE-2009-5147

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - DL::dlopen in Ruby 1.8, 1.9.0, 1.9.2, 1.9.3, 2.0.0 before patchlevel 648, and 2.1 before 2.1.8 opens libraries with tainted names. CVE-2009-5147 Note that Nessu...

7.5CVSS6.7AI score0.56223EPSS

OSV•added 2025/02/11 6:15 p.m.•2 views

CVE-2025-21381

Microsoft Excel Remote Code Execution Vulnerability...

7.8CVSS7.4AI score0.00429EPSS

Tenable Nessus•added 2025/02/10 12:0 a.m.•4 views

EulerOS 2.0 SP11 : dpdk (EulerOS-SA-2025-1135)

According to the versions of the dpdk package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An out-of-bounds read vulnerability was found in DPDK's Vhost library checksum offload feature. This issue enables an untrusted or compromised guest ...

7.4CVSS7.1AI score0.00206EPSS

CVE•added 2025/02/03 12:0 a.m.•76 views

CVE-2025-25066

CVE-2025-25066 affects nDPI, specifically version 4.12 and earlier, due to a potential stack-based buffer overflow in ndpi_address_cache_restore (lib/ndpi_cache.c). The connected sources consistently describe this vulnerability as a local issue with high impact (confidentiality/integrity/availabi...

8.4CVSS7.5AI score0.0006EPSS

Exploits0References1Affected Software1

OSV•added 2025/01/27 10:15 p.m.•1 views

CVE-2025-24112

The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.3, macOS Sonoma 14.7.3. Parsing a file may lead to an unexpected app termination...

5.5CVSS5.8AI score

NVD•added 2024/12/16 7:15 p.m.•5 views

CVE-2024-12661

A vulnerability was found in IObit Advanced SystemCare Utimate up to 17.0.0. It has been rated as problematic. Affected by this issue is the function 0x8001E024 in the library AscRegistryFilter.sys of the component IOCTL Handler. The manipulation leads to null pointer dereference. The attack need...

6.8CVSS0.00017EPSS

Exploits1References4

OSV•added 2024/12/10 7:15 p.m.•0 views

CVE-2024-50931

Silicon Labs Z-Wave Series 500 v6.84.0 was discovered to contain insecure permissions...

4.6CVSS5.8AI score

OSV•added 2024/11/25 5:16 p.m.•2 views

CLSA-2024-1732554981 binutils: Fix of CVE-2018-12699

CVE-2018-12699: Fix heap-based buffer overflow, oom, and stack overflow issues...

9.8CVSS7.2AI score0.0045EPSS

Exploits1References1

Tenable Nessus•added 2024/11/13 12:0 a.m.•7 views

FreeBSD : FreeBSD -- Certificate revocation list fetch(1) option fails (ce0f52e1-a174-11ef-9a62-002590c1f29c)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the ce0f52e1-a174-11ef-9a62-002590c1f29c advisory. The fetch3 library uses environment variables for passing certain information, including the revocation...

7.5CVSS5.6AI score0.00226EPSS

GithubExploit•added 2024/10/29 9:0 a.m.•93 views

Exploit for CVE-2024-53588

iTop-privesc MY FIRST 0-DAY!!! - CVE-2024-53588 A privileg...

7.8CVSS8.2AI score0.00043EPSS

Exploits1

OSV•added 2024/10/23 5:15 p.m.•0 views

UBUNTU-CVE-2024-50383

Botan before 3.6.0, when certain GCC versions are used, has a compiler-induced secret-dependent operation in lib/utils/donna128.h in donna128 used in Chacha-Poly1305 and x25519. An addition can be skipped if a carry is not set. This was observed for GCC 11.3.0 with -O2 on MIPS, and GCC on x86-i38...

5.9CVSS6.3AI score0.00173EPSS

Exploits1References6

OSV•added 2024/10/23 5:58 a.m.•2 views

BELL-CVE-2024-50004

Bulletin has no description...

5.5CVSS7.2AI score0.00028EPSS

OSV•added 2024/10/23 5:57 a.m.•2 views

BELL-CVE-2024-50043

Bulletin has no description...

7.8CVSS7.2AI score0.00022EPSS