CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

19 matches found

Positive Technologies•added 2025/11/27 12:0 a.m.•3 views

PT-2025-48215

Improper Privilege Management vulnerability in ZTE ElasticNet UME R32 on Linux allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects ElasticNet UME R32: ElasticNet UME R32 V16.23.20.04...

7.5CVSS7AI score0.00232EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•6 views

EUVD-2007-3554

Malware in sbrugna...

7.5CVSS6.4AI score0.02327EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-17205

Malware in sbrugna...

7.8CVSS7.6AI score0.00282EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2000-0943

Malware in sbrugna...

4.6CVSS6.4AI score0.00389EPSS

Exploits0References4

CVE•added 2025/04/07 10:15 a.m.•48 views

CVE-2024-45556

CVE-2024-45556 describes an improper access control issue in TZ (TrustZone) firmware affecting Qualcomm chipsets, where the access configuration permits Linux to read key registers in the TCSR. This cryptographic vulnerability exposes confidential data due to unauthorized access to critical key r...

6.5CVSS6.8AI score0.00078EPSS

Exploits0References1Affected Software1

CNNVD•added 2025/04/07 12:0 a.m.•5 views

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm, an American company. A security vulnerability exists in Qualcomm Chipsets that stems from an access control configuration that allows Linux to read the TCSR key register...

6.5CVSS6.6AI score0.00078EPSS

Exploits0References3

BDU FSTEC•added 2024/05/28 12:0 a.m.•4 views

The vulnerability of the TIPC (Process-to-Process Communication Service) in the Linux operating system allows a attacker to gain access to protected data.

The vulnerability of the TIPC Process-to-Process Communication Service in the Linux operating system is related to the lack of initialization for data sent by users. Exploiting this vulnerability can allow attackers to gain access to protected data...

5.5CVSS6.7AI score0.00385EPSS

Exploits1References10Affected Software2

OSV•added 2023/03/07 5:15 p.m.•2 views

CVE-2022-41328

A improper limitation of a pathname to a restricted directory vulnerability 'path traversal' CWE-22 in Fortinet FortiOS version 7.2.0 through 7.2.3, 7.0.0 through 7.0.9 and before 6.4.11 allows a privileged attacker to read and write files on the underlying Linux system via crafted CLI commands...

7.1CVSS5.8AI score0.12316EPSS

Exploits0References2

OSV•added 2021/04/02 3:15 p.m.•2 views

CVE-2021-28123

Undocumented Default Cryptographic Key Vulnerability in Cohesity DataPlatform version 6.3 prior 6.3.1g, 6.4 up to 6.4.1c and 6.5.1 through 6.5.1b. The ssh key can provide an attacker access to the linux system in the affected version...

9.8CVSS7.2AI score0.01428EPSS

Exploits0References1

BDU FSTEC•added 2020/12/01 12:0 a.m.•4 views

The vulnerability of the driver for Intel® operating system kernels in Linux, related to access control deficiencies, allows attackers to gain access to confidential data.

The vulnerability of the driver for Intel® operating system kernels in Linux is related to access control deficiencies. Exploiting this vulnerability allows an attacker to gain access to confidential data...

5.5CVSS6.4AI score0.00446EPSS

Exploits0References24Affected Software4

OSV•added 2018/03/08 7:29 a.m.•3 views

CVE-2018-0221

A vulnerability in specific CLI commands for the Cisco Identity Services Engine ISE could allow an authenticated, local attacker to perform command injection to the underlying operating system or cause a hang or disconnect of the user session. The attacker needs valid administrator credentials fo...

6.7CVSS5.8AI score0.00834EPSS

Exploits0References3

Kitploit•added 2017/11/05 9:45 p.m.•24 views

KRACK Detector - Detect and prevent KRACK attacks in your network

KRACK Detector is a Python script to detect possible KRACK attacks against client devices on your network. The script is meant to be run on the Access Point rather than the client devices. It listens on the Wi-Fi interface and waits for duplicate message 3 of the 4-way handshake. It then...

7.2AI score

Exploits0References1

OSV•added 2017/06/08 7:29 p.m.•7 views

CVE-2016-5416

389 Directory Server in Red Hat Enterprise Linux Desktop 6 through 7, Red Hat Enterprise Linux HPC Node 6 through 7, Red Hat Enterprise Linux Server 6 through 7, and Red Hat Enterprise Linux Workstation 6 through 7 allows remote attackers to read the default Access Control Instructions...

7.5CVSS8.4AI score

Exploits0References4

OSV•added 2017/04/07 5:59 p.m.•2 views

CVE-2016-9196

A vulnerability in login authentication management in Cisco Aironet 1800, 2800, and 3800 Series Access Point platforms could allow an authenticated, local attacker to gain unrestricted root access to the underlying Linux operating system. The root Linux shell is provided for advanced...

6.7CVSS5.8AI score0.00421EPSS

Exploits0References3

NVD•added 2007/07/05 7:30 p.m.•18 views

CVE-2007-3570

The Linux Access Gateway in Novell Access Manager before 3.0 SP1 Release Candidate 1 RC1 allows remote attackers to bypass unspecified security controls via Fullwidth/Halfwidth Unicode encoded data in a HTTP POST request...

7.5CVSS6.7AI score0.02327EPSS

Exploits0References4

Prion•added 2007/07/05 7:30 p.m.•16 views

Cross site request forgery (csrf)

7.5CVSS7.3AI score0.02327EPSS

Exploits0References4Affected Software1

CVE•added 2007/07/05 7:0 p.m.•49 views

CVE-2007-3570

The CVE-2007-3570 issue affects the Linux Access Gateway component of Novell Access Manager prior to 3.0 SP1 Release Candidate 1. The vulnerability allows remote attackers to bypass unspecified security controls by sending Fullwidth/Halfwidth Unicode encoded data in an HTTP POST request. Document...

7.5CVSS6.8AI score0.02327EPSS

Exploits0References4Affected Software1