CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2025/09/10 11:35 a.m.•3 views

CVE-2025-40979 DLL search order hijack in Wave by Grandstream Networks

7CVSS7.4AI score0.0013EPSS

Positive Technologies•added 2025/09/10 12:0 a.m.•8 views

PT-2025-37036

Name of the Vulnerable Software and Affected Versions: Windows 11 version 1.27.8 Description: A DLL search order hijacking issue exists in the wave.exe executable. Successful exploitation could allow attackers with local access to execute arbitrary code by placing an arbitrary file in the...

7CVSS7.1AI score0.0013EPSS

Exploits0References4

Positive Technologies•added 2025/09/10 12:0 a.m.•5 views

PT-2025-37066

Name of the Vulnerable Software and Affected Versions: Dell PowerProtect Data Manager, Generic Application Agent versions 19.19 and 19.20 Description: Dell PowerProtect Data Manager, Generic Application Agent contains an Incorrect Default Permissions issue. A low privileged attacker with local...

7.8CVSS6.7AI score0.0012EPSS

Exploits0References3

Tenable Nessus•added 2025/09/10 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2023-1250

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper Input Validation vulnerability in OTRS AG OTRS ACL modules, OTRS AG OTRS Community Edition ACL modules allows Local Execution of Code. When...

7.8CVSS5.6AI score0.00295EPSS

7.6CVSS7.8AI score0.01453EPSS

Linux Distros Unpatched Vulnerability : CVE-2017-0527

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An elevation of privilege vulnerability in the HTC Sensor Hub Driver could enable a local malicious application to execute arbitrary code within the context of...

7.8CVSS7.8AI score0.00282EPSS

Linux Distros Unpatched Vulnerability : CVE-2021-31240

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue found in libming v.0.4.8 allows a local attacker to execute arbitrary code via the parseSWFIMPORTASSETS function in the parser.c file. CVE-2021-31240...

Exploits1References2

Tenable Nessus•added 2025/09/10 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2017-0508

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An elevation of privilege vulnerability in the kernel ION subsystem could enable a local malicious application to execute arbitrary code within the context of t...

9.3CVSS8.1AI score0.01823EPSS

Tenable Nessus•added 2025/09/10 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2016-7102

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ownCloud Desktop before 2.2.3 allows local users to execute arbitrary code and possibly gain privileges via a Trojan library in a special path in the C: drive...

8.4CVSS8.2AI score0.00529EPSS

9.3CVSS8.1AI score0.0167EPSS

Linux Distros Unpatched Vulnerability : CVE-2017-0455

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An information disclosure vulnerability in the Qualcomm bootloader could help to enable a local malicious application to to execute arbitrary code within the...

9.3CVSS8AI score0.00911EPSS

Linux Distros Unpatched Vulnerability : CVE-2017-0415

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An elevation of privilege vulnerability in Mediaserver could enable a local malicious application to execute arbitrary code within the context of a privileged...

Tenable Nessus•added 2025/09/10 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2017-0502

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An elevation of privilege vulnerability in MediaTek components, including the M4U driver, sound driver, touchscreen driver, GPU driver, and Command Queue driver...

9.3CVSS8.1AI score0.00745EPSS

Tenable Nessus•added 2025/09/10 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2017-0519

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An elevation of privilege vulnerability in the Qualcomm fingerprint sensor driver could enable a local malicious application to execute arbitrary code within th...

7.6CVSS7.8AI score0.01542EPSS

Tenable Nessus•added 2025/09/10 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2017-0506

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An elevation of privilege vulnerability in MediaTek components, including the M4U driver, sound driver, touchscreen driver, GPU driver, and Command Queue driver...

9.3CVSS8.1AI score0.00745EPSS

Tenable Nessus•added 2025/09/10 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2017-0335

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the...

9.3CVSS8.1AI score0.01703EPSS

Tenable Nessus•added 2025/09/10 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2024-55503

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue in termius before v.9.9.0 allows a local attacker to execute arbitrary code via a crafted script to the DYLDINSERTLIBRARIES component. CVE-2024-55503...

3.3CVSS6.1AI score0.00419EPSS

9.3CVSS8AI score0.00911EPSS

Linux Distros Unpatched Vulnerability : CVE-2017-0417

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An elevation of privilege vulnerability in Audioserver could enable a local malicious application to execute arbitrary code within the context of a privileged...

OSV•added 2025/09/09 5:16 p.m.•1 views

CVE-2025-55228

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Win32K - GRFX allows an authorized attacker to execute code locally...

7.8CVSS6AI score0.00301EPSS

OSV•added 2025/09/09 5:16 p.m.•2 views

CVE-2025-55236

Time-of-check time-of-use toctou race condition in Graphics Kernel allows an authorized attacker to execute code locally...

7.8CVSS5.9AI score0.00397EPSS