CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4828 matches found

Vulnrichment•added 2023/05/24 10:0 a.m.•6 views

CVE-2023-2863 Simple Design Daily Journal SQLite Database cleartext storage in a file or on disk

A vulnerability has been found in Simple Design Daily Journal 1.012.GP.B on Android and classified as problematic. Affected by this vulnerability is an unknown functionality of the component SQLite Database. The manipulation leads to cleartext storage in a file or on disk. It is possible to launc...

2.3CVSS6.7AI score0.00232EPSS

Exploits1References3

Positive Technologies•added 2023/05/24 12:0 a.m.•6 views

PT-2023-2908 · Flexihub · Flexihub

Name of the Vulnerable Software and Affected Versions: FlexiHub version 5.5.14691.0 Description: A problematic vulnerability has been found in the library fusbhub.sys of the component IoControlCode Handler, affecting the function 0x220088. This leads to a null pointer dereference. The attack must...

5.5CVSS6.8AI score0.00325EPSS

Exploits1References8

RedHat Linux•added 2023/05/23 2:6 p.m.•6 views

kernel: use-after-free caused by l2cap_reassemble_sdu() in net/bluetooth/l2cap_core.c

A use-after-free flaw was found in the Linux kernel’s L2CAP bluetooth functionality in how a user triggers a race condition by two malicious flows in the L2CAP bluetooth packets. This flaw allows a local or bluetooth connection user to crash the system or potentially escalate privileges...

7.1CVSS6.6AI score0.0129EPSS

Exploits0References5

OSV•added 2023/05/18 1:15 p.m.•3 views

CVE-2023-2790

A vulnerability classified as problematic has been found in TOTOLINK N200RE 9.3.5u.6255B20211224. Affected is an unknown function of the file /squashfs-root/etcro/custom.conf of the component Telnet Service. The manipulation leads to password in configuration file. It is possible to launch the...

5.5CVSS4.8AI score

Exploits0References3

OSV•added 2023/05/11 7:15 a.m.•2 views

CVE-2023-2644

A vulnerability, which was classified as problematic, has been found in DigitalPersona FPSensor 1.0.0.1. This issue affects some unknown processing of the file C:\Program Files x86\FPSensor\bin\DpHost.exe. The manipulation leads to unquoted search path. Attacking locally is a requirement. The...

7.8CVSS5.6AI score0.00206EPSS

Exploits0References2

NVD•added 2023/05/11 7:15 a.m.•19 views

CVE-2023-2644

7.8CVSS6AI score0.00206EPSS

Exploits0References2

Positive Technologies•added 2023/05/09 12:0 a.m.•4 views

PT-2023-23466 · Unknown · Chamilo Lms

Name of the Vulnerable Software and Affected Versions: Chamilo Lms version 1.11.18 Description: A Cross Site Scripting issue allows a local authenticated attacker to execute arbitrary code via the homepage function. Recommendations: For version 1.11.18, update to a newer version that contains a f...

4.8CVSS5.4AI score0.00415EPSS

Exploits0References5

Positive Technologies•added 2023/05/04 12:0 a.m.•3 views

PT-2023-18247 · Unknown · Semsharefileprovider

Name of the Vulnerable Software and Affected Versions: SemShareFileProvider versions prior to SMR May-2023 Release 1 Description: The issue is related to improper access control, allowing local attackers to access protected data. Recommendations: For versions prior to SMR May-2023 Release 1, upda...

6.8CVSS5.3AI score0.00151EPSS

Exploits0References4

Positive Technologies•added 2023/05/04 12:0 a.m.•4 views

PT-2023-18246 · Samsung · Samsung Mobile Devices

Name of the Vulnerable Software and Affected Versions: Samsung Mobile Devices affected versions not specified Description: The issue allows a privileged local attacker to bypass ASLR due to kernel pointers being printed in the log file prior to SMR May-2023 Release 1. This is related to the...

4.4CVSS4.4AI score0.02554EPSS

Exploits0References7

OSV•added 2023/04/29 1:15 a.m.•4 views

CVE-2023-2417

A vulnerability was found in ks-soft Advanced Host Monitor up to 12.56 and classified as problematic. Affected by this issue is some unknown functionality of the file C:\Program Files x86\HostMonitor\RMA-Win\rmaactive.exe. The manipulation leads to unquoted search path. It is possible to launch t...

7.8CVSS4.7AI score0.00334EPSS

Exploits4References3

Vulnrichment•added 2023/04/29 12:31 a.m.•7 views

CVE-2023-2417 ks-soft Advanced Host Monitor rma_active.exe unquoted search path

5.3CVSS7.5AI score0.00334EPSS

Exploits4References3

Ubuntu•added 2023/04/28 4:2 p.m.•71 views

USN-6049-1: Netty vulnerabilities

It was discovered that Netty's Zlib decoders did not limit memory allocations. A remote attacker could possibly use this issue to cause Netty to exhaust memory via malicious input, leading to a denial of service. This issue only affected Ubuntu 16.04 ESM and Ubuntu 20.04 ESM. CVE-2020-11612 It wa...

7.5CVSS6.5AI score0.18891EPSS

Exploits3

GithubExploit•added 2023/04/28 2:17 p.m.•2 views

Exploit for CVE-2023-31443

CVE-2023-31443 nordugrid-arc-wn 6.14.0 DoS/LPE. Suggested...

9.7AI score

Exploits0

NVD•added 2023/04/22 4:15 p.m.•10 views

CVE-2023-2241

A vulnerability, which was classified as critical, was found in PoDoFo 0.10.0. Affected is the function readXRefStreamEntry of the file PdfXRefStreamParserObject.cpp. The manipulation leads to heap-based buffer overflow. An attack has to be approached locally. The exploit has been disclosed to th...

7.8CVSS6.5AI score0.00372EPSS

Exploits1References5

OSV•added 2023/04/22 4:15 p.m.•15 views

CVE-2023-2241

5.3CVSS8.1AI score

Exploits0References5