CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987445 advisory. Due to insufficient escaping of the newline character in the Copy as cURL feature, an attacker could trick a user into using this command, potentially leading to loc...

4.8CVSS7AI score0.00135EPSS

Exploits0References4

Tenable Nessus•added 2025/10/07 12:0 a.m.•2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414483)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414483 advisory. Linux Kernel could allow a local attacker to execute arbitrary code on the system, caused by a concurrency use-after-free flaw in the badflpintr function. By executi...

7.8CVSS7.3AI score0.00537EPSS

Exploits0References3

Tenable Nessus•added 2025/10/07 12:0 a.m.•1 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414590)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414590 advisory. Linux Kernel Bluetooth CMTP Module Double Free Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected...

7.5CVSS7AI score0.002EPSS

Exploits0References3

Tenable Nessus•added 2025/10/07 12:0 a.m.•2 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: icu (UTSA-2025-984781)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-984781 advisory. A stack buffer overflow was found in Internationl components for unicode ICU . While running the genrb binary, the 'subtag' struct overflowed at the SRBRoot::addTag...

7CVSS7.2AI score0.00296EPSS

Exploits0References4

Cvelist•added 2025/10/06 4:52 p.m.•26 views

CVE-2025-36355 IBM Security Verify Access code execution

IBM Security Verify Access and IBM Security Verify Access Docker 10.0.0.0 through 10.0.9.0 and 11.0.0.0 through 11.0.1.0 could allow a locally authenticated user to execute malicious scripts from outside of its control sphere...

8.5CVSS0.00152EPSS

Exploits0References1

RedhatCVE•added 2025/10/06 2:14 p.m.•4 views

CVE-2025-57714

An unquoted search path or element vulnerability has been reported to affect NetBak Replicator. If a local attacker gains a user account, they can then exploit the vulnerability to execute unauthorized code or commands. We have already fixed the vulnerability in the following version: NetBak...

8.5CVSS7AI score0.002EPSS

Exploits0References1

OSV•added 2025/10/04 12:11 a.m.•10 views

RLSA-2025:8607 Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: thunderbird: Out-of-bounds access when resolving Promise objects CVE-2025-4918 firefox: thunderbird: Out-of-bounds access when optimizing linear sums CVE-2025-4919 firefox: thunderbird: Clickjacking...

8.8CVSS7.4AI score0.08927EPSS

Exploits1References10

Rockylinux•added 2025/10/04 12:11 a.m.•9 views

thunderbird security update

An update is available for thunderbird. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Mozilla Thunderbird is a standalone mail and newsgroup client. Security...

9.8CVSS7.3AI score0.08927EPSS

Exploits1

Rockylinux•added 2025/10/04 12:11 a.m.•4 views

firefox security update

An update is available for firefox. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Mozilla Firefox is an open-source web browser, designed for standards...

8.1CVSS7AI score0.00493EPSS

Exploits0

OSV•added 2025/10/04 12:11 a.m.•3 views

RLSA-2025:8293 Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox: thunderbird: Clickjacking vulnerability could have led to leaking saved payment card details CVE-2025-5267 firefox: thunderbird: Potential local code execution ...

8.1CVSS6.8AI score0.00493EPSS

Exploits0References8

Tenable Nessus•added 2025/10/04 12:0 a.m.•6 views

RockyLinux 10 : firefox (RLSA-2025:8341)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:8341 advisory. firefox: thunderbird: Clickjacking vulnerability could have led to leaking saved payment card details CVE-2025-5267 firefox: thunderbird: Potential loca...

8.1CVSS7AI score0.00493EPSS

Exploits0References15

EUVD•added 2025/10/03 8:7 p.m.•14 views

EUVD-2025-25485

Malicious code in bioql PyPI...

5.3CVSS6.4AI score0.0011EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-5919

Malicious code in bioql PyPI...

8.4CVSS6.3AI score0.00353EPSS

Exploits1References2