CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

771 matches found

Positive Technologies•added 2025/11/11 12:0 a.m.•4 views

PT-2025-46344

A local code execution security issue exists within Studio 5000® Simulation Interface™ via the API. This vulnerability allows any Windows user on the system to extract files using path traversal sequences, resulting in execution of scripts with Administrator privileges on system reboot...

8.9CVSS7.2AI score0.00126EPSS

Exploits0References2

Tenable Nessus•added 2025/11/07 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2025-12745

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A weakness has been identified in QuickJS up to eb2c89087def1829ed99630cb14b549d7a98408c. This affects the function jsarraybufferslice of the file quickjs.c. Th...

7.8CVSS5.7AI score0.00179EPSS

Exploits1References3

RedhatCVE•added 2025/11/06 6:37 p.m.•44 views

CVE-2025-12745

A weakness has been identified in QuickJS up to eb2c89087def1829ed99630cb14b549d7a98408c. This affects the function jsarraybufferslice of the file quickjs.c. This manipulation causes buffer over-read. The attack is restricted to local execution. The exploit has been made available to the public a...

5.3CVSS5.2AI score0.00179EPSS

Exploits1References1

OSV•added 2025/11/06 5:15 p.m.•4 views

CVE-2025-10885

A maliciously crafted file, when executed on the victim's machine, can lead to privilege escalation to NT AUTHORITY/SYSTEM due to an insufficient validation of loaded binaries. An attacker with local and low-privilege access could exploit this to execute code as SYSTEM...

7.8CVSS5.9AI score0.00133EPSS

Exploits0References2

NVD•added 2025/11/05 7:15 p.m.•6 views

CVE-2025-12745

7.8CVSS0.00179EPSS

Exploits1References7

OSV•added 2025/11/05 7:15 p.m.•2 views

DEBIAN-CVE-2025-12745

7.8CVSS5.3AI score0.00179EPSS

Exploits1References1

OSV•added 2025/11/05 7:15 p.m.•5 views

CVE-2025-12745

7.8CVSS5.1AI score

Exploits0References7

OSV•added 2025/11/05 7:15 p.m.•1 views

UBUNTU-CVE-2025-12745

7.8CVSS5.5AI score0.00179EPSS

Exploits1References9

Cvelist•added 2025/11/05 6:32 p.m.•10 views

CVE-2025-12745 QuickJS quickjs.c js_array_buffer_slice buffer over-read

5.3CVSS0.00179EPSS

Exploits1References7

AlpineLinux•added 2025/11/05 6:32 p.m.•4 views

CVE-2025-12745

7.8CVSS6.5AI score0.00179EPSS

Exploits1References7

Debian CVE•added 2025/11/05 6:32 p.m.•4 views

CVE-2025-12745

7.8CVSS5.3AI score0.00179EPSS

Exploits1

CNNVD•added 2025/11/05 12:0 a.m.•4 views

QuickJS 安全漏洞

QuickJS is a small and embeddable Javascript engine open-sourced by QuickJS. A security vulnerability exists in QuickJS, which stems from a buffer over-read in the function jsarraybufferslice in the file quickjs.c, which could lead to a local execution attack...

7.8CVSS5.4AI score0.00179EPSS

Exploits1References7

Positive Technologies•added 2025/11/05 12:0 a.m.•8 views

PT-2025-45149

Name of the Vulnerable Software and Affected Versions QuickJS versions prior to eb2c89087def1829ed99630cb14b549d7a98408c Description A flaw exists in QuickJS that allows for a buffer over-read. This issue is related to the js array buffer slice function within the quickjs.c file. Exploitation is...

7.8CVSS5.5AI score0.00179EPSS

Exploits1References18

AstraLinux•added 2025/11/01 10:54 a.m.•4 views

Astra Linux – Vulnerability in Tiff

A flaw has been discovered in LibTIFF 4.7.0. This flaw affects the functions TIFFmallocExt/TIFFCheckRealloc/TIFFHashSetNew/InitCCITTFax3 in the file tools/tiffcmp.c of the tiffcmp component. Performing certain manipulations can lead to a memory leak. The attack is limited to local execution. This...

2.5CVSS5.1AI score0.00196EPSS

Exploits1References3

EUVD•added 2025/10/30 2:23 p.m.•4 views

EUVD-2025-37004

Dell Unity, versions 5.5 and prior, contains an Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Command execution and Elevation of privilege...

7.8CVSS6.1AI score0.00598EPSS

Exploits0References2

Ubuntu•added 2025/10/29 3:49 p.m.•4 views

USN-7847-1: GNU binutils vulnerabilities

It was discovered that GNU binutils incorrectly handled certain files. An attacker could possibly use this issue to cause a crash or execute arbitrary code. The attack is restricted to local execution. CVE-2025-11082 It was discovered that GNU binutils incorrectly handled certain inputs. An...

7.8CVSS6.5AI score0.00619EPSS

Exploits9

OSV•added 2025/10/29 3:49 p.m.•3 views

USN-7847-1 binutils vulnerabilities

7.8CVSS6.6AI score0.00619EPSS

Exploits9References12

RedhatCVE•added 2025/10/28 8:55 a.m.•7 views

CVE-2025-12247

A weakness has been identified in Hasleo Backup Suite up to 5.2. Impacted is an unknown function of the component HasleoImageMountService/HasleoBackupSuiteService. This manipulation causes unquoted search path. The attack is restricted to local execution. The attack's complexity is rated as high...

7.3CVSS6.3AI score0.00154EPSS

Exploits0References1

EUVD•added 2025/10/27 8:2 a.m.•4 views

EUVD-2025-36136

7.3CVSS5.5AI score0.00154EPSS

Exploits0References8

CNNVD•added 2025/10/27 12:0 a.m.•3 views

Hasleo Backup Suite 代码问题漏洞

Hasleo Backup Suite is a Windows backup and recovery software from Hasleo. A code issue vulnerability exists in Hasleo Backup Suite 5.2 and prior versions that stems from an unquoted search path in the component HasleoImageMountService/HasleoBackupSuiteService, which could lead to a local executi...

7.3CVSS6.8AI score0.00154EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by