CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5106 matches found

Sonatype Nexus Repository Manager 3 - Local File Inclusion

Path Traversal in Sonatype Nexus Repository 3 allows an unauthenticated attacker to read system files. Fixed in version 3.68.1. id: CVE-2024-4956 info: name: Sonatype Nexus Repository Manager 3 - Local File Inclusion author: ritikchaddha severity: high description: | Path Traversal in Sonatype...

7.5CVSS7.3AI score0.94028EPSS

Exploits16References4

Nuclei•added yesterday•50 views

Nexus Repository 2 - Remote Code Execution

A Remote Code Execution vulnerability has been discovered in Sonatype Nexus Repository 2.This issue affects Nexus Repository 2 OSS/Pro versions up to and including 2.15.1. id: CVE-2024-5082 info: name: Nexus Repository 2 - Remote Code Execution author: iamnoooob,rootxharsh,pdresearch severity: hi...

7.1CVSS5.7AI score0.06358EPSS

Exploits0References2

Nuclei•added yesterday•21 views

Joomla! Portfolio Nexus - Remote File Inclusion

Joomla! Portfolio Nexus 1.5 contains a remote file inclusion vulnerability in the inertialFATE iF comifnexus component that allows remote attackers to include and execute arbitrary local files via a .. dot dot in the controller parameter to index.php. id: CVE-2009-4679 info: name: Joomla! Portfol...

7.5CVSS6.1AI score0.06322EPSS

Exploits1References4

Nuclei•added 3 days ago•70 views

Sonatype Nexus Repository Manager <3.15.0 - Remote Code Execution

Sonatype Nexus Repository Manager before 3.15.0 is susceptible to remote code execution. id: CVE-2019-7238 info: name: Sonatype Nexus Repository Manager 3.15.0 - Remote Code Execution author: pikpikcu severity: critical description: Sonatype Nexus Repository Manager before 3.15.0 is susceptible t...

9.8CVSS7.8AI score0.94379EPSS

Exploits4References5

Tenable Nessus•added 6 days ago•6 views

Cisco Nexus 3000 and 9000 Series Switches BGP DoS (cisco-sa-bgp-iefab-3hb2pwtx)

According to its self-reported version, Cisco NX-OS Software is affected by a vulnerability. - A vulnerability in the Border Gateway Protocol BGP enforce-first-as feature of Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an...

6.8CVSS5.8AI score0.00039EPSS

Exploits0References3

The Hacker News•added 2026/05/21 2:17 p.m.•18 views

Showboat Linux Malware Hits Middle East Telecom with SOCKS5 Proxy Backdoor

Cybersecurity researchers have disclosed details of a new Linux malware dubbed Showboat that has been put to use in a campaign targeting a telecommunications provider in the Middle East since at least mid-2022. "Showboat is a modular post-exploitation framework designed for Linux systems, capable...

9.8CVSS7.4AI score0.94313EPSS

Exploits63

NVD•added 2026/05/20 5:16 p.m.•6 views

CVE-2026-20171

A vulnerability in the Border Gateway Protocol BGP enforce-first-as feature of Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an unauthenticated, remote attacker to trigger BGP peer flaps, resulting in a denial of service DoS condition...

6.8CVSS0.00039EPSS

Exploits0References1

Vulnrichment•added 2026/05/20 4:6 p.m.•4 views

CVE-2026-20171 Cisco Nexus 3000 and 9000 Series Border Gateway Protocol Denial of Service Vulnerability

6.8CVSS5.8AI score0.00039EPSS

Exploits0References1

ATTACKERKB•added 2026/05/20 4:6 p.m.•3 views

CVE-2026-20171

6.8CVSS5.8AI score0.00039EPSS

Exploits0References2Affected Software1

CVE•added 2026/05/20 4:6 p.m.•68 views

CVE-2026-20171

CVE-2026-20171 affects Cisco Nexus 3000 and Nexus 9000 Series switches in standalone NX-OS mode. The vulnerability lies in the BGP enforce-first-as feature, due to incorrect parsing of a transitive BGP attribute. An unauthenticated, remote attacker could send a crafted BGP update to trigger BGP p...

6.8CVSS5.8AI score0.00039EPSS

Exploits0References1

EUVD•added 2026/05/20 4:6 p.m.•5 views

EUVD-2026-31135

6.8CVSS5.8AI score0.00039EPSS

Exploits0References1

Cvelist•added 2026/05/20 4:6 p.m.•29 views

CVE-2026-20171 Cisco Nexus 3000 and 9000 Series Border Gateway Protocol Denial of Service Vulnerability

6.8CVSS0.00039EPSS

Exploits0References1

Cisco•added 2026/05/20 4:0 p.m.•4 views

Cisco Nexus 3000 and 9000 Series Switches Border Gateway Protocol Denial of Service Vulnerability

6.8CVSS5.8AI score0.00039EPSS

Exploits0References1

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в ansible

A vulnerability was discovered in Ansible Engine versions 2.9.x before 2.9.3, 2.8.x before 2.8.8, and 2.7.x before 2.7.16 and earlier. In these versions, the nxosfilecopy module of Ansible can be used to copy files to the flash or bootflash on NXOS devices. Malicious code could manipulate the...

7.3CVSS7AI score0.00273EPSS

Exploits0References2

Positive Technologies•added 2026/05/20 12:0 a.m.•5 views

PT-2026-42190

Name of the Vulnerable Software and Affected Versions Cisco Nexus 3000 Series Switches versions prior to 10.61s Cisco Nexus 9000 Series Switches versions prior to 10.61s Description A flaw in the Border Gateway Protocol BGP enforce-first-as feature of Cisco Nexus 3000 and 9000 Series Switches in...

6.8CVSS5.8AI score0.00039EPSS

Exploits0References5

GithubExploit•added 2026/05/14 11:15 a.m.•90 views

Nexus-Sonatype-Repository-Manager-Groovy-Script-RCE-Authenticated-

Nexus Repository Manager 3 Authenticated RCE Groovy Script Ta...

6.2AI score

Exploits0

Nuclei•added 2026/05/14 3:20 a.m.•98 views

Sonatype Nexus Repository Manager 3 - Remote Code Execution

Sonatype Nexus Repository before 3.21.2 allows JavaEL Injection id: CVE-2020-10199 info: name: Sonatype Nexus Repository Manager 3 - Remote Code Execution author: rootxharsh,iamnoooob,pdresearch severity: high description: Sonatype Nexus Repository before 3.21.2 allows JavaEL Injection impact: |...

9CVSS7.3AI score0.94379EPSS

Exploits10References5

EUVD•added 2026/05/11 6:31 p.m.•4 views

EUVD-2026-29179

An authenticated user with upload permission to a hosted repository can store content that causes arbitrary JavaScript to execute in the browser of any user who browses that repository directory via the HTML index page in Sonatype Nexus Repository versions 3.6.0 through versions before 3.92.0. Th...

5.1CVSS6AI score0.00052EPSS

Exploits0References3

EUVD•added 2026/05/11 6:31 p.m.•3 views

EUVD-2026-29094

An authenticated administrator who configures or tests LDAP connectivity in Sonatype Nexus Repository Manager versions 3.0.0 through 3.91.1 may be able to initiate unintended server-side connections when interacting with a malicious LDAP server...

5.1CVSS5.8AI score0.00059EPSS

Exploits0References3

NVD•added 2026/05/11 6:16 p.m.•6 views

CVE-2026-7308

5.1CVSS0.00052EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by