CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 4 days ago•5 views

EUVD-2026-34277

5.8AI score0.00017EPSS

Exploits0References3

Positive Technologies•added 4 days ago•10 views

PT-2026-46243

5.8AI score0.00017EPSS

ATTACKERKB•added 4 days ago•4 views

CVE-2026-36174

5.8AI score0.00017EPSS

NVD•added 6 days ago•8 views

CVE-2019-25719

Dräger Infinity Acute Care System and Standalone Infinity M540 patient monitors running software versions VG4.1.1, VG4.0.3, and lower contain network message handling vulnerabilities that allow network-adjacent attackers to spoof or tamper with data and cause denial-of-service conditions. Attacke...

8.8CVSS0.00017EPSS

Positive Technologies•added 6 days ago•12 views

PT-2026-45688

A buffer overflow vulnerability in the UPnP AddPortMapping command in Zyxel VMG4005-B50B firmware versions through 5.13ABRL.5.4C0 could allow an adjacent attacker to trigger a temporary denial-of-service DoS condition affecting the UPnP function of the affected device...

6.5CVSS6AI score0.00016EPSS

CVE•added 2026/05/29 2:46 p.m.•9 views

CVE-2018-25399

CVE-2018-25399 affects Open ISES Project 3.30A. The vulnerability is an SQL injection in nearby.php where unsafely constructed SQL queries occur via the tick_lat and tick_lng parameters, enabling unauthenticated attackers to send crafted GET requests to extract sensitive data (usernames, database...

8.8CVSS6.1AI score0.0009EPSS

Cvelist•added 2026/05/29 2:46 p.m.•23 views

CVE-2018-25399 The Open ISES Project 3.30A SQL Injection via nearby.php

The Open ISES Project 3.30A contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the ticklat and ticklng parameters. Attackers can send GET requests to nearby.php with crafted SQL payloads to extract...

8.8CVSS0.0009EPSS

CVE•added 2026/05/29 7:29 a.m.•11 views

CVE-2026-49322

The CVE describes weak authentication in the Wireless Control Module (WCM) of the Indian Motorcycle Scout Bobber + Tech 2025 model year. An adjacent-network attacker with read access to the in-vehicle network can recover the user-set unlock PIN by passively observing a single PIN authentication e...

4.3CVSS5.8AI score0.00009EPSS

Positive Technologies•added 2026/05/29 12:0 a.m.•5 views

PT-2026-44877

The Open ISES Project 3.30A contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the tick lat and tick lng parameters. Attackers can send GET requests to nearby.php with crafted SQL payloads to extract...

8.8CVSS6.1AI score0.0009EPSS

Exploits0References5

CNNVD•added 2026/05/29 12:0 a.m.•4 views

Indian Motorcycle Scout Bobber + Tech 安全漏洞

The Indian Motorcycle Scout Bobber + Tech is a mid-level cruiser motorcycle produced by the Japanese company Indian Motorcycle. The Scout Bobber + Tech 2025 has a security vulnerability caused by weak authentication in the Wireless Control Module. This vulnerability could allow neighboring networ...

4.3CVSS5.8AI score0.00009EPSS

CNNVD•added 2026/05/29 12:0 a.m.•6 views

Indian Motorcycle Scout Bobber + Tech 安全漏洞

The Indian Motorcycle Scout Bobber + Tech is a mid-level cruiser motorcycle produced by the Japanese company Indian Motorcycle. The Scout Bobber + Tech 2025 has a security vulnerability, where the resource consumption of the Wireless Control Module is uncontrolled, which may allow neighboring...

4.6CVSS5.8AI score0.00024EPSS

CNNVD•added 2026/05/29 12:0 a.m.•6 views

Indian Motorcycle Scout Bobber + Tech 安全漏洞

The Indian Motorcycle Scout Bobber + Tech is a mid-level cruiser motorcycle produced by the Japanese company Indian Motorcycle. The Scout Bobber + Tech has a security vulnerability, which stems from an error in the behavior displayed on the Infotainment/Digital Round display. This error may allow...

2.4CVSS5.8AI score0.00018EPSS

CNNVD•added 2026/05/28 12:0 a.m.•6 views

TP-Link Archer C64 安全漏洞

The TP-Link Archer C64 is a wireless router produced by TP-Link Corporation. The TP-Link Archer C64 V1 version has a security vulnerability. This vulnerability stems from improper execution of the authentication rate limit during the debugging of the SSH service. As a result, attackers in adjacen...

8.7CVSS5.9AI score0.00037EPSS

CNNVD•added 2026/05/12 12:0 a.m.•3 views

Zyxel WRE6505 安全漏洞

Zyxel WRE6505 is a wireless signal expansion device produced by Zyxel Corporation in China. The Zyxel WRE6505 v2 V1.00ABDV.3C0 version contains a security vulnerability. This vulnerability stems from the improper limit on the number of authentication attempts made by the web management interface...

6.5CVSS5.8AI score0.00028EPSS

AstraLinux•added 2026/05/03 11:59 p.m.•0 views

Astra Linux - уязвимость в chromium

Before version 104.0.5112.79, using Nearby Share in Google Chrome on Chrome OS allowed a remote attacker who convinced a user to engage in certain user interactions to potentially exploit heap corruption through specific UI interactions...

8.8CVSS7.4AI score0.01042EPSS

Positive Technologies•added 2026/04/21 12:0 a.m.•2 views

PT-2026-34184

Name of the Vulnerable Software and Affected Versions Zero Motorcycles firmware versions 44 and prior Description An issue in the Bluetooth pairing process allows an attacker in close proximity to forcibly pair a device with the motorcycle while it is in pairing mode. Once paired, the attacker ca...

6.4CVSS5.8AI score0.00024EPSS

Exploits0References5

CNNVD•added 2026/04/13 12:0 a.m.•3 views

SAMSUNG Mobile devices 安全漏洞

Samsung Mobile devices are a series of mobile devices produced by South Korea’s Samsung Corporation, including smartphones and tablets. There are security vulnerabilities in Samsung Mobile Devices, which stem from the leakage of sensitive information. This vulnerability may allow neighboring...

6.5CVSS5.8AI score0.00018EPSS