CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

374 matches found

EUVD•added 2026/05/20 1:9 p.m.•13 views

EUVD-2026-31105

Heap-based buffer overflow in Microsoft Defender allows an unauthorized attacker to execute code over a network...

8.1CVSS6.1AI score0.0003EPSS

Exploits0References1

Positive Technologies•added 2026/05/12 12:0 a.m.•6 views

PT-2026-40200

Insufficient granularity of access control in Microsoft Office SharePoint allows an authorized attacker to execute code over a network...

8.8CVSS6AI score0.00071EPSS

Exploits0References3

Positive Technologies•added 2026/05/12 12:0 a.m.•7 views

PT-2026-40152

Name of the Vulnerable Software and Affected Versions Windows Server 2025 affected versions not specified Description A use after free issue in Windows Kernel-Mode Drivers allows an authorized attacker to execute code over a network. This occurs via NVMe-oF NVMe over Fabrics, a network protocol...

8CVSS6AI score0.00062EPSS

Exploits0References6

Positive Technologies•added 2026/05/08 12:0 a.m.•7 views

PT-2026-38716

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Serialization. Supported versions that are affected are Java SE: 7u251, 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...

4.3CVSS5.8AI score0.0026EPSS

Exploits0References17

OSV•added 2026/05/06 2:43 p.m.•2 views

BIT-JAVA-MIN-2022-21426

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JAXP. Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14, 17.0.2, 18; Oracle GraalVM Enterprise Edition: 20.3.5, 21.3.1 and 22.0.0.2. Easily exploitable...

5.3CVSS6.5AI score0.00062EPSS

Exploits0References6

OSV•added 2026/05/06 2:42 p.m.•3 views

BIT-JAVA-MIN-2020-2756

4.3CVSS6.7AI score0.0026EPSS

Exploits0References16

OSV•added 2026/05/06 2:42 p.m.•3 views

BIT-JAVA-2020-2757

4.3CVSS6.7AI score0.0026EPSS

Exploits0References16

OSV•added 2026/05/06 2:41 p.m.•3 views

BIT-JAVA-2020-14798

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multipl...

3.1CVSS6.8AI score0.00246EPSS

Exploits0References7

Positive Technologies•added 2026/05/06 12:0 a.m.•3 views

PT-2026-38047

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Networking. Supported versions that are affected are Oracle Java SE: 8u451-perf, 11.0.27, 17.0.15, 21.0.7, 24.0.1; Oracle GraalVM for JDK: 17.0.15, 21.0.7 and 24.0.1...

8.6CVSS7.2AI score0.00516EPSS

Exploits0References5

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux - уязвимость в edk2

EDK2 contains a vulnerability in the PeCoffLoaderRelocateImage. An Attacker may cause memory corruption due to an overflow via an adjacent network. A successful exploit of this vulnerability may lead to a loss of Confidentiality, Integrity, and/or Availability...

5.9CVSS7.2AI score0.00067EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux - уязвимость в freerdp3

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, a buffer overread could occur in the freerdpimagecopyfromicondata function libfreerdp/codec/color.c, due to malicious RDP window icon TSICONINFO data. This bug could be exploited over the network when a clie...

6.9CVSS6AI score0.00077EPSS

Exploits0References2

GithubExploit•added 2026/04/25 3:39 p.m.•89 views

Network-Service-Exploitation-Lab-VAPT-Project-

🔐 Network Service Exploitation Lab VAPT Project 📌 Overvi...

10CVSS9.1AI score0.94318EPSS

Exploits70

ATTACKERKB•added 2026/04/21 8:35 p.m.•4 views

CVE-2026-22019

Vulnerability in the PeopleSoft Enterprise HCM Shared Components product of Oracle PeopleSoft component: Person Search. The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise H...

5.4CVSS5.7AI score0.00028EPSS

Exploits0References2Affected Software1

EUVD•added 2026/04/14 6:30 p.m.•2 views

EUVD-2026-22641

Double free in Windows IKE Extension allows an unauthorized attacker to execute code over a network...

9.8CVSS5.9AI score0.00058EPSS

Exploits2References2

RedhatCVE•added 2026/03/28 4:59 p.m.•2 views

CVE-2026-4621

Hidden Functionality vulnerability in NEC Platforms, Ltd. Aterm Series allows a attacker to enable telnet via network...

6.3CVSS5.9AI score0.00061EPSS

Exploits0References1

RedhatCVE•added 2026/03/28 4:59 p.m.•3 views

CVE-2026-4622

OS Command Injection vulnerability in NEC Platforms, Ltd. Aterm Series allows a attacker to execute arbitrary OS commands via network...

7.1CVSS6.1AI score0.00146EPSS

Exploits0References1

CNVD•added 2026/03/16 12:0 a.m.•0 views

Microsoft SharePoint Server Spoofing Vulnerability (CNVD-2026-16164)

Microsoft SharePoint Server is an enterprise business collaboration platform from Microsoft. The platform is used to consolidate business information and enable sharing of work, collaborating with others, organizing projects and workgroups, and searching for people and information. A spoofing...

9.3CVSS5.7AI score0.00071EPSS

Exploits0

Microsoft CVE•added 2026/02/10 4:0 p.m.•5 views

Microsoft Outlook Spoofing Vulnerability

Exposure of sensitive information to an unauthorized actor in Microsoft Office Outlook allows an unauthorized attacker to perform spoofing over a network...

7.5CVSS5.5AI score0.00073EPSS

Exploits0