CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

164 matches found

Arcserve Unified Data Protection - Authentication Bypass

An authentication bypass vulnerability exists in Arcserve Unified Data Protection 9.2 and 8.1 in the edge-app-base-webui.jar!com.ca.arcserve.edge.app.base.ui.server.EdgeLoginServiceImpl.doLogin function within wizardLogin. id: CVE-2024-0799 info: name: Arcserve Unified Data Protection -...

9.8CVSS8AI score0.37884EPSS

Exploits1References2

CNNVD•added 2026/05/27 12:0 a.m.•4 views

Synology Surveillance Station 安全漏洞

Synology Surveillance Station is an application developed by Synology, a Chinese company. It provides intelligent monitoring and video management tools to protect your valuable assets. There are security vulnerabilities in versions of Synology Surveillance Station prior to 9.2.2.2-11575 and...

4.9CVSS5.8AI score0.00021EPSS

Exploits0References1

CVE•added 2026/05/22 8:29 a.m.•13 views

CVE-2026-8381

CVE-2026-8381 : In the TeamViewer DEX Platform (On-Premises) before version 9.2, certain backend API endpoints fail to enforce authorization checks, allowing an authenticated user with low privileges to access actions and resources intended for higher-privileged roles. This is a broken access con...

5.4CVSS5.8AI score0.00033EPSS

Exploits0References1

Positive Technologies•added 2026/05/22 12:0 a.m.•6 views

PT-2026-42736

A broken access control vulnerability exists in the TeamViewer DEX Platform On‑Premises prior version 9.2. Certain backend API endpoints do not correctly enforce authorization checks, allowing an authenticated user with low privileges to perform actions and access resources intended only for...

5.4CVSS5.8AI score0.00033EPSS

Exploits0References2

ATTACKERKB•added 2026/05/08 3:41 p.m.•3 views

CVE-2026-41885

i18next-locize-backend is a simple i18next backend for locize.com which can be used in Node.js, in the browser and for Deno. Prior to version 9.0.2, i18next-locize-backend interpolates lng, ns, projectId, and version directly into the configured loadPath / privatePath / addPath / updatePath /...

6.5CVSS5.7AI score0.00066EPSS

Exploits0References2Affected Software1

Tenable Nessus•added 2026/04/29 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2025-6016

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 9.2 before 18.9.6, 18.10 before 18.10.4, and 18.11 before 18.11.1 that could have...

6.5CVSS5.7AI score0.00032EPSS

Exploits0References2

OSV•added 2026/04/25 5:47 a.m.•2 views

OESA-2026-2005 vim security update

Vim is an advanced text editor that seeks to provide the power of the de-facto Unix editor 'Vi', with a more complete feature set. Vim is a highly configurable text editor built to enable efficient text editing. It is an improved version of the vi editor distributed with most UNIX systems. Securi...

7.8CVSS6AI score0.00009EPSS

Exploits0References2

EUVD•added 2026/04/21 9:31 p.m.•1 views

EUVD-2026-24382

Vulnerability in the PeopleSoft Enterprise SCM Purchasing product of Oracle PeopleSoft component: Purchasing. The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise SCM...

6.5CVSS5.7AI score0.00043EPSS

Exploits0References2

NVD•added 2026/04/21 9:16 p.m.•5 views

CVE-2026-34266

Vulnerability in the PeopleSoft Enterprise HCM Absence Management product of Oracle PeopleSoft component: Absence Management. The supported version that is affected is 9.2. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise PeopleSoft...

6.5CVSS0.00021EPSS

Exploits0References1

ATTACKERKB•added 2026/04/21 8:35 p.m.•2 views

CVE-2026-34300

Vulnerability in the PeopleSoft Enterprise FIN Contracts product of Oracle PeopleSoft component: Contracts. The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise FIN Contracts...

6.5CVSS5.7AI score0.00047EPSS

Exploits0References2Affected Software1

ATTACKERKB•added 2026/04/21 8:35 p.m.•2 views

CVE-2026-22006

Vulnerability in the PeopleSoft Enterprise HCM Human Resources product of Oracle PeopleSoft component: Employee Snapshot. The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise...

5.4CVSS5.7AI score0.00027EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2026/04/21 12:0 a.m.•2 views

PT-2026-34158

Vulnerability in the PeopleSoft Enterprise CS Student Records product of Oracle PeopleSoft component: Research Tracking. The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise ...

5.7CVSS5.8AI score0.00039EPSS

Exploits0References3

Positive Technologies•added 2026/04/21 12:0 a.m.•4 views

PT-2026-34104

Vulnerability in the PeopleSoft Enterprise HCM Human Resources product of Oracle PeopleSoft component: Job Profile Manager. The supported version that is affected is 9.2. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise PeopleSoft...

6.5CVSS5.7AI score0.00021EPSS

Exploits0References3

Positive Technologies•added 2026/04/21 12:0 a.m.•3 views

PT-2026-34087

Vulnerability in the PeopleSoft Enterprise HCM Shared Components product of Oracle PeopleSoft component: Person Search. The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise H...

5.4CVSS5.7AI score0.00028EPSS

Exploits0References4

CNNVD•added 2026/04/21 12:0 a.m.•4 views

Oracle PeopleSoft Enterprise SCM Purchasing 安全漏洞

Oracle PeopleSoft Enterprise SCM Purchasing is a procurement management system developed by Oracle Corporation. Version 9.2 of Oracle PeopleSoft Enterprise SCM Purchasing contains a security vulnerability. This vulnerability stems from issues with the Purchasing component, which may allow attacke...

6.5CVSS7.2AI score0.00043EPSS

Exploits0References2

Positive Technologies•added 2026/04/21 12:0 a.m.•1 views

PT-2026-34090

6.5CVSS5.7AI score0.00021EPSS

Exploits0References4

RedHat Linux•added 2026/04/13 10:16 a.m.•1 views

Important: Red Hat Security Advisory: firefox security update

An update for firefox is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

10CVSS7.3AI score0.0004EPSS

Exploits0References38

CNNVD•added 2026/04/10 12:0 a.m.•2 views

BMC Control-M/MFT 安全漏洞

BMC Control-M/MFT is an enterprise-level file transfer and job scheduling integration management automation software developed by the American company BMC. Versions of BMC Control-M/MFT 9.0.22 and earlier contained security vulnerabilities. These vulnerabilities stemmed from hardcoded default deb...

9.8CVSS5.8AI score0.00075EPSS

Exploits0References3

CNNVD•added 2026/03/30 12:0 a.m.•3 views

Softros LAN Messenger 安全漏洞

Softros LAN Messenger is an instant messaging system for local area networks developed by the American company Softros. Version 9.2 of Softros LAN Messenger contains a security vulnerability. This vulnerability stems from a custom log file location field that can cause a denial-of-service attack,...

6.8CVSS5.8AI score0.0003EPSS

Exploits1References4