CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

34 matches found

RedhatCVE•added 2025/12/02 4:27 a.m.•4 views

CVE-2025-13805

A weakness has been identified in nutzam NutzBoot up to 2.6.0-SNAPSHOT. This affects the function getInputStream of the file nutzcloud/nutzcloud-literpc/src/main/java/org/nutz/boot/starter/literpc/impl/endpoint/http/HttpServletRpcEndpoint.java of the component LiteRpc-Serializer. Executing a...

6.3CVSS4.2AI score0.00046EPSS

Exploits0References1

RedhatCVE•added 2025/12/02 4:27 a.m.•1 views

CVE-2025-13806

A security vulnerability has been detected in nutzam NutzBoot up to 2.6.0-SNAPSHOT. This impacts an unknown function of the file nutzboot-demo/nutzboot-demo-simple/nutzboot-demo-simple-web3j/src/main/java/io/nutz/demo/simple/module/EthModule.java of the component Transaction API. The manipulation...

9.8CVSS6.4AI score0.00048EPSS

Exploits0References1

RedhatCVE•added 2025/12/02 3:21 a.m.•4 views

CVE-2025-13804

A security flaw has been discovered in nutzam NutzBoot up to 2.6.0-SNAPSHOT. The impacted element is an unknown function of the file nutzboot-demo/nutzboot-demo-simple/nutzboot-demo-simple-web3j/src/main/java/io/nutz/demo/simple/module/EthModule.java of the component Ethereum Wallet Handler...

5.3CVSS4.7AI score0.00031EPSS

Exploits0References1

Github Security Blog•added 2025/12/01 6:30 a.m.•5 views

NutzBoot vulnerable to information disclosure

5.3CVSS6.6AI score0.00031EPSS

Exploits0References7Affected Software1

OSV•added 2025/12/01 6:30 a.m.•0 views

GHSA-53V5-9752-QQ92 NutzBoot Incorrect Privilege Assignment vulnerability

7.3CVSS6.6AI score0.00048EPSS

Exploits0References7

OSV•added 2025/12/01 6:30 a.m.•5 views

GHSA-QP56-QJ59-HJF8 NutzBoot vulnerable to information disclosure

5.3CVSS6.5AI score0.00031EPSS

Exploits0References7

EUVD•added 2025/12/01 6:30 a.m.•2 views

EUVD-2025-199949

NutzBoot vulnerable to deserialization...

6.3CVSS4.7AI score0.00046EPSS

Exploits0References7

Github Security Blog•added 2025/12/01 6:30 a.m.•4 views

NutzBoot vulnerable to deserialization

6.3CVSS6.6AI score0.00046EPSS

Exploits0References7Affected Software1

Github Security Blog•added 2025/12/01 6:30 a.m.•4 views

NutzBoot Incorrect Privilege Assignment vulnerability

9.8CVSS6.6AI score0.00048EPSS

Exploits0References7Affected Software1

EUVD•added 2025/12/01 6:30 a.m.•1 views

EUVD-2025-199955

NutzBoot Incorrect Privilege Assignment vulnerability...

7.5CVSS7.5AI score0.00048EPSS

Exploits0References7

OSV•added 2025/12/01 6:30 a.m.•4 views

GHSA-FGMJ-6H3V-4Q56 NutzBoot vulnerable to deserialization

6.3CVSS6.6AI score0.00046EPSS

Exploits0References7

EUVD•added 2025/12/01 6:30 a.m.•1 views

EUVD-2025-199946

NutzBoot vulnerable to information disclosure...

5.3CVSS4.4AI score0.00031EPSS

Exploits0References7

NVD•added 2025/12/01 5:16 a.m.•1 views

CVE-2025-13806

9.8CVSS0.00048EPSS

Exploits0References5

OSV•added 2025/12/01 5:16 a.m.•0 views

CVE-2025-13806

9.8CVSS5.3AI score

Exploits0References5

NVD•added 2025/12/01 4:16 a.m.•5 views

CVE-2025-13805

6.3CVSS0.00046EPSS

Exploits0References5

NVD•added 2025/12/01 4:16 a.m.•2 views

CVE-2025-13804

5.3CVSS0.00031EPSS

Exploits0References5

Cvelist•added 2025/12/01 4:2 a.m.•6 views

CVE-2025-13806 nutzam NutzBoot Transaction API EthModule.java improper authorization

7.5CVSS0.00048EPSS

Exploits0References5

CVE•added 2025/12/01 4:2 a.m.•6 views

CVE-2025-13806

CVE-2025-13806 affects nutzam NutzBoot up to 2.6.0-SNAPSHOT. The vulnerability concerns the Transaction API’s EthModule.java, where manipulation of the from/to/wei arguments enables improper authorization. Remote exploitation is possible, and exploits have been publicly disclosed. Multiple source...

9.8CVSS7.1AI score0.00048EPSS

Exploits0References5Affected Software1