CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

983 matches found

Zero Day Initiative•added 2022/02/16 12:0 a.m.•20 views

MariaDB CONNECT Storage Engine Use-After-Free Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of MariaDB. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of SQL queries. The issue results from the lack of validating the existence of an object...

7CVSS3.1AI score0.00598EPSS

Exploits0References1

Zero Day Initiative•added 2022/02/10 12:0 a.m.•18 views

Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

7.8CVSS2.3AI score0.02382EPSS

Exploits0References1

Zero Day Initiative•added 2022/02/10 12:0 a.m.•31 views

Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability

7.8CVSS2.3AI score0.02382EPSS

Exploits0References1

Positive Technologies•added 2022/02/09 12:0 a.m.•9 views

PT-2022-1640 · Mariadb +10 · Mariadb +11

Name of the Vulnerable Software and Affected Versions: MariaDB affected versions not specified Description: This issue allows local attackers to escalate privileges on affected installations of MariaDB. Authentication is required to exploit this issue. The specific flaw exists within the processi...

10CVSS7.8AI score0.70561EPSS

Exploits111References899

Zero Day Initiative•added 2022/01/31 12:0 a.m.•46 views

Bentley View JT File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley View. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of JT...

7.8CVSS4.5AI score0.01792EPSS

Exploits0References1

Zero Day Initiative•added 2022/01/31 12:0 a.m.•39 views

Bentley View DXF File Parsing Use-After-Free Remote Code Execution Vulnerability

7.8CVSS4.6AI score0.01878EPSS

Exploits0References1

Zero Day Initiative•added 2022/01/31 12:0 a.m.•76 views

Bentley View JT File Parsing Double Free Remote Code Execution Vulnerability

7.8CVSS4.1AI score0.01814EPSS

Exploits0References1

Zero Day Initiative•added 2022/01/31 12:0 a.m.•74 views

Bentley MicroStation CONNECT JT File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS4.4AI score0.01911EPSS

Exploits0References1

Zero Day Initiative•added 2022/01/31 12:0 a.m.•50 views

Bentley MicroStation CONNECT JT File Parsing Use-After-Free Remote Code Execution Vulnerability

7.8CVSS4.4AI score0.01911EPSS

Exploits0References1

Zero Day Initiative•added 2022/01/31 12:0 a.m.•64 views

Bentley MicroStation CONNECT DGN File Parsing Use-After-Free Remote Code Execution Vulnerability

7.8CVSS4.5AI score0.0222EPSS

Exploits0References1

Zero Day Initiative•added 2022/01/31 12:0 a.m.•35 views

Bentley MicroStation CONNECT JT File Parsing Use-After-Free Remote Code Execution Vulnerability

7.8CVSS4.4AI score0.01911EPSS

Exploits0References1

Zero Day Initiative•added 2022/01/31 12:0 a.m.•37 views

Bentley View JT File Parsing Use-After-Free Remote Code Execution Vulnerability

7.8CVSS4.5AI score0.01911EPSS

Exploits0References1

CNNVD•added 2022/01/31 12:0 a.m.•4 views

Bentley Systems MicroStation 资源管理错误漏洞

Bentley MicroStation CONNECT is a Cad software platform for 2D and 3D design and drafting from Bentley Systems, U.S.A. A remote code execution vulnerability exists in Bentley MicroStation CONNECT, which stems from a lack of validation of objects before performing operations on them. An attacker...

7.8CVSS6.7AI score0.01961EPSS

Exploits0References4

Zero Day Initiative•added 2022/01/31 12:0 a.m.•54 views

Bentley MicroStation CONNECT JT File Parsing Double Free Remote Code Execution Vulnerability

7.8CVSS3.8AI score0.01814EPSS

Exploits0References1

Zero Day Initiative•added 2022/01/31 12:0 a.m.•37 views

Bentley MicroStation CONNECT JT File Parsing Use-After-Free Remote Code Execution Vulnerability

7.8CVSS4.4AI score0.01911EPSS

Exploits0References1

OSV•added 2022/01/13 10:15 p.m.•2 views

CVE-2021-34937

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

7.8CVSS7.5AI score0.01937EPSS

Exploits0References2

OSV•added 2022/01/13 10:15 p.m.•3 views

CVE-2021-34931

7.8CVSS7.5AI score

Exploits0References2

OSV•added 2022/01/13 10:15 p.m.•1 views

CVE-2021-34933

7.8CVSS6.2AI score0.01937EPSS

Exploits0References2

OSV•added 2022/01/13 10:15 p.m.•2 views

CVE-2021-34909