CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

84 matches found

GithubExploit•added 6 days ago•40 views

sbom-risk-analyzer

SBOM-Risk-Analyzer Exploitability-weighted vulnerability pri...

5.5AI score

Exploits0

CNNVD•added 2026/05/14 12:0 a.m.•6 views

Fleet 安全漏洞

Fleet is an open-source device management platform developed by Fleet Device Management. It supports various operating systems and devices, and helps IT and security teams with device management, vulnerability reporting, and MDM operations. Versions of Fleet prior to 4.82.0 contained security...

8.2CVSS5.8AI score0.00381EPSS

Exploits0References2

vulnersOsv•added 2026/05/08 6:31 p.m.•4 views

aurora-cycler-manager (>=0.10.0 <=0.11.2), fusion-tools (>=3.6.19 <=3.6.90) +9 more potentially affected by CVE-2026-38360 via dash-uploader (>=0.6.0 <=0.7.0a2)

dash-uploader PYPI version =0.6.0, =0.10.0, =3.6.19, =0.0.11, =0.0.30, =0.2.4b0, =0.0.50.0, =0.1.7.3, =2.0.1, =0.2.0, =0.4.1 Source cves: CVE-2026-38360 Source advisory: OSV:GHSA-3RF6-X59V-5JFV...

9.8CVSS5.4AI score0.05982EPSS

Exploits4

vulnersOsv•added 2026/04/22 12:0 p.m.•4 views

hickory-server (>=0.24.0 <=0.25.0-alpha.1) potentially affected by unknown CVE via hickory-recursor (>=0.24.4 <=0.25.0-alpha.1)

hickory-recursor CARGO version =0.24.4, =0.24.0, =0.25.0-alpha.1 Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2026-0106...

5.8AI score

Exploits0

vulnersOsv•added 2026/04/14 12:35 p.m.•10 views

bjs-biginteger (=5.0.5) potentially affected by unknown CVE via bjs-lint-builders (=1.1.0)

bjs-lint-builders NPM version =1.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on bjs-lint-builders and may be impacted: - bjs-biginteger =5.0.5 Source cves: unknown CVE Source advisory: OSV:MAL-2026-2881...

5.8AI score

Exploits0

vulnersOsv•added 2026/03/18 8:19 p.m.•2 views

any2htpy (=0.1.4) potentially affected by unknown CVE via justhtml (=0.35.0)

justhtml PYPI version =0.35.0 is affected by a known vulnerability. The following packages have a transitive dependency on justhtml and may be impacted: - any2htpy =0.1.4 Source cves: unknown CVE Source advisory: OSV:GHSA-3RCM-VJRC-P45J...

5.5AI score

Exploits0

Circl•added 2026/02/06 4:47 p.m.•4 views

CVE-2026-24418

creationtimestamp| type| source ---|---|--- 2026-02-06 16:47:32+00:00| published-proof-of-concept| https://github.com/devcode-it/openstamanager/security/advisories/GHSA-4xwv-49c8-fvhq...

8.7CVSS5.8AI score0.00356EPSS

Exploits3References1

vulnersOsv•added 2026/02/03 5:52 p.m.•7 views

cn.datask:dat-adapter-duckdb (>=0.6.1 <=0.7.1), cn.datask:dat-adapter-mysql (>=0.6.1 <=0.7.1) +158 more potentially affected by CVE-2026-25526 via com.hubspot.jinjava:jinjava (>=2.8.0 <=2.8.2)

com.hubspot.jinjava:jinjava MAVEN version =2.8.0, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.7.0, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.7.1 and more Source cves: CVE-2026-25526 Source advisory: OSV:GHSA-GJX9-J8F8-7J74...

9.8CVSS5.8AI score0.00889EPSS

Exploits1

CNNVD•added 2026/01/27 12:0 a.m.•4 views

vLLM code issues and vulnerabilities

vLLM is an open-source solution designed for LLM-based models, featuring high throughput and memory-efficient reasoning and service engines. Prior to vLLM 0.14.1, there were code-related vulnerabilities. These vulnerabilities stemmed from differences in the interpretation of backslashes by variou...

7.1CVSS6.8AI score0.00367EPSS

Exploits1References3

vulnersOsv•added 2026/01/13 7:54 p.m.•7 views

@cenk1cenk2/renovate-config (>=2.0.0 <=2.3.148), @jamietanna/patch-testing (>=0.1.0 <=0.2.28) +8 more potentially affected by unknown CVE via renovate (>=32.241.11 <=42.66.1)

renovate NPM version =32.241.11, =2.0.0, =0.1.0, =0.1.0, =0.5.0, =0.1.0, =0.1.0, =0.0.1, =0.19.0 - @zotero-chinese/renovate-config =1.0.3 Source cves: unknown CVE Source advisory: OSV:GHSA-PFQ2-HH62-7M96...

5.8AI score

Exploits0

vulnersOsv•added 2026/01/08 9:46 p.m.•1 views

query-rds-data (>=2.0.0 <=2.0.1) potentially affected by unknown CVE via aws-sdk-rdsdata (=0.15.0)

aws-sdk-rdsdata CARGO version =0.15.0 is affected by a known vulnerability. The following packages have a transitive dependency on aws-sdk-rdsdata and may be impacted: - query-rds-data =2.0.0, =2.0.1 Source cves: unknown CVE Source advisory: OSV:GHSA-G59M-GF8J-GJF5...

5.8AI score

Exploits0

CNNVD•added 2026/01/06 12:0 a.m.•4 views

iccDEV 代码问题漏洞

iccDEV is an open source color configuration code library from the International Color Consortium ICC. A code issue vulnerability exists in iccDEV 2.3.1 and earlier versions, which stems from an integer overflow and underflow in the CIccXmlArrayType::ParseTextCountNum function, which could lead t...

7.8CVSS7AI score0.00166EPSS

Exploits1References3

vulnersOsv•added 2025/11/12 4:47 p.m.•4 views

siddheshtea (=1.1.6) potentially affected by unknown CVE via nuilava-darae-naha (=1.0.0)

nuilava-darae-naha NPM version =1.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on nuilava-darae-naha and may be impacted: - siddheshtea =1.1.6 Source cves: unknown CVE Source advisory: OSV:MAL-2025-163876...

5.8AI score

Exploits0

vulnersOsv•added 2025/11/12 4:47 p.m.•5 views

siddheshtea (=1.1.6) potentially affected by unknown CVE via muklis-23 (=1.0.0)

muklis-23 NPM version =1.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on muklis-23 and may be impacted: - siddheshtea =1.1.6 Source cves: unknown CVE Source advisory: OSV:MAL-2025-160807...

5.8AI score

Exploits0