CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6655 matches found

Qualys Blog•added 2022/10/28 10:7 p.m.•56 views

Don’t spend another weekend patching Chrome

As we head into the weekend, Google has released an emergency security update for the Chrome desktop web browser to address a high-severity vulnerability known to be exploited in the wild. This is the seventh Chrome zero-day fixed this year by Google. This security bug CVE-2022-3723; QID 377721 i...

9.2AI score0.0675EPSS

Exploits1

Qualys Blog•added 2022/10/26 1:57 a.m.•51 views

Leeloo Multipath: Authorization bypass and symlink attack in multipathd (CVE-2022-41974 and CVE-2022-41973)

The Qualys Research Team has discovered two vulnerabilities in multipathd, the most important of which can be exploited for authorization bypass. Qualys recommends security teams apply patches for these vulnerabilities as soon as possible. The Qualys Research Team combined these two vulnerabiliti...

0.2AI score0.00658EPSS

Exploits5

Cvelist•added 2022/10/25 12:0 a.m.•21 views

CVE-2022-39321 GitHub Actions Runner vulnerable to Docker Command Escaping

GitHub Actions Runner is the application that runs a job from a GitHub Actions workflow. The actions runner invokes the docker cli directly in order to run job containers, service containers, or container actions. A bug in the logic for how the environment is encoded into these docker commands wa...

8.8CVSS10AI score0.01474EPSS

Exploits0References3

Malwarebytes•added 2022/10/24 10:45 a.m.•26 views

A week in security (October 17 - 23)

Last week on Malwarebytes Labs: Thermal cameras could help reveal your password How to spot a scam Warning: "FaceStealer" iOS and Android apps steal your Facebook login Criminal group busted after stealing hundreds of keyless cars Fake tractor fraudsters plague online transactions DeadBolt...

0.7AI score

Exploits0

Wired Threat Level•added 2022/10/21 11:0 a.m.•15 views

Your Microsoft Exchange Server Is a Security Liability

Endless vulnerabilities. Massive hacking campaigns. Slow and technically tough patching. It's time to say goodbye to on-premise Exchange...

2.4AI score

Exploits0

Malwarebytes•added 2022/10/20 5:0 a.m.•12 views

5 essential security tips for SMBs

In any business, the security of each computer is intimately connected to the security of every other computer. Interconnectedness allows attackers to turn a breach, a fault, or an oversight on one machine into access on all the machines its connected to. That means any attack on any computer is ...

7.3AI score

Exploits0

Debian CVE•added 2022/10/19 12:0 a.m.•47 views

CVE-2022-39253

Git is an open source, scalable, distributed revision control system. Versions prior to 2.30.6, 2.31.5, 2.32.4, 2.33.5, 2.34.5, 2.35.5, 2.36.3, and 2.37.4 are subject to exposure of sensitive information to a malicious actor. When performing a local clone where the source and target of the clone...

5.5CVSS5.8AI score0.01336EPSS

Exploits1

Openbugbounty•added 2022/10/18 9:9 a.m.•10 views

riet.com Cross Site Scripting vulnerability OBB-3003483

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Exploits0

Openbugbounty•added 2022/10/17 8:14 p.m.•9 views

databaze-her.cz Cross Site Scripting vulnerability OBB-3002196

Exploits0

Openbugbounty•added 2022/10/17 10:49 a.m.•13 views

learn.activeiq.co.uk Cross Site Scripting vulnerability OBB-3001117

Exploits0

Openbugbounty•added 2022/10/17 8:14 a.m.•17 views

slovenija-transplant.si Cross Site Scripting vulnerability OBB-3001055

Exploits0

OpenVAS•added 2022/10/17 12:0 a.m.•21 views

SUSE: Security Advisory (SUSE-SU-2022:3586-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.2AI score0.01364EPSS

Exploits4References10

Openbugbounty•added 2022/10/16 9:7 p.m.•12 views

kopiertier.de Cross Site Scripting vulnerability OBB-3000604

Exploits0

Openbugbounty•added 2022/10/16 1:23 a.m.•13 views

drapeaux-des-pays.com Cross Site Scripting vulnerability OBB-2998492

Exploits0

Openbugbounty•added 2022/10/15 1:43 p.m.•15 views

epost114.co.kr Cross Site Scripting vulnerability OBB-2998041

Exploits0

Openbugbounty•added 2022/10/15 7:10 a.m.•16 views

cozettecouture.com Cross Site Scripting vulnerability OBB-2997027

Exploits0

Positive Technologies•added 2022/10/15 12:0 a.m.•7 views

PT-2022-7344 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux Kernel affected versions not specified Description: A problem was found in the Linux Kernel related to the function sess free buffer of the file fs/cifs/sess.c in the CIFS Handler component. This issue leads to a double free condition...

9.8CVSS7.4AI score0.67994EPSS

Exploits195References850

Openbugbounty•added 2022/10/14 5:1 a.m.•11 views

britenzucht.com Cross Site Scripting vulnerability OBB-2994976

Exploits0

Openbugbounty•added 2022/10/14 12:25 a.m.•11 views

bingopethouses.com Cross Site Scripting vulnerability OBB-2994590

Exploits0

Openbugbounty•added 2022/10/13 6:7 p.m.•11 views

weyesimg.com Cross Site Scripting vulnerability OBB-2994510

Exploits0

Rows per page