CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6655 matches found

NVD•added 2021/04/21 7:15 p.m.•9 views

CVE-2021-29456

Authelia is an open-source authentication and authorization server providing 2-factor authentication and single sign-on SSO for your applications via a web portal. In versions 4.27.4 and earlier, utilizing a HTTP query parameter an attacker is able to redirect users from the web application to an...

5.7CVSS0.0051EPSS

Exploits0References1

GithubExploit•added 2021/04/21 9:50 a.m.•9 views

Exploit for CVE-2021-28480

ExchangeRCE-CVE-2021-28480 THIS IS NOT A REAL EXPLOIT IT IS A...

10CVSS7.3AI score0.92178EPSS

Exploits23

CVE•added 2021/04/19 7:5 p.m.•54 views

CVE-2021-29455

Grassroot Platform (Grassroot Platform) has a JWT signature verification flaw during refresh, allowing forging a valid JWT. Root cause: JWTs are not properly verified when refreshing an existing token. Impact stated as enabling partial integrity compromise, with no confidentiality breach noted in...

7.5CVSS5.5AI score0.00757EPSS

Exploits0References3Affected Software1

OpenVAS•added 2021/04/19 12:0 a.m.•27 views

SUSE: Security Advisory (SUSE-SU-2017:2131-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.20797EPSS

Exploits19References8

OpenVAS•added 2021/04/19 12:0 a.m.•32 views

SUSE: Security Advisory (SUSE-SU-2021:1075-1)

7.8CVSS7.5AI score0.02079EPSS

Exploits3References6

OpenVAS•added 2021/04/19 12:0 a.m.•20 views

SUSE: Security Advisory (SUSE-SU-2016:0205-1)

7.8CVSS7.1AI score0.03646EPSS

Exploits14References4

OpenVAS•added 2021/04/19 12:0 a.m.•27 views

SUSE: Security Advisory (SUSE-SU-2016:1709-1)

7.8CVSS7.2AI score0.05676EPSS

Exploits10References8

OpenVAS•added 2021/04/19 12:0 a.m.•18 views

SUSE: Security Advisory (SUSE-SU-2017:2521-1)

8CVSS7.5AI score0.16181EPSS

Exploits12References4

OpenVAS•added 2021/04/19 12:0 a.m.•29 views

SUSE: Security Advisory (SUSE-SU-2020:1475-1)

7.8CVSS7.1AI score0.01218EPSS

Exploits0References5

OpenVAS•added 2021/04/19 12:0 a.m.•26 views

SUSE: Security Advisory (SUSE-SU-2016:1596-1)

7.8CVSS7.4AI score0.01393EPSS

Exploits2References4

OpenVAS•added 2021/04/19 12:0 a.m.•17 views

SUSE: Security Advisory (SUSE-SU-2016:0186-1)

7.8CVSS7.1AI score0.03646EPSS

Exploits14References4

OpenVAS•added 2021/04/19 12:0 a.m.•23 views

SUSE: Security Advisory (SUSE-SU-2017:3226-1)

7.8CVSS7.4AI score0.02841EPSS

Exploits12References6

OpenVAS•added 2021/04/19 12:0 a.m.•16 views

SUSE: Security Advisory (SUSE-SU-2020:3367-1)

4CVSS4.5AI score0.00301EPSS

Exploits0References6

ATTACKERKB•added 2021/04/15 12:0 a.m.•38 views

CVE-2021-3493

The overlayfs implementation in the linux kernel did not properly validate with respect to user namespaces the setting of file capabilities on files in an underlying file system. Due to the combination of unprivileged user namespaces along with a patch carried in the Ubuntu kernel to allow...

8.8CVSS8.1AI score0.43988EPSS

In wildExploits27References10

Qualys Blog•added 2021/04/14 6:9 p.m.•474 views

April 2021 Patch Tuesday – 108 Vulnerabilities, 19 Critical, Adobe

This month’s Microsoft Patch Tuesday addresses 108 vulnerabilities, of which 19 are rated critical severity and 88 are rated high severity. Adobe released patches for its Photoshop, Digital Editions, and Bridge products. CVE-2021-28310: Win32k Elevation of Privilege Vulnerability Microsoft releas...

10CVSS0.1AI score0.83337EPSS

Exploits4

Malwarebytes•added 2021/04/14 4:36 p.m.•31 views

FBI shuts down malware on hundreds of Exchange servers, opens Pandora’s box

A rather remarkable story has emerged, setting the scene for lively debates about permissible system access. A press release from the US Department of Justice Judge has revealed that the FBI were granted permission to perform some tech support backdoor removal. Bizarrely, they did this without...

7.4AI score

Exploits0

Openbugbounty•added 2021/04/13 11:19 a.m.•7 views

All Vulnerabilities for movieweb.com Patched via Open Bug Bounty

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| movieweb.com ---|--- Open Bug Bounty...

6.3AI score

Exploits0

Qualys Blog•added 2021/04/12 10:14 p.m.•90 views

Google Android April 2021 Security Patch Vulnerabilities: Discover and Take Remote Response Action Using VMDR for Mobile Devices

The recently released Android Security Bulletin for April 2021 addresses 36 vulnerabilities, out of which 2 are rated as critical vulnerabilities. The vulnerabilities affect open-source components such as the Android Framework, Android Media Framework, Android System, and Android’s Linux Kernel...

10CVSS1.9AI score0.02846EPSS

Exploits1

Akamai Blog•added 2021/04/09 2:30 p.m.•46 views

Caught on Camera: Rethinking IoT Security

We all know that we're on camera pretty much constantly -- most coffee shops, convenience stores, and even offices employ security cameras for protection. But what happens when those devices built to keep us safe become unsafe? Hacks are becoming more frequent and attacking personal, private data...

0.4AI score

Exploits0

Information Security Automation•added 2021/04/08 2:1 a.m.•65 views

AM Live Vulnerability Management Conference Part 2: What was I talking about there

Hello all! It is the second part about AM Live Vulnerability Management conference. In the first part I made the timecodes for the 2 hours video in Russian. Here I have combined all my lines into one text. What is Vulnerability Management? Vulnerability Management process is the opposite of the...

0.2AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by