CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2025/03/04 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2016-4964

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The mptsasfetchrequests function in hw/scsi/mptsas.c in QEMU aka Quick Emulator allows local guest OS administrators to cause a denial of service infinite loop,...

6CVSS7.1AI score0.00394EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2019-17344

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service by leveraging a long-running operation that exists to...

6.5CVSS6.8AI score0.0035EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•12 views

Linux Distros Unpatched Vulnerability : CVE-2020-13956

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Apache HttpClient versions prior to version 4.5.13 and 5.0.3 can misinterpret malformed authority component in request URIs passed to the library as java.net.UR...

5.3CVSS6.6AI score0.08665EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2019-17177

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libfreerdp/codec/region.c in FreeRDP through 1.1.x and 2.x through 2.0.0-rc4 has memory leaks because a supplied realloc pointer i.e., the first argument to...

7.5CVSS7AI score0.02689EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2017-17811

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Netwide Assembler NASM 2.14rc0, there is a heap-based buffer overflow that will cause a remote denial of service attack, related to a strcpy in pastetokens i...

5.5CVSS7.1AI score0.01244EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•8 views

Linux Distros Unpatched Vulnerability : CVE-2014-9823

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted palm file, a different vulnerability than...

7.8CVSS8.4AI score0.01631EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•10 views

Linux Distros Unpatched Vulnerability : CVE-2014-9140

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer overflow in the ppphdlc function in print-ppp.c in tcpdump 4.6.2 and earlier allows remote attackers to cause a denial of service crash cia a crafted PPP...

5CVSS7.8AI score0.05761EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•8 views

Linux Distros Unpatched Vulnerability : CVE-2012-5499

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pythonscripts.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to cause a denial of service memory consumption via a large value, related ...

5CVSS5.9AI score0.02427EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2018-13153

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In ImageMagick 7.0.8-4, there is a memory leak in the XMagickCommand function in MagickCore/animate.c. CVE-2018-13153 Note that Nessus relies on the presence of...

6.5CVSS7.3AI score0.03965EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2016-7875

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable integer overflow vulnerability in the BitmapData class...

8.8CVSS7.5AI score0.08305EPSS

Openbugbounty•added 2025/03/03 10:56 p.m.•8 views

prometerre.ch Cross Site Scripting vulnerability OBB-4031907

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score

Exploits0

CVE•added 2025/03/03 4:47 p.m.•52 views

CVE-2025-25303

Summary: CVE-2025-25303 describes a Server-Side Request Forgery (SSRF) in the MouseTooltipTranslator Chrome extension. The issue stems from the pdf.mjs script, which uses the URL parameter from the current URL as the target file to download and display. Since pdf.mjs is imported by viewer.html an...

6.9CVSS6.8AI score0.00452EPSS

Vulnrichment•added 2025/03/03 4:47 p.m.•3 views

CVE-2025-25303 Server-Side Request Forgery (SSRF) in MouseTooltipTranslator

The MouseTooltipTranslator Chrome extension allows mouseover translation of any language at once. The MouseTooltipTranslator browser extension is vulnerable to SSRF attacks. The pdf.mjs script uses the URL parameter from the current URL as the file to download and display to the extension user...

6.9CVSS6.4AI score0.00452EPSS

Tenable Nessus•added 2025/03/03 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2010-0308

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - lib/rfc1035.c in Squid 2.x, 3.0 through 3.0.STABLE22, and 3.1 through 3.1.0.15 allows remote attackers to cause a denial of service assertion failure via a...

4CVSS7.2AI score0.22685EPSS