CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

166 matches found

RedhatCVE•added 2025/11/14 2:59 p.m.•4 views

CVE-2025-64738

External control of file name or path in Zoom Workplace for macOS before version 6.5.10 may allow an authenticated user to conduct a disclosure of information via local access...

5CVSS6.1AI score0.00139EPSS

Exploits0References1

EUVD•added 2025/11/13 3:30 p.m.•3 views

EUVD-2025-175326

External control of file name or path in Zoom Workplace for macOS before version 6.5.10 may allow an authenticated user to conduct a disclosure of information via local access...

5CVSS5.5AI score0.00139EPSS

Exploits0References2

OSV•added 2025/11/13 3:15 p.m.•2 views

CVE-2025-64738

External control of file name or path in Zoom Workplace for macOS before version 6.5.10 may allow an authenticated user to conduct a disclosure of information via local access...

5.5CVSS5.8AI score0.00139EPSS

Exploits0References1

NVD•added 2025/11/13 3:15 p.m.•6 views

CVE-2025-64738

External control of file name or path in Zoom Workplace for macOS before version 6.5.10 may allow an authenticated user to conduct a disclosure of information via local access...

5.5CVSS0.00139EPSS

Exploits0References1

CVE•added 2025/11/13 2:28 p.m.•13 views

CVE-2025-64739

The CVE-2025-64739 issue affects Zoom Workplace and Zoom Clients. The vulnerability is described as external control of a file name or path, enabling an unauthenticated user to disclose information over the network. Public advisories (NCSC, Red Hat, CVE listings) confirm the flaw and indicate mit...

7.5CVSS6.2AI score0.00291EPSS

Exploits0References1Affected Software5

Cvelist•added 2025/11/13 2:23 p.m.•13 views

CVE-2025-64738 Zoom Workplace for macOS - External Control of File Name or Path

External control of file name or path in Zoom Workplace for macOS before version 6.5.10 may allow an authenticated user to conduct a disclosure of information via local access...

5CVSS0.00139EPSS

Exploits0References1

Positive Technologies•added 2025/11/13 12:0 a.m.•4 views

PT-2025-46831

External control of file name or path in Zoom Workplace for macOS before version 6.5.10 may allow an authenticated user to conduct a disclosure of information via local access...

5CVSS6.1AI score0.00139EPSS

Exploits0References2

OSV•added 2025/11/11 6:15 p.m.•2 views

CVE-2025-59511

External control of file name or path in Windows WLAN Service allows an authorized attacker to elevate privileges locally...

7.8CVSS5.7AI score0.00353EPSS

Exploits0References1

EUVD•added 2025/11/11 5:59 p.m.•4 views

EUVD-2025-93446

External control of file name or path in Windows WLAN Service allows an authorized attacker to elevate privileges locally...

7.8CVSS5.3AI score0.00353EPSS

Exploits0References2

CVE•added 2025/11/11 4:49 p.m.•9 views

CVE-2025-20614

CVE-2025-20614 concerns Intel’s CIP software prior to WIN_DCA_2.4.0.11001, where external control of a file name or path in Ring 3 user applications may enable privilege escalation. The description across connected sources states an unprivileged software adversary with a privileged user and a low...

6.7CVSS6.1AI score0.00123EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2025/11/11 12:0 a.m.•3 views

PT-2025-46381

Name of the Vulnerable Software and Affected Versions IntelR CIP software versions prior to WIN DCA 2.4.0.11001 Description The software contains a flaw related to external control of file name or path within Ring 3 User Applications, potentially allowing an escalation of privilege. A local...

6.7CVSS6.2AI score0.00123EPSS

Exploits0References3

CNNVD•added 2025/11/11 12:0 a.m.•1 views

Intel CIP 安全漏洞

Intel CIP is an optional program from Intel designed to improve products by collecting performance data from users' computers. Intel CIP suffers from an elevation of privilege vulnerability that stems from improper external control of filenames or paths, and no details of the vulnerability are...

6.7CVSS6.9AI score0.00123EPSS

Exploits0References2

Tenable Nessus•added 2025/11/11 12:0 a.m.•3 views

Zoom Workplace < 6.5.10 Vulnerability (ZSB-25041)

The version of Zoom Workplace installed on the remote host is prior to 6.5.10. It is, therefore, affected by a vulnerability as referenced in the ZSB-25041 advisory. - External control of file name or path in certain Zoom Clients may allow an unauthenticated user to conduct a disclosure of...

7.5CVSS5.9AI score0.00291EPSS

Exploits0References2

Tenable Nessus•added 2025/10/22 12:0 a.m.•5 views

TencentOS Server 3: .NET 8.0 (TSSA-2025:0820)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0820 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

8CVSS7.6AI score0.011EPSS

Exploits0References2

EUVD•added 2025/10/14 6:30 p.m.•4 views

EUVD-2025-34361

External control of file name or path in Confidential Azure Container Instances allows an authorized attacker to elevate privileges locally...

8.2CVSS6.4AI score0.00401EPSS

Exploits0References2

EUVD•added 2025/10/14 6:30 p.m.•4 views

EUVD-2025-34398

External control of file name or path in Windows Core Shell allows an unauthorized attacker to perform spoofing over a network...

6.5CVSS6.3AI score0.01038EPSS

Exploits0References2