CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

20 matches found

RedhatCVE•added 2026/02/22 1:28 a.m.•5 views

CVE-2026-2038

GFI Archiver MArc.Core Missing Authorization Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of GFI Archiver. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...

9.8CVSS5.2AI score0.0065EPSS

Exploits0References1

RedhatCVE•added 2026/02/22 1:28 a.m.•5 views

CVE-2026-2037

GFI Archiver MArc.Core Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GFI Archiver. Although authentication is required to exploit this vulnerability, the existing...

8.8CVSS6.7AI score0.01075EPSS

Exploits0References1

OSV•added 2026/02/20 11:16 p.m.•4 views

CVE-2026-2037

8.8CVSS6.4AI score

Exploits0References1

NVD•added 2026/02/20 11:16 p.m.•4 views

CVE-2026-2037

8.8CVSS0.01075EPSS

Exploits0References1

NVD•added 2026/02/20 11:16 p.m.•6 views

CVE-2026-2038

9.8CVSS0.0065EPSS

Exploits0References1

OSV•added 2026/02/20 11:16 p.m.•6 views

CVE-2026-2038

9.8CVSS5.5AI score0.0065EPSS

Exploits0References1

ATTACKERKB•added 2026/02/20 10:13 p.m.•5 views

CVE-2026-2038

7.3CVSS5.2AI score0.0065EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2026/02/20 10:13 p.m.•5 views

CVE-2026-2038 GFI Archiver MArc.Core Missing Authorization Authentication Bypass Vulnerability

7.3CVSS7AI score0.0065EPSS

Exploits0References1

Cvelist•added 2026/02/20 10:13 p.m.•23 views

CVE-2026-2038 GFI Archiver MArc.Core Missing Authorization Authentication Bypass Vulnerability

7.3CVSS0.0065EPSS

Exploits0References1

CVE•added 2026/02/20 10:13 p.m.•11 views

CVE-2026-2038

CVE-2026-2038 affects GFI Archiver, specifically the MArc.Core component via MArc.Core.Remoting.exe (listening on port 8017). The vulnerability is an authentication bypass caused by missing authorization checks, allowing remote access to functionality without credentials. Impact is potential code...

9.8CVSS6.9AI score0.0065EPSS

Exploits0References1Affected Software1

CVE•added 2026/02/20 10:13 p.m.•8 views

CVE-2026-2037

CVE-2026-2037 affects GFI Archiver via the MArc.Core.Deserialization of Untrusted Data vulnerability in the MArc.Core.Remoting.exe component (listening on port 8017). The root cause: lack of proper validation during deserialization of untrusted data, allowing an attacker to execute arbitrary code...

8.8CVSS8.9AI score0.01075EPSS

Exploits0References1Affected Software1

ATTACKERKB•added 2026/02/20 10:13 p.m.•5 views

CVE-2026-2037

8.8CVSS6.7AI score0.01075EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2026/02/20 10:13 p.m.•4 views

CVE-2026-2037 GFI Archiver MArc.Core Deserialization of Untrusted Data Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.01075EPSS

Exploits0References1

Zero Day Initiative•added 2026/02/12 12:0 a.m.•4 views

GFI Archiver MArc.Core Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GFI Archiver. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the configuration of the...

8.8CVSS6.4AI score0.01075EPSS

Exploits0References1

Zero Day Initiative•added 2026/02/12 12:0 a.m.•4 views

GFI Archiver MArc.Core Missing Authorization Authentication Bypass Vulnerability

This vulnerability allows remote attackers to bypass authentication on affected installations of GFI Archiver. Authentication is not required to exploit this vulnerability. The specific flaw exists within the configuration of the MArc.Core.Remoting.exe process, which listens on port 8017. The iss...

7.3CVSS5.2AI score0.0065EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-34232

Malicious code in bioql PyPI...

8.8CVSS8.8AI score0.00771EPSS

Exploits0References1

OSV•added 2024/12/12 1:40 a.m.•4 views

CVE-2024-11947

GFI Archiver Core Service Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GFI Archiver. Authentication is required to exploit this vulnerability. The specific flaw exists withi...

8.8CVSS6.3AI score0.00771EPSS

Exploits0References1

NVD•added 2024/12/12 1:40 a.m.•16 views

CVE-2024-11947

8.8CVSS0.00771EPSS

Exploits0References1

CVE•added 2024/12/11 9:54 p.m.•54 views

CVE-2024-11947

The CVE-2024-11947 entry describes a deserialization flaw in GFI Archiver’s Core Service (default port 8017) that allows remote code execution. The root cause is improper validation of user-supplied data, enabling an attacker to run arbitrary code in the SYSTEM context after authenticating. Multi...

8.8CVSS9.1AI score0.00771EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2024/12/11 12:0 a.m.•4 views

PT-2024-17359 · Gfi · Gfi Archiver

Name of the Vulnerable Software and Affected Versions: GFI Archiver affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of GFI Archiver. Authentication is required to exploit this issue. The specific flaw exists withi...

8.8CVSS7.7AI score0.00771EPSS

Exploits0References10

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by