CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2019-13483

Malware in sbrugna...

6.1CVSS6.8AI score0.0055EPSS

Exploits1References9

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-52652

Malicious code in bioql PyPI...

3.5CVSS6.6AI score0.00142EPSS

RedhatCVE•added 2025/05/23 8:10 a.m.•3 views

CVE-2024-54681

Multiple bash files were present in the application's private directory. Bash files can be used on their own, by an attacker that has already full access to the mobile platform to compromise the translations for the application...

3.5CVSS6.9AI score0.00142EPSS

RedhatCVE•added 2025/05/22 6:8 a.m.•1 views

CVE-2017-16661

Cacti 1.1.27 allows remote authenticated administrators to read arbitrary files by placing the Log Path into a private directory, and then making a clog.php?filename= request, as demonstrated by filename=passwd with a Log Path under /etc to read /etc/passwd...

4.9CVSS6.7AI score0.00112EPSS

NVD•added 2025/01/17 5:15 p.m.•8 views

CVE-2024-54681

3.5CVSS0.00142EPSS

Vulnrichment•added 2025/01/17 4:46 p.m.•3 views

CVE-2024-54681 Ossur Mobile Logic Application Command Injection

3.5CVSS6.9AI score0.00142EPSS

CVE•added 2025/01/17 4:46 p.m.•37 views

CVE-2024-54681

CVE-2024-54681 affects Ossur Mobile Logic Application. Connected sources confirm the root cause is the presence of multiple bash files in the application’s private directory, which an attacker with full access on the mobile platform can use to compromise translations. Public mentions (e.g., Red H...

3.5CVSS4.2AI score0.00142EPSS

OSV•added 2025/01/16 10:31 a.m.•2 views

CLSA-2025-1737023462 samba: Fix of CVE-2023-3961

Fix CVE-2023-3961: fix path traversal vulnerability when processing client pipe names connecting to Unix domain sockets within a private directory...

9.8CVSS7AI score0.01941EPSS

OSV•added 2023/10/20 11:6 a.m.•1 views

OESA-2023-1757 samba security update

Samba is a suite of programs for Linux and Unix to interoperate with Windows. Security Fixes: A path traversal vulnerability was identified in Samba when processing client pipe names connecting to Unix domain sockets within a private directory. Samba typically uses this mechanism to connect SMB...

9.8CVSS6.7AI score0.01941EPSS

OSV•added 2023/10/20 11:6 a.m.•0 views

OESA-2023-1756 samba security update

9.8CVSS6.7AI score0.01941EPSS

Huntr•added 2023/09/22 5:2 a.m.•16 views

Improper validation of intent data received in TextViewerActivity allows opening of arbitrary files in hamza417/inure

Description Tested on Build89 of the Inure application. It was discovered that the application had an exported activity .activities.association.TextViewerActivity which accepted intent data via the file scheme + text/ mime type and opened the associated files from provided URI data string. The...

1.7CVSS7AI score0.00031EPSS

OSV•added 2023/06/25 3:15 a.m.•1 views

CVE-2023-36612

Directory traversal can occur in the Basecamp com.basecamp.bc3 application before 4.2.1 for Android, which may allow an attacker to write arbitrary files in the application's private directory. Additionally, by using a malicious intent, the attacker may redirect the server's responses containing...

7.5CVSS5.9AI score

Vulnrichment•added 2023/06/25 12:0 a.m.•15 views

CVE-2023-36612

6.9AI score0.00291EPSS

Positive Technologies•added 2023/06/25 12:0 a.m.•3 views

PT-2023-25634 · Basecamp · Com.Basecamp.Bc3

Name of the Vulnerable Software and Affected Versions: com.basecamp.bc3 versions prior to 4.2.1 Description: Directory traversal can occur in the com.basecamp.bc3 application, which may allow an attacker to write arbitrary files in the application's private directory. Additionally, by using a...

7.5CVSS7.4AI score0.00291EPSS