CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2026/02/05 4:13 p.m.•3 views

CVE-2020-37119 Nsauditor 3.2.1.0 - Buffer Overflow (SEH+ASLR bypass (3 bytes overwrite))

9.8CVSS6.3AI score0.00607EPSS

Exploits1References3

Vulnrichment•added 2026/02/02 9:9 p.m.•2 views

CVE-2026-22778 vLLM leaks a heap address when PIL throws an error

vLLM is an inference and serving engine for large language models LLMs. From 0.8.3 to before 0.14.1, when an invalid image is sent to vLLM's multimodal endpoint, PIL throws an error. vLLM returns this error to the client, leaking a heap address. With this leak, we reduce ASLR from 4 billion guess...

9.8CVSS6AI score0.01084EPSS

Exploits0References4

CNNVD•added 2026/02/02 12:0 a.m.•3 views

vLLM 日志信息泄露漏洞

vLLM is an open-source solution designed for LLM-based systems, featuring high throughput and memory-efficient reasoning and service engines. Versions of vLLM from 0.8.3 to 0.14.1 contained a vulnerability related to log information leakage. This vulnerability occurred due to the exposure of heap...

9.8CVSS7.1AI score0.01084EPSS

Exploits0References4

Vulnrichment•added 2026/01/30 10:7 p.m.•1 views

CVE-2020-37043 10-Strike Bandwidth Monitor 3.9 - Buffer Overflow

10-Strike Bandwidth Monitor 3.9 contains a buffer overflow vulnerability that allows attackers to bypass SafeSEH, ASLR, and DEP protections through carefully crafted input. Attackers can exploit the vulnerability by sending a malicious payload to the application's registration key input, enabling...

9.8CVSS6.8AI score0.00709EPSS

Positive Technologies•added 2026/01/30 12:0 a.m.•4 views

PT-2026-5483

Name of the Vulnerable Software and Affected Versions 10-Strike Bandwidth Monitor version 3.9 Description The software contains a buffer overflow issue that allows attackers to bypass SafeSEH, ASLR, and DEP protections. Exploitation occurs through crafted input sent to the application’s...

9.8CVSS6.7AI score0.00709EPSS

Exploits0References5

CVE•added 2026/01/29 8:49 a.m.•13 views

CVE-2026-23569

The CVE-2026-23569 entry describes an out-of-bounds read in TeamViewer DEX Client’s Content Distribution Service (NomadBranch.exe) for Windows prior to version 26.1. The vulnerability allows a remote attacker to leak stack memory and cause a denial of service, with the leaked memory potentially e...

7.5CVSS5.9AI score0.00341EPSS

Exploits0References1Affected Software1

EUVD•added 2026/01/29 8:48 a.m.•4 views

EUVD-2026-4992

An out-of-bounds read vulnerability in the TeamViewer DEX Client former 1E Client - Content Distribution Service NomadBranch.exe prior version 26.1 for Windows allows an attacker on the adjacent network to cause information disclosure or denial-of-service via a special crafted packet. The leaked...

5.4CVSS5.9AI score0.00196EPSS

Positive Technologies•added 2026/01/29 12:0 a.m.•5 views

PT-2026-5256

Name of the Vulnerable Software and Affected Versions TeamViewer DEX Client versions prior to 26.1 Description An out-of-bounds read issue exists in the TeamViewer DEX Client formerly 1E Client - Content Distribution Service NomadBranch.exe on Windows. A crafted request can trigger this issue,...

7.5CVSS5.5AI score0.00341EPSS

Exploits0References7

RedhatCVE•added 2026/01/27 3:23 p.m.•8 views

CVE-2025-59103

The Access Manager 92xx in hardware revision K7 is based on Linux instead of Windows CE embedded in older hardware revisions. In this new hardware revision it was noticed that an SSH service is exposed on port 22. By analyzing the firmware of the devices, it was noticed that there are two users...

NVD•added 2026/01/27 12:15 p.m.•6 views

CVE-2025-41728

A low privileged remote attacker may be able to disclose confidential information from the memory of a privileged process by sending specially crafted calls to the Device Manager web service that cause an out-of-bounds read operation under certain circumstances due to ASLR and thereby potentially...

5.3CVSS0.00309EPSS

Cvelist•added 2026/01/27 11:37 a.m.•33 views

CVE-2025-41728 Beckhoff: Information leak via Beckhoff Device Manager

5.3CVSS0.00309EPSS

Positive Technologies•added 2026/01/27 12:0 a.m.•5 views

PT-2026-4911

5.3CVSS5.8AI score0.00309EPSS

Exploits0References2

NVD•added 2026/01/26 10:16 a.m.•4 views

CVE-2025-59103

9.2CVSS0.00403EPSS

Vulnrichment•added 2026/01/26 10:5 a.m.•3 views

CVE-2025-59103 Weak Default Passwords for SSH Access in dormakaba access manager

EUVD•added 2026/01/26 10:5 a.m.•4 views

EUVD-2025-206370

Positive Technologies•added 2026/01/26 12:0 a.m.•4 views

PT-2026-4753

Name of the Vulnerable Software and Affected Versions Access Manager 92xx hardware revision K7 affected versions not specified Description The Access Manager 92xx hardware revision K7 utilizes a Linux-based operating system, differing from older revisions that used Windows CE. An SSH service is...