CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

59 matches found

OSSF Malicious Packages•added 15 hours ago•5 views

Malicious code in @forjacms/sections (npm)

--- -= Per source details. Do not edit below this line.=- Source: google-open-source-security a6c7977dbc054cdb7fe56da0d2fbd26e2a6fed695deb4263ccbf4adfedd86acb The Miasma malware is a self-propagating worm that spreads across the npm registry by abusing weaponized binding.gyp files to achieve...

5.7AI score

Exploits0References2

OSV•added 15 hours ago•2 views

MAL-2026-5267 Malicious code in wrangler-deploy (npm)

5.7AI score

Exploits0References2

OSV•added 15 hours ago•2 views

MAL-2026-5261 Malicious code in mountly-tailwind (npm)

5.7AI score

Exploits0References2

Positive Technologies•added 2026/05/04 12:0 a.m.•5 views

PT-2026-37203

Name of the Vulnerable Software and Affected Versions Pelican versions 7.21.0 through 7.21.4 Pelican versions 7.22.0 through 7.22.2 Pelican versions 7.23.0 through 7.23.2 Pelican versions 7.24.0 through 7.24.1 Description A privilege escalation issue exists in the Web User Interface WebUI that...

9CVSS5.8AI score0.00014EPSS

Exploits0References5

GithubExploit•added 2026/03/05 6:37 a.m.•107 views

Blueprint-POC

Sales-to-Delivery Agent Orchestration System - POC Phase 1...

5.9AI score

Exploits0

EUVD•added 2025/12/31 6:30 p.m.•2 views

EUVD-2025-206033

A local privilege escalation vulnerability exists in SevenCs ORCA G2 2.0.1.35 EC2007 Kernel v5.22. The flaw is a Time-of-Check Time-of-Use TOCTOU race condition in the license management logic. The regService process, which runs with SYSTEM privileges, creates a fixed directory and writes files...

7.2AI score0.00004EPSS

Exploits1References2

CNNVD•added 2025/12/31 12:0 a.m.•2 views

SevenCs ORCA G2 安全漏洞

SevenCs ORCA G2 is an electronic charting system from SevenCs, Germany. A security vulnerability exists in SevenCs ORCA G2 version 2.0.1.35, which originates from the regService process applying a security descriptor without an explicitly configured DACL, and could result in system interruption,...

7.8CVSS6.4AI score0.00018EPSS

Exploits1References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-40388

Malicious code in bioql PyPI...

8.8CVSS8.9AI score0.00574EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-40367

Malicious code in bioql PyPI...

7.2CVSS7.5AI score0.00319EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 2:47 a.m.•2 views

CVE-2023-30262

An issue found in MIM software Inc MIM License Server and MIMpacs services v.6.9 thru v.7.0 fixed in v.7.0.10 allows a remote unauthenticated attacker to execute arbitrary code via the RMI Registry service...

8.8CVSS8.1AI score0.11756EPSS

Exploits0References1

The Hacker News•added 2024/10/22 2:12 p.m.•23 views

Security Flaw in Styra's OPA Exposes NTLM Hashes to Remote Attackers

Details have emerged about a now-patched security flaw in Styra's Open Policy Agent OPA that, if successfully exploited, could have led to leakage of New Technology LAN Manager NTLM hashes. "The vulnerability could have allowed an attacker to leak the NTLM credentials of the OPA server's local us...

8.8CVSS7.4AI score0.61411EPSS

Exploits0

NVD•added 2024/10/08 6:15 p.m.•32 views

CVE-2024-43532

Remote Registry Service Elevation of Privilege Vulnerability...

8.8CVSS0.61411EPSS

Exploits0References1

OSV•added 2024/10/08 6:15 p.m.•1 views

CVE-2024-43532

Remote Registry Service Elevation of Privilege Vulnerability...

8.8CVSS5.8AI score0.61411EPSS

Exploits0References1

CVE•added 2024/10/08 5:35 p.m.•88 views

CVE-2024-43532

CVE-2024-43532 is a Remote Registry Service Elevation of Privilege vulnerability with a documented exploit path in a private GitHub post, alleging interception of NTLM data via RPC_A uthon level CONNECT and a Machine‑in‑the‑Middle attack against advapi32.dll behavior. Affected: Windows 10/11 and ...

8.8CVSS8.7AI score0.61411EPSS

Exploits0References1Affected Software15

Vulnrichment•added 2024/10/08 5:35 p.m.•27 views

CVE-2024-43532 Remote Registry Service Elevation of Privilege Vulnerability

...

8.8CVSS7.2AI score0.61411EPSS

Exploits0References1

Cvelist•added 2024/10/08 5:35 p.m.•22 views

CVE-2024-43532 Remote Registry Service Elevation of Privilege Vulnerability

...

8.8CVSS0.61411EPSS

Exploits0References1

Microsoft CVE•added 2024/10/08 7:0 a.m.•18 views

Remote Registry Service Elevation of Privilege Vulnerability

...

8.8CVSS7.1AI score0.61411EPSS

Exploits0

CNNVD•added 2024/10/08 12:0 a.m.•1 views

Microsoft Windows Remote Registry Service 安全漏洞

Microsoft Windows Remote Registry Service is an RPC-based client/server protocol from Microsoft Corporation USA for remotely managing hierarchical data repositories like the Windows Registry . A security vulnerability exists in Microsoft Windows Remote Registry Service. An attacker could exploit...

8.8CVSS6.8AI score0.61411EPSS

Exploits0References2

Tenable Nessus•added 2024/10/08 12:0 a.m.•48 views

KB5044306: Windows Server 2008 Security Update (October 2024)

The remote Windows host is missing security update 5044306. It is, therefore, affected by multiple vulnerabilities - Windows Routing and Remote Access Service RRAS Remote Code Execution Vulnerability CVE-2024-38212, CVE-2024-38261, CVE-2024-38265, CVE-2024-43453, CVE-2024-43549, CVE-2024-43564,...

9CVSS8.2AI score0.61411EPSS

Exploits3References35

Tenable Nessus•added 2024/10/08 12:0 a.m.•51 views

KB5044286: Windows 10 LTS 1507 Security Update (October 2024)

The remote Windows host is missing security update 5044286. It is, therefore, affected by multiple vulnerabilities - Remote Desktop Client Remote Code Execution Vulnerability CVE-2024-43599 - Remote Registry Service Elevation of Privilege Vulnerability CVE-2024-43532 - Microsoft WDAC OLE DB...

8.8CVSS8.5AI score0.61411EPSS

Exploits2References35

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by