CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

25 matches found

EUVD•added 2025/10/03 8:7 p.m.•6 views

EUVD-2023-0466

Malicious code in bioql PyPI...

9.8CVSS5.9AI score0.00315EPSS

Exploits0References8

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-55043

Malicious code in bioql PyPI...

8.8CVSS8.8AI score0.03104EPSS

Exploits0References2

Tenable Nessus•added 2025/09/10 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2020-36641

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability classified as problematic was found in gturri aXMLRPC up to 1.12.0. This vulnerability affects the function ResponseParser of the file...

9.8CVSS5AI score0.00315EPSS

Exploits0References2

RedhatCVE•added 2025/05/22 5:6 p.m.•2 views

CVE-2020-36641

A vulnerability classified as problematic was found in gturri aXMLRPC up to 1.12.0. This vulnerability affects the function ResponseParser of the file src/main/java/de/timroes/axmlrpc/ResponseParser.java. The manipulation leads to xml external entity reference. Upgrading to version 1.14.0 is able...

9.8CVSS6.8AI score0.00315EPSS

Exploits0

ATTACKERKB•added 2024/05/03 3:16 a.m.•0 views

CVE-2023-50221

Inductive Automation Ignition ResponseParser SerializedResponse Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Inductive Automation Ignition. User interaction is required to...

8.8CVSS6.2AI score0.03104EPSS

Exploits0References3Affected Software1

ATTACKERKB•added 2024/05/03 3:16 a.m.•0 views

CVE-2023-50222

Inductive Automation Ignition ResponseParser Notification Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Inductive Automation Ignition. User interaction is required to exploit...

8.8CVSS6.2AI score0.03196EPSS

Exploits0References3Affected Software1

NVD•added 2024/05/03 3:16 a.m.•8 views

CVE-2023-50222

8.8CVSS9AI score0.03196EPSS

Exploits0References2

OSV•added 2024/05/03 3:16 a.m.•0 views

CVE-2023-50222

8.8CVSS6.3AI score

Exploits0References2

CVE•added 2024/05/03 2:14 a.m.•54 views

CVE-2023-50222

CVE-2023-50222 concerns Inductive Automation Ignition’s ResponseParser Notification: deserialization of untrusted data enables remote code execution. The flaw stems from insufficient validation of user-supplied data in the ResponseParser method, allowing an attacker to execute code in the context...

8.8CVSS8.9AI score0.03196EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2024/05/03 2:14 a.m.•12 views

CVE-2023-50222 Inductive Automation Ignition ResponseParser Notification Deserialization of Untrusted Data Remote Code Execution Vulnerability

8.8CVSS7.7AI score0.03196EPSS

Exploits0References2

Cvelist•added 2024/05/03 2:14 a.m.•9 views

CVE-2023-50222 Inductive Automation Ignition ResponseParser Notification Deserialization of Untrusted Data Remote Code Execution Vulnerability

8.8CVSS9.2AI score0.03196EPSS

Exploits0References2

CVE•added 2024/05/03 2:14 a.m.•59 views

CVE-2023-50221

CVE-2023-50221 affects Inductive Automation Ignition: the deserialization flaw in the ResponseParser’s SerializedResponse allows remote code execution. The issue stems from insufficient validation of untrusted data, enabling code execution in the attacker’s context after a target connects to a ma...

8.8CVSS8.9AI score0.03104EPSS

Exploits0References2Affected Software1

CNNVD•added 2024/05/03 12:0 a.m.•2 views

Inductive Automation Ignition 安全漏洞

Inductive Automation Ignition is an integrated software platform for SCADA systems from Inductive Automation, USA. The platform supports SCADA Data Acquisition and Monitoring Systems, HMI Human Machine Interface and more. A security vulnerability exists in Inductive Automation Ignition due to a...

8.8CVSS9AI score0.03196EPSS

Exploits0References3

CNNVD•added 2024/05/03 12:0 a.m.•1 views

Inductive Automation Ignition 安全漏洞

8.8CVSS9.1AI score0.03104EPSS

Exploits0References3

Zero Day Initiative•added 2024/01/05 12:0 a.m.•17 views

Inductive Automation Ignition ResponseParser SerializedResponse Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Inductive Automation Ignition. User interaction is required to exploit this vulnerability in that the target must connect to a malicious server. The specific flaw exists within the ResponseParser...

8.8CVSS7.5AI score0.03104EPSS

Exploits0References1

Zero Day Initiative•added 2024/01/05 12:0 a.m.•15 views

Inductive Automation Ignition ResponseParser Notification Deserialization of Untrusted Data Remote Code Execution Vulnerability

8.8CVSS7.5AI score0.03196EPSS

Exploits0References1

Veracode•added 2023/01/13 1:55 a.m.•16 views

XML External Entity (XXE) Injection

aXMLRPC is vulnerable to XML external entity attacks. The vulnerability exists because the library does not properly validate the XML documents submitted by the users via the parse function of ResponseParser.java, allowing an attacker to inject malicious XML documents to perform requests on behal...

9.8CVSS8.9AI score0.00315EPSS

Exploits0References7Affected Software1