CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

5.3CVSS6.6AI score0.01392EPSS

Linux Distros Unpatched Vulnerability : CVE-2023-0842

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xml2js version 0.4.23 allows an external attacker to edit or add new properties to an object. This is possible because the application does not properly validat...

5.5CVSS6.7AI score0.01872EPSS

Linux Distros Unpatched Vulnerability : CVE-2021-42917

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer overflow vulnerability in Kodi xbmc up to 19.0, allows attackers to cause a denial of service due to improper length of values passed to istream...

Tenable Nessus•added 2025/08/18 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2020-12690

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in OpenStack Keystone before 15.0.1, and 16.0.0. The list of roles provided for an OAuth1 access token is silently ignored. Thus, when a...

8.8CVSS7.6AI score0.01896EPSS

Tenable Nessus•added 2025/08/18 12:0 a.m.•8 views

Linux Distros Unpatched Vulnerability : CVE-2021-39911

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An improper access control flaw in all versions of GitLab CE/EE starting from 13.9 before 14.2.6, all versions starting from 14.3 before 14.3.4, and all version...

4.3CVSS5.1AI score0.00674EPSS

Tenable Nessus•added 2025/08/18 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2023-5536

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A feature in LXD LP1829071, affects the default configuration of Ubuntu Server which allows privileged users in the lxd group to escalate their privilege to roo...

6.4CVSS6.6AI score0.00244EPSS

Tenable Nessus•added 2025/08/18 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2021-23980

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A mutation XSS affects users calling bleach.clean with all of: svg or math in the allowed tags p or br in allowed tags style, title, noscript, script, textarea,...

6.1CVSS6.8AI score0.00483EPSS

Tenable Nessus•added 2025/08/18 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2021-32563

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Thunar before 4.16.7 and 4.17.x before 4.17.2. When called with a regular file as a command-line argument, it delegates to a differen...

9.8CVSS8.3AI score0.03076EPSS

Tenable Nessus•added 2025/08/18 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2020-6838

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In mruby 2.1.0, there is a use-after-free in hashvaluesat in mrbgems/mruby-hash-ext/src/hash-ext.c. CVE-2020-6838 Note that Nessus relies on the presence of the...

9.8CVSS7.3AI score0.01487EPSS

5.3CVSS5.8AI score0.00318EPSS

Linux Distros Unpatched Vulnerability : CVE-2023-53161

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The buffered-reader crate before 1.1.5 for Rust allows out-of-bounds array access and a panic. CVE-2023-53161 Note that Nessus relies on the presence of the...

Exploits0References4

8.8CVSS7.3AI score0.00272EPSS

Linux Distros Unpatched Vulnerability : CVE-2022-42309

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Xenstore: Guests can crash xenstored Due to a bug in the fix of XSA-115 a malicious guest can cause xenstored to use a wrong pointer during node creation in an...

4CVSS5.4AI score0.00271EPSS

Linux Distros Unpatched Vulnerability : CVE-2025-48708

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - gslibctxstashsanitizedarg in base/gslibctx.c in Artifex Ghostscript before 10.05.1 lacks argument sanitization for the case. A created PDF document includes its...

Exploits0References3

Tenable Nessus•added 2025/08/18 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2018-6074

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Failure to apply Mark-of-the-Web in Downloads in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to bypass OS level controls via a crafted HTML...

8.8CVSS8AI score0.01521EPSS

Gitee•added 2025/08/17 1:20 a.m.•85 views

Exploit for Path Traversal in Citrix Application_Delivery_Controller_Firmware

This is a PoC exploit for CVE-2019-19781, a vulnerability in Citrix ADC NetScaler that allows for unauthenticated remote code execution. The tool, called Citrixmash, was published by TrustedSec due to other researchers releasing their code first. The exploit exploits a directory traversal bug in...

9.8CVSS8.1AI score0.99999EPSS

Exploits48

RedhatCVE•added 2025/08/16 7:23 p.m.•6 views

CVE-2025-54715

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Dmitry V. CEO of "UKR Solution" Barcode Scanner with Inventory & Order Manager barcode-scanner-lite-pos-to-manage-products-inventory-and-orders allows Path Traversal.This issue affects Barcode Scanner wi...

4.9CVSS5.9AI score0.00376EPSS

Exploits0References1

Chainguard•added 2025/08/16 1:17 p.m.•5 views

GHSA-4VQ8-7JFC-9CVP vulnerabilities

Vulnerabilities for packages: consul-k8s-fips, kube-arangodb-fips, falco, skaffold-fips, vault, istio, crossplane-fips, bom, openbao, harbor-fips, gitlab-rails-ce-fips, docker-credential-gcr, amazon-cloudwatch-agent-operator-fips, cert-manager-fips, kyverno, prometheus-fips, beats-fips, skaffold,...

5.2AI score

Exploits0

Tenable Nessus•added 2025/08/15 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2022-48924

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: thermal: int340x: fix memory leak in int3400notify It is easy to hit the below memory leaks ...

5.5CVSS6.2AI score0.0021EPSS

Tenable Nessus•added 2025/08/15 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2025-48976

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Allocation of resources for multipart headers with insufficient limits enabled a DoS vulnerability in Apache Commons FileUpload. This issue affects Apache Commo...

7.5CVSS7AI score0.63258EPSS

Exploits1References4

Tenable Nessus•added 2025/08/15 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2023-52681

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: efivarfs: Free sfsinfo on unmount Now that we allocate a sfsinfo struct on fs context...

5.5CVSS5.8AI score0.00232EPSS