CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

24 matches found

EUVD•added 2026/03/16 3:30 p.m.•2 views

EUVD-2016-10821

Wowza Streaming Engine 4.5.0 contains a local privilege escalation vulnerability that allows authenticated users to escalate privileges by replacing executable files due to improper file permissions granting full access to the Everyone group. Attackers can replace the nssmx64.exe binary in the...

8.5CVSS6AI score0.00023EPSS

Exploits2References4

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2009-4410

Malware in sbrugna...

4.3CVSS6.3AI score0.01483EPSS

Exploits0References7

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2009-0934

Malware in sbrugna...

5CVSS6.1AI score0.00516EPSS

Exploits0References7

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-15756

Malware in sbrugna...

5.3CVSS5.5AI score0.01294EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2022-4897

Malicious code in bioql PyPI...

9.8CVSS7.8AI score0.00605EPSS

Exploits3References5

OPENSUSE Linux•added 2024/08/18 12:0 a.m.•8 views

Security update for python-Django (important)

openSUSE Security Update: Security update for python-Django Announcement ID: openSUSE-SU-2024:0251-1 Rating: important References: 1207565 1227590 1227593 1227594 1227595 Cross-References: CVE-2023-23969 CVE-2024-38875 CVE-2024-39329 CVE-2024-39330 CVE-2024-39614 CVSS scores: CVE-2023-23969 NVD :...

7.5CVSS7.3AI score0.06838EPSS

Exploits1References5

CNNVD•added 2024/02/20 12:0 a.m.•4 views

SystemLink Server Security Vulnerability

NI SystemLink Server is an application from NI that helps engineers implement cost-effective and locally managed test and measurement standardization, automation, and digitization tools. A security vulnerability exists in SystemLink Server 2023 Q3 and prior versions, which stems from a failure to...

7.8CVSS6.8AI score0.00083EPSS

Exploits1References2

CNNVD•added 2023/07/28 12:0 a.m.•1 views

ABB Advance Optima OPC 代码问题漏洞

ABB Advance Optima OPC is a modular analysis device from ABB. A code issue vulnerability exists in ABB Advance Optima OPC version 3.2.1.0, which is caused by the absence of quotes in the directory information of the service entry, and can be exploited by an attacker to invoke applications other...

7.2CVSS6.6AI score0.00047EPSS

Exploits0References2

ATTACKERKB•added 2022/03/09 5:15 a.m.•1 views

CVE-2022-25943

The installer of WPS Office for Windows versions prior to v11.2.0.10258 fails to configure properly the ACL for the directory where the service program is installed...

7.8CVSS7.1AI score0.09861EPSS

Exploits1References4Affected Software1

OSV•added 2022/03/09 5:15 a.m.•1 views

CVE-2022-25943

The installer of WPS Office for Windows versions prior to v11.2.0.10258 fails to configure properly the ACL for the directory where the service program is installed...

7.8CVSS5.8AI score

Exploits0References3

NVD•added 2021/12/07 11:15 a.m.•7 views

CVE-2021-29115

An information disclosure vulnerability in the ArcGIS Service Directory in Esri ArcGIS Enterprise versions 10.9.0 and below may allows a remote attacker to view hidden field names in feature layers. This issue may reveal field names, but not not disclose features...

5.3CVSS0.01294EPSS

Exploits0References1

OSV•added 2021/12/07 11:15 a.m.•0 views

CVE-2021-29115

5.3CVSS5.8AI score

Exploits0References1

Prion•added 2021/12/07 11:15 a.m.•5 views

Information disclosure

5CVSS5AI score0.01294EPSS

Exploits0References1Affected Software1

CVE•added 2021/12/07 10:56 a.m.•42 views

CVE-2021-29115

CVE-2021-29115 describes an information disclosure in Esri ArcGIS Enterprise (ArcGIS Service Directory) allowing remote viewing of hidden field names in feature layers for ArcGIS Enterprise 10.9.0 and earlier. The vulnerability’s impact is limited to exposing field names; no feature disclosure is...

5.3CVSS5AI score0.01294EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2021/12/07 10:56 a.m.•5 views

CVE-2021-29115 An information disclosure vulnerability

5.3CVSS6.4AI score0.01294EPSS

Exploits0References1

OpenVAS•added 2021/06/09 12:0 a.m.•21 views

SUSE: Security Advisory (SUSE-SU-2019:0573-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS8.2AI score0.59178EPSS

Exploits33References2

Exploit DB•added 2020/07/17 12:0 a.m.•722 views

Sonar Qube 8.3.1 - 'SonarQube Service' Unquoted Service Path

Title: Sonar Qube 8.3.1 - 'SonarQube Service' Unquoted Service Path Author: Velayutham Selvaraj Date: 2020-06-03 Vendor Homepage: https://www.sonarqube.org Software Link: https://www.sonarqube.org/downloads/ Version : 8.3.1 Tested on: Windows 10 64bitEN About Unquoted Service Path :...

7.4AI score

Exploits0

Cvelist•added 2018/07/03 2:0 p.m.•13 views

CVE-2018-7771

The vulnerability exists within processing of editscript.php in Schneider Electric U.motion Builder software versions prior to v1.3.4. A directory traversal vulnerability allows a caller with standard user privileges to write arbitrary php files anywhere in the web service directory tree...

7.7AI score0.00459EPSS

Exploits0References1

CNVD•added 2017/06/14 12:0 a.m.•1 views

Schneider Electric U.motion Builder editscript remote code execution vulnerability

U.motion Builder is a builder product from Schneider Electric France. A remote code execution vulnerability exists in the Schneider Electric U.motion Builder editscript. It allows a caller with standard user privileges to write arbitrary PHP files anywhere in the web service directory tree. An...

8.5AI score

Exploits0References1

OSV•added 2016/08/28 12:0 a.m.•38 views

DLA-604-1 ruby-actionpack-3.2 - security update

Bulletin has no description...

7.5CVSS6.2AI score0.90494EPSS

Exploits18

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by