CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13294 matches found

CNNVD•added 2025/02/11 12:0 a.m.•1 views

Ivanti Connect Secure 安全漏洞

Ivanti Connect Secure ICS is a secure remote network connection tool from Ivanti Corporation, USA. A security vulnerability previously existed in Ivanti Connect Secure version 22.7R2.6, which stemmed from the inclusion of a stack-based buffer overflow issue...

9.9CVSS9.7AI score0.26935EPSS

Exploits0References1

Tenable Nessus•added 2025/02/11 12:0 a.m.•16 views

Adobe Illustrator < 28.7.4 / 29.0.0 < 29.2.1 Multiple Arbitrary code execution (APSB25-11)

The version of Adobe Illustrator installed on the remote Windows host is prior to 28.7.4, 29.2.1. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB25-11 advisory. - Stack-based Buffer Overflow CWE-121 potentially leading to Arbitrary code execution CVE-2025-21163 -...

7.8CVSS6.2AI score0.00092EPSS

Exploits0References4

CVE•added 2025/02/10 11:31 p.m.•55 views

CVE-2025-1163

CVE-2025-1163 affects code-projects Vehicle Parking Management System 1.0, specifically the Authentication.login function. The root cause is manipulation of the username argument which leads to a stack-based buffer overflow . Exploitation is described as local, with public disclosure of the explo...

7.5CVSS5.5AI score0.00124EPSS

Exploits1References5Affected Software1

Cvelist•added 2025/02/10 11:31 p.m.•7 views

CVE-2025-1163 code-projects Vehicle Parking Management System Authentication login stack-based overflow

A vulnerability classified as critical was found in code-projects Vehicle Parking Management System 1.0. This vulnerability affects the function login of the component Authentication. The manipulation of the argument username leads to stack-based buffer overflow. An attack has to be approached...

5.3CVSS0.00124EPSS

Exploits1References5

Vulnrichment•added 2025/02/10 11:31 p.m.•7 views

CVE-2025-1163 code-projects Vehicle Parking Management System Authentication login stack-based overflow

5.3CVSS5.8AI score0.00124EPSS

Exploits1References5

Positive Technologies•added 2025/02/10 12:0 a.m.•1 views

PT-2025-6105 · Code Projects · Code-Projects Police Fir Record Management System

Name of the Vulnerable Software and Affected Versions: code-projects Police FIR Record Management System version 1.0 Description: A critical vulnerability was found in the Delete Record Handler component of the code-projects Police FIR Record Management System. The manipulation of this...

7.8CVSS7AI score0.00083EPSS

Exploits1References11

CNNVD•added 2025/02/10 12:0 a.m.•2 views

code-projects Police FIR Record Management System 安全漏洞

Code-Projects Police FIR Record Management System is an open source police FIR record management system from Code-Projects. A security vulnerability exists in code-projects Police FIR Record Management System version 1.0, which stems from a stack-based buffer overflow...

5.5CVSS5.7AI score0.00064EPSS

Exploits1References2

OpenVAS•added 2025/02/10 12:0 a.m.•3 views

Huawei EulerOS: Security Advisory for iptraf-ng (EulerOS-SA-2025-1158)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS9.6AI score0.00134EPSS

Exploits1References2

Tenable Nessus•added 2025/02/08 12:0 a.m.•9 views

CBL Mariner 2.0 Security Update: vim (CVE-2024-22667)

The version of vim installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-22667 advisory. - Vim before 9.0.2142 has a stack-based buffer overflow because didsetlangmap in map.c calls sprintf to write to...

7.8CVSS8AI score0.00152EPSS

Exploits1References2

IBM Security Bulletins•added 2025/02/07 10:6 a.m.•18 views

Security Bulletin: Vulnerabilities in SnakeYAML affects wtsonx.data

Summary SnakeYAML is vulnerable to a denial of service attacks and to execute arbitrary code on the system attacks. These could affect watsonx.data. Vulnerability Details CVEID:CVE-2022-38749 DESCRIPTION: SnakeYAML is vulnerable to a denial of service, caused by a stack-overflow in parsing YAML...

9.8CVSS8.4AI score0.93849EPSS

Exploits12Affected Software1

RedhatCVE•added 2025/02/06 4:27 a.m.•6 views

CVE-2021-31438

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Studio Photo 3.6.6.931. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.8AI score0.0284EPSS

Exploits0References1

RedhatCVE•added 2025/02/06 2:17 a.m.•16 views

CVE-2025-0282

A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.5, Ivanti Policy Secure before version 22.7R1.2, and Ivanti Neurons for ZTA gateways before version 22.7R2.3 allows a remote unauthenticated attacker to achieve remote code execution...

9CVSS9.6AI score0.94129EPSS

Exploits13References1

RedhatCVE•added 2025/02/06 2:16 a.m.•6 views

CVE-2025-0349

A vulnerability classified as critical has been found in Tenda AC6 15.03.05.16. Affected is the function GetParentControlInfo of the file /goform/GetParentControlInfo. The manipulation of the argument src/mac leads to stack-based buffer overflow. It is possible to launch the attack remotely. The...

9.8CVSS9.5AI score0.00279EPSS

Exploits1References1

RedhatCVE•added 2025/02/06 12:47 a.m.•9 views

CVE-2022-3085

Fuji Electric Tellus Lite V-Simulator versions 4.0.12.0 and prior are vulnerable to a stack-based buffer overflow which may allow an attacker to execute arbitrary code...

7.8CVSS7.8AI score0.00114EPSS

Exploits0References1

RedhatCVE•added 2025/02/06 12:9 a.m.•6 views

CVE-2022-47389

An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution...

8.8CVSS7.5AI score0.03876EPSS

Exploits0

RedhatCVE•added 2025/02/06 12:8 a.m.•6 views

CVE-2022-47385

An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpAppForce Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution...

8.8CVSS7.5AI score0.02033EPSS

Exploits0

RedhatCVE•added 2025/02/05 11:49 p.m.•6 views

CVE-2022-41664

A vulnerability has been identified in JT2Go All versions V14.1.0.4, Teamcenter Visualization V13.2 All versions V13.2.0.12, Teamcenter Visualization V13.3 All versions V13.3.0.7, Teamcenter Visualization V14.0 All versions V14.0.0.3, Teamcenter Visualization V14.1 All versions V14.1.0.4. The...

7.8CVSS7.3AI score0.00066EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 11:40 p.m.•8 views

CVE-2022-41030

Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these...

9.8CVSS7.6AI score0.0349EPSS

Exploits1References1

RedhatCVE•added 2025/02/05 11:34 p.m.•8 views

CVE-2022-41001

9.8CVSS7.6AI score0.0349EPSS

Exploits1References1

RedhatCVE•added 2025/02/05 11:34 p.m.•6 views

CVE-2022-41027

7.2CVSS7.6AI score0.0349EPSS

Exploits1References1

Rows per page