CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSSF Malicious Packages•added 2025/10/30 5:38 p.m.•2 views

Malicious code in store-service-worker (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 96644928dc5cfc92d966ad6cbd2a16820b0ad6951971e35c226f31e2e594f687 The package store-service-worker was found to contain malicious code...

7AI score

OSV•added 2025/10/30 5:38 p.m.•1 views

MAL-2025-49239 Malicious code in store-service-worker (npm)

7AI score

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2005-0739

Malware in sbrugna...

5CVSS6.4AI score0.13201EPSS

Exploits0References3

RedhatCVE•added 2025/05/22 3:54 p.m.•4 views

CVE-2020-0902

An elevation of privilege vulnerability exists in Service Fabric File Store Service under certain conditions, aka 'Service Fabric Elevation of Privilege'...

9.8CVSS7AI score0.16044EPSS

OSV•added 2024/12/12 1:40 a.m.•3 views

CVE-2024-11949

GFI Archiver Store Service Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GFI Archiver. Authentication is required to exploit this vulnerability. The specific flaw exists with...

8.8CVSS6.3AI score0.08546EPSS

CNNVD•added 2024/12/12 12:0 a.m.•1 views

GFI Archiver 代码问题漏洞

GFI Archiver is an e-mail archiving software from GFI, Inc. for protecting, storing and retrieving your electronic communications. A code issue vulnerability exists in GFI Archiver that stems from a lack of proper validation of user-supplied data in Store Service, which could lead to the...

8.8CVSS9AI score0.08546EPSS

Zero Day Initiative•added 2024/12/11 12:0 a.m.•4 views

GFI Archiver Store Service Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GFI Archiver. Authentication is required to exploit this vulnerability. The specific flaw exists within the Store Service, which listens on TCP port 8018 by default. The issue results from the lack o...

8.8CVSS7.5AI score0.08546EPSS

Positive Technologies•added 2024/12/11 12:0 a.m.•2 views

PT-2024-17360 · Gfi · Gfi Archiver

Name of the Vulnerable Software and Affected Versions: GFI Archiver affected versions not specified Description: The issue is a remote code execution vulnerability due to the deserialization of untrusted data in the GFI Archiver Store Service. This allows remote attackers to execute arbitrary cod...

8.8CVSS8.2AI score0.08546EPSS

Exploits0References10

Citrix•added 2023/07/31 12:0 a.m.•6 views

Unable to remove an invalid store from Storefront console

Unable to remove an invalid store from the Storefront console. Error: An error occurred while removing a Store Service...

7AI score

OSV•added 2020/05/14 9:15 p.m.•0 views

CVE-2020-0105

In onKeyguardVisibilityChanged of keystoreservice.cpp, there is a missing permission check. This could lead to local escalation of privilege, allowing apps to use keyguard-bound keys when the screen is locked, with no additional execution privileges needed. User interaction is not needed for...

7.8CVSS7.2AI score0.00014EPSS

Prion•added 2020/05/14 9:15 p.m.•9 views

Hardcoded credentials

4.6CVSS8AI score0.00014EPSS

CVE•added 2020/05/14 8:8 p.m.•44 views

CVE-2020-0105

CVE-2020-0105 affects Android 9 and 10. It stems from a missing permission check in onKeyguardVisibilityChanged within key_store_service.cpp, enabling local privilege escalation to use keyguard-bound keys when the screen is locked, without extra execution privileges. CVSS data (NVD) shows LOCAL a...

7.8CVSS7.5AI score0.00014EPSS

NVD•added 2020/03/12 4:15 p.m.•8 views

CVE-2020-0902

An elevation of privilege vulnerability exists in Service Fabric File Store Service under certain conditions, aka 'Service Fabric Elevation of Privilege'...

9.8CVSS9.5AI score0.16044EPSS

Cvelist•added 2020/03/12 3:48 p.m.•12 views

CVE-2020-0902

An elevation of privilege vulnerability exists in Service Fabric File Store Service under certain conditions, aka 'Service Fabric Elevation of Privilege'...

9.6AI score0.16044EPSS

CVE•added 2020/03/12 3:48 p.m.•58 views

CVE-2020-0902

CVE-2020-0902 affects Microsoft Service Fabric’s File Store Service and is described as an elevation of privilege vulnerability. The issue is triggered under certain conditions in Service Fabric, with references to an unauthenticated remote user potentially gaining rights if the node is exposed e...

9.8CVSS9.4AI score0.16044EPSS

Microsoft CVE•added 2020/03/10 7:0 a.m.•17 views

Service Fabric Elevation of Privilege

An elevation of privilege vulnerability exists in Service Fabric File Store Service under certain conditions. An unauthenticated remote user could gain rights to the Service Fabric File Store Service if the node is exposed externally via SMB or SCP standard ports and they are using the impacted...

9.8CVSS2.7AI score0.16044EPSS

OSV•added 2019/07/08 6:15 p.m.•0 views

CVE-2019-2119

In multiple functions of keystoreservice.cpp, there is a possible Information Disclosure due to improper locking. This could lead to local information disclosure of protected data with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android...

5.5CVSS5.9AI score0.00013EPSS

NVD•added 2019/07/08 6:15 p.m.•15 views

CVE-2019-2119

5.5CVSS5AI score0.00013EPSS

Prion•added 2019/07/08 6:15 p.m.•13 views

Information disclosure

2.1CVSS5AI score0.00013EPSS