CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added yesterday•1 views

EUVD-2026-34155

4.3CVSS5.8AI score

Positive Technologies•added yesterday•4 views

PT-2026-46004

Mercusys AC12G EU V1 with firmware AC12GEU V1 200909 responds to version.bind CHAOS TXT queries, disclosing the DNS resolver software version unbound 1.22.0, aiding targeted attacks against known vulnerabilities...

5.8AI score

Packet Storm News•added 2026/05/15 12:0 a.m.•3 views

DarkLLM: Learning Language-Driven Adversarial Attacks with Large Language Models

While vision and multimodal foundation models underpin critical tasks from perception to complex reasoning, they remain highly vulnerable to adversarial attacks. However, traditional adversarial attacks are typically limited to single, predefined objectives, tightly coupling each attack to a...

5.8AI score

CNVD•added 2026/03/31 12:0 a.m.•2 views

Unspecified Vulnerability in HCL Aftermarket DPC (CNVD-2026-15830)

HCL Aftermarket DPC is a digital spare parts and aftermarket management platform for HCL India. HCL Aftermarket DPC suffers from a security vulnerability that can be exploited by an attacker to obtain system software and version details to carry out software-specific attacks...

5.3CVSS5.9AI score0.00013EPSS

RedhatCVE•added 2026/03/27 5:9 p.m.•1 views

CVE-2025-55272

HCL Aftermarket DPC is affected by Banner Disclosure vulnerability where attackers gain insights into the system’s software and version details which would allow them to craft software specific attacks...

5.3CVSS5.9AI score0.00013EPSS

EUVD•added 2026/03/26 3:30 p.m.•1 views

EUVD-2025-209067

5.3CVSS5.8AI score0.00013EPSS

RedhatCVE•added 2026/03/26 3:19 p.m.•1 views

CVE-2025-52642

HCL AION is affected by a vulnerability where internal filesystem paths may be exposed through application responses or system behaviour. Exposure of internal paths may reveal environment structure details which could potentially aid in further targeted attacks or information disclosure...

6.5CVSS5.8AI score0.00034EPSS

CNNVD•added 2026/03/26 12:0 a.m.•3 views

HCL Aftermarket DPC 安全漏洞

5.3CVSS5.8AI score0.00013EPSS

Positive Technologies•added 2026/03/26 12:0 a.m.•2 views

PT-2026-28297

Name of the Vulnerable Software and Affected Versions HCL Aftermarket DPC affected versions not specified Description The software is susceptible to a banner disclosure issue. This allows attackers to gather information about the system's software and version details. This information could be us...

5.3CVSS5.8AI score0.00013EPSS

Exploits0References3

EUVD•added 2026/03/24 9:31 p.m.•0 views

EUVD-2026-14986

HCL Traveler is affected by sensitive information disclosure. The application generates some error messages that provide detailed information about errors and failures, such as internal paths, file names, sensitive tokens, credentials, error codes, or stack traces. Attackers could exploit this...

4.3CVSS5.8AI score0.00014EPSS

CNNVD•added 2026/03/24 12:0 a.m.•4 views

HCL Traveler 安全漏洞

HCL Traveler is a software developed by the Indian company HCL. It enables automatic, bidirectional, and wireless synchronization between HCL Domino servers and wireless handheld devices. HCL Traveler has a security vulnerability that stems from the leakage of sensitive information due to incorre...

4.3CVSS5.8AI score0.00014EPSS

Malwarebytes•added 2026/03/19 12:27 p.m.•3 views

A DarkSword hangs over unpatched iPhones

Researchers at Google have identified an iOS exploit chain, named DarkSword, that has been used since late last year by multiple actors to infect iPhones with malware in targeted attacks. DarkSword combines six vulnerabilities in iOS and Safari to deploy malware on the device. It demonstrates, on...

7.8CVSS6.1AI score0.00455EPSS

Exploits4

EUVD•added 2026/03/16 3:30 p.m.•2 views

EUVD-2025-208733

3.3CVSS5.7AI score0.00034EPSS

Malwarebytes•added 2026/03/04 12:33 p.m.•4 views

High-severity Qualcomm bug hits Android devices in targeted attacks

Google has patched 129 vulnerabilities in Android in its March 2026 Android Security Bulletin, including a Qualcomm display flaw that is known to be actively exploited. You can check your device’s Android version, security update level, and Google Play system update in Settings. You should get a...

7.8CVSS6AI score0.00227EPSS

Exploits3

Positive Technologies•added 2026/03/01 12:0 a.m.•5 views

PT-2026-22504

Name of the Vulnerable Software and Affected Versions MaxSite CMS versions up to 109.1 Description A code injection issue exists in MaxSite CMS due to a flaw in the eval function within the file application/maxsite/admin/plugins/editor markitup/preview-ajax.php of the MarkItUp Preview AJAX Endpoi...

9.8CVSS6.9AI score0.00056EPSS

Exploits1References13

Malwarebytes•added 2026/02/26 6:52 p.m.•4 views

How to understand and avoid Advanced Persistent Threats

By definition, an advanced persistent threat APT is a prolonged, targeted attack on a specific victim with the intention to compromise their system and gain information from or about that target. About a decade ago, the term was mostly used for state-sponsored threat actors. I used threat actors...

5.7AI score

Packet Storm News•added 2026/02/23 12:0 a.m.•3 views

CodeHacker: Automated Test Case Generation for Detecting Vulnerabilities in Competitive Programming Solutions

The evaluation of Large Language Models LLMs for code generation relies heavily on the quality and robustness of test cases. However, existing benchmarks often lack coverage for subtle corner cases, allowing incorrect solutions to pass. To bridge this gap, we propose CodeHacker, an automated agen...

6AI score