CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

77 matches found

EUVD-2025-210066

Dell BSAFE SSL-J contains an allocation of resources without limits or throttling vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability, leading to a Denial of Service DoS...

7.5CVSS5.8AI score0.00082EPSS

Exploits0References1

Vulnrichment•added 2026/05/28 1:5 p.m.•5 views

CVE-2026-8979 Authentication Bypass

The Mennekes Amtron series firmware versions ≤ 5.22.3 is vulnerable to an authentication bypass. An unauthenticated remote attacker can change the password of the user account via a crafted POST request to the /operator/operator endpoint...

10CVSS5.8AI score0.00118EPSS

Exploits1References1

OSV•added 2026/05/08 5:44 a.m.•7 views

BIT-JRE-2021-35561

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Utility. Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allows unauthenticated...

5.3CVSS6.5AI score0.00176EPSS

Exploits0References13

Positive Technologies•added 2026/05/06 12:0 a.m.•5 views

PT-2026-38015

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u421, 8u421-perf, 11.0.24, 17.0.12, 21.0.4, 23; Oracle GraalVM for JDK: 17.0.12, 21.0.4, 23; Oracl...

4.8CVSS6.8AI score0.00171EPSS

Exploits0References6

Positive Technologies•added 2026/05/06 12:0 a.m.•5 views

PT-2026-37935

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allow...

5.3CVSS6.5AI score0.00111EPSS

Exploits0References8

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux - уязвимость в openjdk-11

A vulnerability exists in Oracle Java SE, Oracle GraalVM for JDK, and Oracle GraalVM Enterprise Edition products of Oracle Java SE component: Hotspot. The versions affected include Oracle Java SE: 8u411, 8u411-perf, 11.0.23, 17.0.11, 21.0.3, 22.0.1; Oracle GraalVM for JDK: 17.0.11, 21.0.3, 22.0.1...

4.8CVSS6.8AI score0.00568EPSS

Exploits0References2

Tenable Nessus•added 2026/04/29 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2026-40355

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In MIT Kerberos 5 aka krb5 before 1.22.3, there is a NULL pointer dereference if an application calls gssacceptseccontext on a system with a NegoEx mechanism...

5.9CVSS5.9AI score0.00108EPSS

Exploits0References3

OSV•added 2026/03/25 5:7 p.m.•3 views

GHSA-PQ2Q-RCW4-3HR6 NATS: Pre-auth remote server crash via WebSocket frame length overflow in wsRead

Background NATS.io is a high performance open source pub-sub distributed communication technology, built for the cloud, on-premise, IoT, and edge computing. When using WebSockets, a malicious client can trigger a server crash with crafted frames, before authentication. Problem Description A missi...

7.5CVSS6.2AI score0.00094EPSS

Exploits0References4

CNNVD•added 2026/03/06 12:0 a.m.•2 views

orpc 安全漏洞

orpc is an open-source RPC and OpenAPI integration framework developed by middleapi. Versions of oRPC prior to 1.13.6 contained security vulnerabilities. These vulnerabilities stemmed from prototype pollution in the RPC JSON deserializer of the @orpc/client package. This could allow unauthenticat...

9.8CVSS6.3AI score0.00871EPSS

Exploits1References2

EUVD•added 2026/03/04 6:31 p.m.•1 views

EUVD-2026-9464

Multiple Cisco products are affected by a vulnerability in the Snort 3 Detection Engine that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to restart, resulting in an interruption of packet inspection. This vulnerability is due to an error in the binder...

5.8CVSS6AI score0.00033EPSS

Exploits0References2

CNNVD•added 2026/02/03 12:0 a.m.•3 views

ASUSTOR ADM 安全漏洞

ASUSTOR ADM is a dedicated operating system developed by ASUSTOR Technology ASUSTOR for all ASUSTOR NAS devices. Vulnerabilities exist in versions 4.1.0 to 4.3.3.ROF1, and from version 5.0.0 to 5.1.1.RCI1 of ASUSTOR ADM. These vulnerabilities stem from improper validation of input parameters...

9.8CVSS7.3AI score0.00059EPSS

Exploits0References1

OSV•added 2026/01/30 2:17 p.m.•2 views

CLEANSTART-2026-NJ87139 vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device

Multiple security vulnerabilities affect the clamav package. A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. See references for individual vulnerability details...

9.8CVSS7.3AI score0.21755EPSS

Exploits16References73

RedhatCVE•added 2026/01/09 9:0 a.m.•1 views

CVE-2023-29268

The Splus Server component of TIBCO Software Inc.'s TIBCO Spotfire Statistics Services contains a vulnerability that allows an unauthenticated remote attacker to upload or modify arbitrary files within the web server directory on the affected system. Affected releases are TIBCO Software Inc.'s...

9.8CVSS7.6AI score0.00549EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2017-0661

Malware in sbrugna...

9.8CVSS9.5AI score0.02895EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2019-10521

Malware in sbrugna...

8.6CVSS8.2AI score0.01404EPSS

Exploits0References2