CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2025/03/20 10:8 a.m.•9 views

CVE-2024-12761 Denial of Service in brycedrennan/imaginairy

A Denial of Service DoS vulnerability exists in the brycedrennan/imaginairy repository, version 15.0.0. The vulnerability is present in the /api/stablestudio/generate endpoint, which can be exploited by sending an invalid request. This causes the server process to terminate abruptly, outputting...

7.5CVSS0.00664EPSS

Positive Technologies•added 2025/03/20 12:0 a.m.•4 views

PT-2025-12051 · Unknown +1 · Chuanhuchatgpt +1

Name of the Vulnerable Software and Affected Versions: ChuanhuChatGPT version 20240918 Description: A Denial of Service DoS vulnerability was identified in ChuanhuChatGPT, which could be exploited by sending large data payloads using a multipart boundary. Although a patch was applied for a previo...

7.5CVSS7.4AI score0.0067EPSS

Exploits1References7

OSV•added 2025/03/19 7:54 p.m.•13 views

GHSA-JVHM-GJRH-3H93 Nuxt allows DOS via cache poisoning with payload rendering response

Summary By sending a crafted HTTP request to a server behind an CDN, it is possible in some circumstances to poison the CDN cache and highly impacts the availability of a site. It is possible to craft a request, such as https://mysite.com/?/payload.json which will be rendered as JSON. If the CDN ...

7.5CVSS6.3AI score0.00364EPSS

Cvelist•added 2025/03/19 7:2 p.m.•26 views

CVE-2025-27415 Nuxt allows DOS via cache poisoning with payload rendering response

Nuxt is an open-source web development framework for Vue.js. Prior to 3.16.0, by sending a crafted HTTP request to a server behind an CDN, it is possible in some circumstances to poison the CDN cache and highly impacts the availability of a site. It is possible to craft a request, such as...

7.5CVSS0.00364EPSS

Veracode•added 2025/03/06 6:48 p.m.•3 views

Denial Of Service (DoS)

getformwork/formwork is vulnerable to a Denial of Service DoS. The vulnerability is due to improper input validation due to select fields allowing crafted inputs that crash the system, resulting in a 500 status and making the site and administration panel unavailable...

6.9AI score

Exploits0

Tenable Nessus•added 2025/03/06 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2024-7003

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in FedCM in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures t...

4.3CVSS6.3AI score0.00442EPSS

Tenable Nessus•added 2025/03/06 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2024-56716

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: netdevsim: prevent bad user input in nsimdevhealthbreakwrite If either a zero count or a lar...

5.5CVSS6.2AI score0.00203EPSS

Tenable Nessus•added 2025/03/06 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2024-8908

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Autofill in Google Chrome prior to 129.0.6668.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page...

4.3CVSS6.3AI score0.00355EPSS

Tenable Nessus•added 2025/03/05 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2024-45235

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a trusted Trust Anchor can serve via rsync or RRDP a resource...

7.5CVSS6.2AI score0.00305EPSS

Tenable Nessus•added 2025/03/05 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2022-49364

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - f2fs: fix to clear dirty inode in f2fsevictinode As Yanming reported in bugzilla: https://bugzilla.kernel.org/showbug.cgi?id=215904 The kernel message is shown...

5.5CVSS5.6AI score0.00241EPSS

Tenable Nessus•added 2025/03/05 12:0 a.m.•12 views

Linux Distros Unpatched Vulnerability : CVE-2023-39195

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Rejected reason: CVE-2023-39195 was found to be a duplicate of CVE-2023-42755. Please see https://access.redhat.com/security/cve/CVE-2023-42755 for more...

6.5CVSS7.2AI score0.004EPSS

Exploits1References1

Tenable Nessus•added 2025/03/05 12:0 a.m.•10 views

Linux Distros Unpatched Vulnerability : CVE-2021-47248

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: udp: fix race between close and udpabort Kaustubh reported and diagnosed a panic in...

4.7CVSS6.2AI score0.00179EPSS

Tenable Nessus•added 2025/03/05 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2022-49164

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - powerpc/tm: Fix more userspace r13 corruption Commit cf13435b730a powerpc/tm: Fix userspace r13 corruption fixes a problem in treclaim where a SLB miss can occu...

5.5CVSS6.7AI score0.00244EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2018-14359

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They have a buffer overflow via base64 data. CVE-2018-14359 Note that Nessus relies...

9.8CVSS7.8AI score0.04131EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2017-12194

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the way spice-client processed certain messages sent from the server. An attacker, having control of malicious spice-server, could use this...

10CVSS6.8AI score0.05544EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2020-29129

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ncsi.c in libslirp through 4.3.1 has a buffer over-read because it tries to read a certain amount of header data even if that exceeds the total packet length...

4.3CVSS6.8AI score0.01443EPSS

NVD•added 2025/02/28 10:15 p.m.•31 views

CVE-2025-26466

A flaw was found in the OpenSSH package. For each ping packet the SSH server receives, a pong packet is allocated in a memory buffer and stored in a queue of packages. It is only freed when the server/client key exchange has finished. A malicious client may keep sending such packages, leading to ...

5.9CVSS0.38474EPSS

Exploits4References15

Positive Technologies•added 2025/02/11 12:0 a.m.•7 views

PT-2025-6327

Name of the Vulnerable Software and Affected Versions Microsoft Windows affected versions not specified Description The issue is related to an elevation of privilege vulnerability in Windows Storage. It allows an attacker to elevate their privileges to the level of SYSTEM and delete targeted file...

7.1CVSS9AI score0.02143EPSS

Exploits0References85

RedhatCVE•added 2025/02/06 1:11 a.m.•18 views

CVE-2022-21822

NVIDIA FLARE contains a vulnerability in the admin interface, where an un-authorized attacker can cause Allocation of Resources Without Limits or Throttling, which may lead to cause system unavailable...

7.8CVSS6.6AI score0.01017EPSS