CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

18 matches found

F5 Networks•added 2026/05/13 12:30 p.m.•10 views

K000156604: BIG-IP httpd access control vulnerability CVE-2026-40435

Security Advisory Description When configured, IP-based access restrictions for httpd do not cover all endpoints, which may allow connections from blocked addresses. CVE-2026-40435 Impact This vulnerability allows an attacker to connect to the BIG-IP control plane HTTP services; however, the...

6.9CVSS5.7AI score0.00063EPSS

Exploits0Affected Software11

GithubExploit•added 2026/01/27 12:10 p.m.•140 views

Exploit for Unprotected Alternate Channel in Crushftp

C...

9.8CVSS7.3AI score0.768EPSS

Exploits7

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2021-19738

Malware in sbrugna...

8.8CVSS8.6AI score0.00062EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-30426

Malicious code in bioql PyPI...

4.9CVSS5.3AI score0.00258EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-27366

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00087EPSS

Exploits0References1

CISA KEV Catalog•added 2025/07/22 12:0 a.m.•28 views

CrushFTP Unprotected Alternate Channel Vulnerability

CrushFTP contains an unprotected alternate channel vulnerability. When the DMZ proxy feature is not used, mishandles AS2 validation and consequently allows remote attackers to obtain admin access via HTTPS...

9.8CVSS7.5AI score0.768EPSS

In wildExploits7

OSV•added 2024/10/02 12:30 p.m.•2 views

GHSA-85QF-6845-M8P2 Duplicate Advisory: Juju Unprotected Alternate Channel vulnerability

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-xwgj-vpm9-q2rq. This link is maintained to preserve external references. Original Description Vulnerable juju introspection abstract UNIX domain socket. An abstract UNIX domain socket responsible for introspecti...

7.9CVSS8.1AI score0.00076EPSS

Exploits0References3

Positive Technologies•added 2024/08/01 12:0 a.m.•4 views

PT-2024-5335

Name of the Vulnerable Software and Affected Versions Rockwell Automation 1756-EN4TR, 1756-EN2T Series A/B/C, 1756-EN2F Series A/B, 1756-EN2TR Series A/B, 1756-EN3TR Series B, 1756-EN2T Series D, 1756-EN2F Series C, 1756-EN2TR Series C, 1756-EN3TR Series B, 1756-EN2TP Series A Description A...

7.3CVSS6.1AI score0.00118EPSS

Exploits0References10

Positive Technologies•added 2024/07/10 12:0 a.m.•2 views

PT-2024-28710 · Unknown · Tone Store App

Name of the Vulnerable Software and Affected Versions: TONE store App versions 3.4.2 and earlier Description: The issue is related to an unprotected primary channel in the TONE store App, which communicates with the TONE store website in cleartext. This could allow a man-in-the-middle attack,...

3.7CVSS6.5AI score0.00159EPSS

Exploits0References7

NVD•added 2024/03/13 12:15 p.m.•6 views

CVE-2024-2414

The primary channel is unprotected on Movistar 4G router affecting E version SWLD71-T1v2.0.201820. This device has the 'adb' service open on port 5555 and provides access to a shell with root privileges...

8.8CVSS8.7AI score0.00087EPSS

Exploits0References1

Vulnrichment•added 2023/04/19 11:57 a.m.•8 views

CVE-2023-0317 GateManager debug interface is included in non-debug builds

Unprotected Alternate Channel vulnerability in debug console of GateManager allows system administrator to obtain sensitive information...

4.9CVSS5AI score0.00227EPSS

Exploits0References1

Positive Technologies•added 2023/04/19 12:0 a.m.•2 views

PT-2023-16172 · Unknown · Gatemanager

Name of the Vulnerable Software and Affected Versions: GateManager affected versions not specified Description: The issue concerns an Unprotected Alternate Channel vulnerability in the debug console of GateManager. This vulnerability allows a system administrator to obtain sensitive information...

4.9CVSS6.6AI score0.00227EPSS

Exploits0References6

RedHat Linux•added 2022/11/02 4:41 p.m.•2 views

hw: cpu: Intel: information disclosure via local access

A flaw was found in hw. The unprotected alternative channel of return branch target prediction in some IntelR Processors may allow an authorized user to enable information disclosure via local access...

4.7CVSS6.5AI score0.00045EPSS

Exploits0References5

RedHat Linux•added 2022/10/25 8:45 a.m.•1 views

hw: cpu: Intel: information disclosure via local access

4.7CVSS6.5AI score0.00045EPSS

Exploits0References5

CNNVD•added 2022/07/13 12:0 a.m.•1 views

VMware ESXi 安全漏洞

VMware ESXi is a suite of server virtualization platforms from VMware that can be installed directly on physical servers. VMware ESXi ESXi70U1b-17168206 - A security vulnerability exists in ESXi version 670-20211104001, which stems from an unprotected alternative channel to return branch target...

4.7CVSS6AI score0.00045EPSS

Exploits0References11

ATTACKERKB•added 2022/06/30 12:0 a.m.•1 views

CVE-2022-33932

Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.19, 9.2.1.12, 9.3.0.6, and 9.4.0.2, contain an unprotected primary channel vulnerability. An unauthenticated network malicious attacker may potentially exploit this vulnerability, leading to a denial of filesystem services...

5.3CVSS5.9AI score0.00259EPSS

Exploits0References2

OSV•added 2022/05/04 6:15 p.m.•1 views

CVE-2022-25786

Unprotected Alternate Channel vulnerability in debug console of GateManager allows system administrator to obtain sensitive information. This issue affects: GateManager all versions prior to 9.7...

4.9CVSS5.8AI score0.00258EPSS

Exploits0References1

Prion•added 2022/05/04 6:15 p.m.•6 views

Information disclosure

Unprotected Alternate Channel vulnerability in debug console of GateManager allows system administrator to obtain sensitive information. This issue affects: GateManager all versions prior to 9.7...

4CVSS5AI score0.00258EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by