CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2026/03/10 12:0 a.m.•2 views

Microsoft Windows Ancillary Function Driver for WinSock 安全漏洞

The Microsoft Windows Ancillary Function Driver for WinSock is a supplementary function driver for Winsock developed by Microsoft Corporation. There are security vulnerabilities associated with the Microsoft Windows Ancillary Function Driver for WinSock. Attackers can exploit these vulnerabilitie...

7CVSS5.8AI score0.00037EPSS

Exploits0References1

CNNVD•added 2026/01/13 12:0 a.m.•2 views

Microsoft HTTP.sys 访问控制错误漏洞

Microsoft HTTP.sys is an HTTP application protocol from Microsoft Corporation USA. An access control error vulnerability exists in Microsoft HTTP.sys. An attacker could exploit the vulnerability to elevate privileges. The following products and versions are affected:Windows 10 Version 21H2 for...

7.5CVSS7.3AI score0.00065EPSS

Exploits0References1

CNNVD•added 2026/01/13 12:0 a.m.•0 views

Microsoft Windows Kerberos 安全漏洞

Microsoft Windows Kerberos is a software for authentication in network clusters from Microsoft Corporation.Kerberos also serves as a network authentication protocol designed to provide strong authentication services to client/server applications via a key system. A security vulnerability exists i...

7.5CVSS5.8AI score0.00128EPSS

Exploits0References1

CNNVD•added 2025/06/10 12:0 a.m.•1 views

Microsoft Windows Netlogon 安全漏洞

Microsoft Windows Netlogon is an important component of Windows from Microsoft Corporation USA, whose main functions are authentication of users and machines on intra-domain networks and replication of databases for domain-controlled backups, as well as maintenance of domain member-to-domain,...

8.1CVSS9.1AI score0.00843EPSS

CNNVD•added 2025/04/08 12:0 a.m.•2 views

Microsoft Windows Routing and Remote Access Service 缓冲区错误漏洞

Microsoft Windows Routing and Remote Access Service is a network service from Microsoft Corporation USA that is used to implement features such as network routing, virtual private networks VPNs, and dial-up connections. A buffer error vulnerability exists in Microsoft Windows Routing and Remote...

8.8CVSS8.2AI score0.02343EPSS

Packet Storm•added 2025/03/11 12:0 a.m.•203 views

BulletProof FTP Client 2010.74 Buffer Overflow

BulletProof FTP Client version 2010.74 suffers from a buffer overflow vulnerability. Exploit Title: BulletProof FTP Client v2010.74 - Buffer Overflow PoC Discovered by: Ahmet Ümit BAYRAM Discovered Date: 14.09.2023 Vendor Homepage: http://www.bpftp.com Software Link:...

7.9AI score

CNNVD•added 2025/03/11 12:0 a.m.•1 views

Microsoft Hyper-V 安全漏洞

Microsoft Hyper-V is an application from Microsoft USA. A system hypervisor virtualization technology that enables desktop virtualization. A security vulnerability exists in Microsoft Hyper-V. An attacker exploiting the vulnerability can elevate privileges. The following products and versions are...

7.8CVSS8.2AI score0.00152EPSS

Packet Storm•added 2025/03/11 12:0 a.m.•223 views

TextPad 9.3.0 Command Injection

TextPad version 9.3.0 suffers from a remote command injection vulnerability when it opens a batch file. Exploit Title: TextPad v9.3.0 - OS Command Injection Discovered by: Ahmet Ümit BAYRAM Discovered Date: 17.09.2023 Vendor Homepage: https://www.textpad.com Software Link:...

8AI score

Citrix•added 2025/01/06 12:0 a.m.•4 views

Citrix Printing - Printer properties local settings is grayed out

Printer properties local settings grayed out after Citrix VDA server upgraded to Windows 2019 and Citrix upgraded to 2402...

6.9AI score

CNNVD•added 2024/10/08 12:0 a.m.•1 views

Microsoft Windows 安全漏洞

Microsoft Windows is a suite of operating systems for use on personal devices from Microsoft USA. A security vulnerability exists in Microsoft Windows. An attacker could exploit this vulnerability to bypass certain functionality. The following products and versions are affected: Windows 11 Versio...

7.8CVSS6.2AI score0.00193EPSS

Citrix•added 2024/07/19 12:0 a.m.•4 views

Working Directory ignored for first application launch after upgrading to 1912 CU9 VDA

This known issue affects published applications in Multi-Session VDAs. VDAs are upgraded to 1912 CU9. Launching the first Published Application fails. Any subsequent application launch succeeds. In certain cases, the initial launch of the published application is successful but results in a...

6.9AI score

CNNVD•added 2024/03/12 12:0 a.m.•3 views

Microsoft Windows USB Attached SCSI Security Vulnerability

Microsoft Windows USB Attached SCSI is a protocol for USB storage devices from Microsoft USA. A security vulnerability exists in Microsoft Windows USB Attached SCSI. An attacker could exploit the vulnerability to remotely execute code. The following products and editions are affected: Windows...

6.4CVSS6.8AI score0.00152EPSS

Exploits0References3

Packet Storm•added 2024/02/02 12:0 a.m.•359 views

Typora 1.7.4 Command Injection

Exploit Title: Typora v1.7.4 - OS Command Injection Discovered by: Ahmet Ümit BAYRAM Discovered Date: 13.09.2023 Vendor Homepage: http://www.typora.io Software Link: https://download.typora.io/windows/typora-setup-ia32.exe Tested Version: v1.7.4 latest Tested on: Windows 2019 Server 64bit Steps t...

0day.today•added 2024/01/29 12:0 a.m.•297 views

Typora v1.7.4 - OS Command Injection Vulnerability

Exploit Title: Typora v1.7.4 - OS Command Injection Discovered by: Ahmet Ümit BAYRAM Vendor Homepage: http://www.typora.io Software Link: https://download.typora.io/windows/typora-setup-ia32.exe Tested Version: v1.7.4 latest Tested on: Windows 2019 Server 64bit Steps to Reproduce Open the...

0day.today•added 2024/01/29 12:0 a.m.•303 views

7 Sticky Notes v1.9 - OS Command Injection Vulnerability

Exploit Title: 7 Sticky Notes v1.9 - OS Command Injection Discovered by: Ahmet Ümit BAYRAM Vendor Homepage: http://www.7stickynotes.com Software Link: http://www.7stickynotes.com/download/Setup7StickyNotesv19.exe Tested Version: 1.9 latest Tested on: Windows 2019 Server 64bit Steps to Reproduce...

Exploit DB•added 2024/01/29 12:0 a.m.•286 views

Typora v1.7.4 - OS Command Injection