CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

92 matches found

ManageEngine Desktop Central Java Deserialization

Zoho ManageEngine Desktop Central before 10.0.474 is vulnerable to a deserialization of untrusted data, which permits remote code execution. id: CVE-2020-10189 info: name: ManageEngine Desktop Central Java Deserialization author: king-alexander severity: critical description: | Zoho ManageEngine...

10CVSS7.8AI score0.94248EPSS

Exploits6References5

Nuclei•added 3 days ago•71 views

Joomla! Component PrayerCenter 3.0.2 - SQL Injection

SQL Injection exists in the PrayerCenter 3.0.2 component for Joomla! via the sessionid parameter, a different vulnerability than CVE-2008-6429. id: CVE-2018-7314 info: name: Joomla! Component PrayerCenter 3.0.2 - SQL Injection author: DhiyaneshDK severity: critical description: | SQL Injection...

9.8CVSS7.4AI score0.90805EPSS

Exploits6References4

OpenVAS•added 2024/11/05 12:0 a.m.•19 views

Ubuntu: Security Advisory (USN-7088-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.4CVSS8.6AI score0.00495EPSS

Exploits6References2

OpenVAS•added 2024/09/25 12:0 a.m.•16 views

SUSE: Security Advisory (SUSE-SU-2024:3418-1)

8.7CVSS7.8AI score0.03014EPSS

Exploits3References6

OpenVAS•added 2024/09/20 12:0 a.m.•18 views

Fedora: Security Advisory (FEDORA-2024-7db9258d37)

9.8CVSS7.4AI score0.03014EPSS

Exploits5References40

OpenVAS•added 2024/09/16 12:0 a.m.•23 views

Fedora: Security Advisory (FEDORA-2024-1d0cb3b43f)

8.7CVSS7.2AI score0.03014EPSS

Exploits4References13

Tenable Nessus•added 2024/09/13 12:0 a.m.•30 views

Security Updates for Microsoft Office Online Server (September 2024)

The Microsoft Office Web Apps installation on the remote host is missing a security update. It is, therefore, affected by the following: - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2024-43465 Note that Nessus has not tested for this iss...

7.8CVSS5.6AI score0.00684EPSS

Exploits0References2

Tenable Nessus•added 2024/09/02 12:0 a.m.•6 views

Emerson Ovation Insufficient Verification of Data Authenticity (CVE-2022-30267)

The affected product was found to have no authentication of firmware signing and relies on an insecure checksum for integrity. This could allow an attacker to push malicious firmware images, cause a denial-of-service condition, or achieve remote code execution. This plugin only works with...

6AI score

Exploits0References2

OpenVAS•added 2024/08/24 12:0 a.m.•19 views

openSUSE Security Advisory (openSUSE-SU-2024:0258-1)

9.6CVSS7.9AI score0.24226EPSS

Exploits4References6

OpenVAS•added 2024/08/06 12:0 a.m.•13 views

Fedora: Security Advisory (FEDORA-2024-d638b9a34c)

9.8CVSS7.6AI score0.00209EPSS

Exploits0References7

Atlassian•added 2024/07/03 8:30 a.m.•31 views

DoS (Denial of Service) org.apache.commons:commons-compress Dependency in Confluence Data Center and Server

This High severity org.apache.commons:commons-compress Dependency vulnerability was introduced in versions 7.19.23, 8.5.10, 8.9.2 of Confluence Data Center and Server. This org.apache.commons:commons-compress Dependency vulnerability, with a CVSS Score of 7.5 and a CVSS Vector of...

7.5CVSS7.4AI score0.0174EPSS

Exploits0

OpenVAS•added 2024/05/27 12:0 a.m.•45 views

Debian: Security Advisory (DLA-3818-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.3AI score0.87555EPSS

Exploits3References2

OpenVAS•added 2024/05/27 12:0 a.m.•27 views

Fedora: Security Advisory (FEDORA-2024-8b50ca2e22)

9.8CVSS7.4AI score0.04728EPSS

Exploits10References2

OpenVAS•added 2024/04/23 12:0 a.m.•68 views

openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:1332-2)

7.8CVSS8.3AI score0.00135EPSS

Exploits7References2

Debian CVE•added 2024/04/16 9:26 p.m.•19 views

CVE-2024-21112

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 7.0.16. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise...

8.8CVSS8.4AI score0.00107EPSS

Exploits0

Tenable Nessus•added 2024/04/10 12:0 a.m.•26 views

AlmaLinux 9 : less (ALSA-2024:1692)

The remote AlmaLinux 9 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2024:1692 advisory. - closealtfile in filename.c in less before 606 omits shellquote calls for LESSCLOSE. CVE-2022-48624 Note that Nessus has not tested for this issue but has instead...

7.8CVSS6.4AI score0.00578EPSS

Exploits0References2

CVE•added 2024/04/02 12:0 a.m.•60 views

CVE-2024-30808

CVE-2024-30808 affects Bento4 v1.6.0-641-2-g1529b83, where a heap-use-after-free in AP4_SubStream::~AP4_SubStream (Ap4ByteStream.cpp) leads to a Denial of Service. The issue is demonstrated by mp42ts. Affected component: Bento4 library; root cause: heap-use-after-free in AP4_SubStream destructor....

2.7CVSS6.7AI score0.0005EPSS

Exploits1References2Affected Software1

OpenVAS•added 2024/03/29 12:0 a.m.•17 views

Fedora: Security Advisory for pandoc-cli (FEDORA-2024-7d83cbccb6)

6.3CVSS5.9AI score0.00049EPSS

Exploits1References2

OpenVAS•added 2024/03/04 12:0 a.m.•23 views

openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2023:4057-1)

7.8CVSS8.1AI score0.00044EPSS

Exploits5References2

OpenVAS•added 2024/02/06 12:0 a.m.•30 views

Fedora: Security Advisory (FEDORA-2024-2116a8468b)