CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

543 matches found

IBM Security Bulletins•added 2026/04/23 6:54 a.m.•2 views

Security Bulletin: Due to use of IBM SDK, IBM Sterling Connect:Direct Web Services is affected by denial of service.

Summary IBM SDK is used by IBM Sterling Connect:Direct Web Services CVE-2026-21945, CVE-2026-21932, CVE-2026-21933,CVE-2026-21925. Vulnerability Details CVEID:CVE-2026-21945 DESCRIPTION: Java SE is vulnerable to a denial of service, caused by an easily exploitable vulnerability issue that allows ...

7.5CVSS5.8AI score0.00089EPSS

Exploits0Affected Software1

OSV•added 2026/02/09 4:15 a.m.•1 views

CVE-2025-66603

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. The web server accepts the OPTIONS method. An attacker could potentially use this information to carry out other attacks. The affected products and versions are as follows: FAST/TOOLS Packages: RVSVRN, UNSVRN,...

9.8CVSS5.7AI score

Exploits0References1

RedhatCVE•added 2026/01/09 11:51 a.m.•6 views

CVE-2009-4375

SQL injection vulnerability in repository/repositoryattachment.php in AlienVault Open Source Security Information Management OSSIM 2.1.5, and possibly other versions before 2.1.5-4, allows remote attackers to execute arbitrary SQL commands via the iddocument parameter...

7.5CVSS8.9AI score0.00182EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 10:52 a.m.•3 views

CVE-2022-42229

Wedding Planner v1.0 is vulnerable to Arbitrary code execution via packageedit.php...

8.8CVSS7.4AI score0.0093EPSS

Exploits1References1

RedhatCVE•added 2026/01/07 9:18 a.m.•9 views

CVE-2025-1821

A vulnerability was found in zj1983 zz up to 2024-8 and classified as critical. Affected by this issue is the function getUserOrgForUserId of the file src/main/java/com/futvan/z/system/zorg/ZorgAction.java. The manipulation of the argument userID leads to sql injection. The attack may be launched...

9.8CVSS7.1AI score0.0006EPSS

Exploits1References1

OSV•added 2025/10/20 4:15 p.m.•1 views

DEBIAN-CVE-2025-40011

In the Linux kernel, the following vulnerability has been resolved: drm/gma500: Fix null dereference in hdmi teardown pcisetdrvdata sets the value of pdev-driverdata to NULL, after which the driverdata obtained from the same dev is dereferenced in oaktrailhdmii2cexit, and the i2cdev is extracted...

6.4AI score0.00083EPSS

Exploits0References1

OSV•added 2025/10/19 6:40 p.m.•2 views

JLSEC-2025-95

The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted from the extension negotiation message, and a client and server may consequently end up with a connecti...

5.9CVSS6.9AI score0.54214EPSS

Exploits3References252

OSV•added 2025/10/07 4:15 p.m.•1 views

DEBIAN-CVE-2023-53677

In the Linux kernel, the following vulnerability has been resolved: drm/i915: Fix memory leaks in i915 selftests This patch fixes memory leaks on error escapes in function fakegetpages cherry picked from commit 8bfbdadce85c4c51689da10f39c805a7106d4567...

5.5CVSS5.6AI score0.0002EPSS

Exploits0References1