CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12887 matches found

RedHat Linux•added 2026/05/25 1:3 p.m.•13 views

Critical: Red Hat Security Advisory: General availability of the satellite/iop-gateway-rhel9 container image

A new satellite/iop-gateway-rhel9 container image is now generally available in the Red Hat container registry. Red Hat Lightspeed in Satellite analyzes system health and configuration by applying predefined rules to a small set of local data, such as installed packages, running services, and...

9.2CVSS6AI score0.00288EPSS

Exploits35References6

OSSF Malicious Packages•added 2026/05/24 7:40 p.m.•8 views

Malicious code in @stockrepublic/republic-components (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 300b309644b646817c47a283d8b9aaa018e8ae0f59986207f55fd0c39dca872a The package masquerades as an internal @stockrepublic component version 99.0.0, description 'Runs git diff and saves the output to git.log on install...

5.8AI score

Exploits0References2

OSV•added 2026/05/23 6:16 p.m.•4 views

MAL-2026-4287 Malicious code in @audience-common-ui/components (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e26e359a883cc73de6df21c10ea5bc94596f94ac4c38a3c703f44c91f3a8f1e Package @audience-common-ui/[email protected] is a dependency-confusion probe targeting an internal scope. Both preinstall and postinstall lifecycle...

5.9AI score

Exploits0References1

OSV•added 2026/05/23 3:58 p.m.•6 views

MAL-2026-4268 Malicious code in asavie-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf12a913426dee622d500474fe3629c5bb3246e1793e3f210916885c6d0481a9 callback.js collects host identity information os.hostname, os.userInfo and transmits it via https.get to an external endpoint at install/load time...

5.8AI score

Exploits0References1

OSV•added 2026/05/23 2:52 p.m.•6 views

MAL-2026-4265 Malicious code in @asavie/i18n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d803002ee95ea92bdcb3a918e1be10930816db383ce2a58a6947afea84e04040 @asavie/[email protected] is a dependency-confusion package targeting an unclaimed npm scope. Its package.json declares a preinstall hook that runs node...

5.9AI score

Exploits0References3

OSV•added 2026/05/23 6:25 a.m.•6 views

MAL-2026-4263 Malicious code in secdriven (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e64bd0b65a5cddc6e2032cfdd0a23f06c980a25066490b223d07e1b2e4efe3d8 On npm install, postinstall.js executes whoami via childprocess and reads os.hostname, os.platform, the working directory, and CI / GITHUBREPOSITORY...

5.8AI score

Exploits0References3

OSSF Malicious Packages•added 2026/05/23 2:15 a.m.•6 views

Malicious code in dds-js-idl (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c864bc6e21a3795faba4de876942dfffa4baed76c926d96d52c83c32d1f49f69 On npm install, postinstall.js runs whoami via execSync and collects os.hostname, os.platform, cwd, and CI/GitHub env vars, then exfiltrates them ove...

5.8AI score

Exploits0References2

GithubExploit•added 2026/05/22 9:3 p.m.•52 views

Reversing-Toolkit

Reversing Toolkit 🔧 3 reverse engineering & binary exploita...

6AI score

Exploits0

OSSF Malicious Packages•added 2026/05/22 8:12 p.m.•12 views

Malicious code in clickpy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dd3b0787797fa520a5583fd5f14b83ec1b4606c0c45051e30ef312869c148f01 On require'clickpy', index.js collects host metadata via os.hostname, os.userInfo, os.platform, os.arch, process.cwd, process.pid, and the current...

5.8AI score

Exploits0References2

OSV•added 2026/05/22 8:2 p.m.•2 views

MAL-2026-4258 Malicious code in @engagehub/core (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bcc397ed87426726776c339f950939ac2da46c12edd018ed4bc48031f7044094 All three lifecycle hooks preinstall, install, postinstall in package.json invoke node telemetry.js, so the payload fires unconditionally on npm...

5.8AI score

Exploits0References1

OSSF Malicious Packages•added 2026/05/22 8:2 p.m.•3 views

Malicious code in @engagehub/core (npm)

5.8AI score

Exploits0References1

Microsoft Secure•added 2026/05/22 4:53 p.m.•11 views

From edge appliance to enterprise compromise: Multi-stage Linux intrusion via F5 and Confluence

In this article 1. Attack chain overview 1. Initial access: Exploiting edge appliances 2. Discovery and reconnaissance 3. Lateral movement and identity compromise 2. Mitigation and protection guidance 1. Microsoft Defender XDR detections 2. Advanced hunting 3. Indicators of compromise IOC 4. MITR...

8.8CVSS8AI score0.44333EPSS

Exploits6

OSSF Malicious Packages•added 2026/05/22 1:40 p.m.•5 views

Malicious code in @cloudways-lab/unified-design-system (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 23c4eddec5f89631d3d39c35763cf38b69ab7d8e0e4cd2cb66097eda0a2ed68f The OpenSSF Package Analysis project identified '@cloudways-lab/unified-design-system' @ 99.9.1 npm as malicious. It is considered malicious...

5.8AI score

Exploits0

GithubExploit•added 2026/05/22 10:33 a.m.•58 views

Exploit for Code Injection in Iptime N104S-R1_Firmware

CVE-2025-55423 — ipTIME UPnP Command Injection: Analysis & Rep...

9.8CVSS5.9AI score0.00665EPSS

Exploits2

OSV•added 2026/05/22 9:31 a.m.•2 views

MAL-2026-4254 Malicious code in reactive-cdk-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 84d7572f96294e867b18a0448ac0e70af3d08769749aa73388b38d88492559e4 package.json declares preinstall: node index.js, so installation automatically executes index.js. The script reads /etc/passwd via fs.readFileSync,...

5.8AI score

Exploits0References5

Packet Storm News•added 2026/05/22 12:0 a.m.•8 views

Joern 4.0.546

Joern is the bug hunter's workbench. With this tool, you can uncover attack surface, sloppy coding practices, and variants of known vulnerabilities using an interactive code analysis shell. Joern supports C, C++, LLVM bitcode, x86 binaries via Ghidra, JVM bytecode via Soot, and Javascript...

5.9AI score

Exploits0

Packet Storm News•added 2026/05/22 12:0 a.m.•6 views

angr 9.2.217

angr is an open-source binary analysis platform for Python. It combines both static and dynamic symbolic "concolic" analysis, providing tools to solve a variety of tasks...

5.8AI score

Exploits0

Packet Storm News•added 2026/05/22 12:0 a.m.•5 views

CodeQL 2.25.5

Discover vulnerabilities across a codebase with CodeQL, an industry-leading semantic code analysis engine. CodeQL lets you query code as though it were data. Write a query to find all variants of a vulnerability, eradicating it forever. Then share your query to help others do the same...

5.9AI score

Exploits0

OSSF Malicious Packages•added 2026/05/21 8:21 p.m.•3 views

Malicious code in cryptoco-auth (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 46f83b7a7a5e28fe4fadbd72b0d38ff322210501ef54807160a13b7d797e6c68 On require, index.js opens TCP connections to the cloud link-local metadata address 169.254.169.254 across ports 80, 443, 8080, 3000, 5432, and 6379,...

5.9AI score

Exploits0References9

OSV•added 2026/05/21 8:21 p.m.•1 views

MAL-2026-4230 Malicious code in cryptoco-auth (npm)

5.9AI score

Exploits0References9

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by