CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

22 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2020-19105

Malware in sbrugna...

8.1CVSS8.4AI score0.00933EPSS

Exploits0References5

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-7547

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.02345EPSS

Exploits0References6

RedhatCVE•added 2025/05/22 11:50 p.m.•3 views

CVE-2022-42496

OS command injection vulnerability in Nako3edit, editor component of nadesiko3 PC Version v3.3.74 and earlier allows a remote attacker to obtain appkey of the product and execute an arbitrary OS command on the product...

9.8CVSS7.6AI score0.02345EPSS

Exploits0References1

Veracode•added 2022/12/08 6:24 a.m.•18 views

OS Command Injection

nadesiko3 is vulnerable to os command injection. The vulnerability exists in multiple functions in index.mjs because appkey is not properly validated which allows an attacker to inject and execute arbitrary commands into the system via the file parameter...

9.8CVSS9.7AI score0.02345EPSS

Exploits0References6Affected Software1

Github Security Blog•added 2022/12/05 6:30 a.m.•15 views

nadesiko3 vulnerable to OS Command Injection

9.8CVSS9.5AI score0.02345EPSS

Exploits0References6Affected Software1

NVD•added 2022/12/05 4:15 a.m.•10 views

CVE-2022-42496

9.8CVSS0.02345EPSS

Exploits0References3

OSV•added 2022/12/05 4:15 a.m.•8 views

CVE-2022-42496

9.8CVSS9.7AI score

Exploits0References3

Prion•added 2022/12/05 4:15 a.m.•13 views

Command injection

7.5CVSS9.6AI score0.02345EPSS

Exploits0References3Affected Software1

Positive Technologies•added 2022/12/05 12:0 a.m.•1 views

PT-2022-26458 · Nako3Edit · Nako3Edit

Name of the Vulnerable Software and Affected Versions: Nako3edit versions 3.3.74 and earlier Description: The issue allows a remote attacker to obtain the appkey of the product and execute an arbitrary OS command on the product. This is due to an OS command injection vulnerability in the editor...

9.8CVSS7.7AI score0.02345EPSS

Exploits0References9

Cvelist•added 2022/12/05 12:0 a.m.•10 views

CVE-2022-42496

9.9AI score0.02345EPSS

Exploits0References3

CVE•added 2022/12/05 12:0 a.m.•51 views

CVE-2022-42496

CVE-2022-42496 affects Nako3edit (editor component of nadesiko3 PC Version) up to v3.3.74. A OS command injection vulnerability in the editor allows a remote attacker to obtain the product’s appkey and execute arbitrary OS commands. The issue is exploitable over the network with no privileges req...

9.8CVSS9.6AI score0.02345EPSS

Exploits0References3Affected Software1

CNNVD•added 2022/12/05 12:0 a.m.•1 views

nadesiko3 操作系统命令注入漏洞

nadesiko3 is a Japanese programming language by the individual developer of kujirahand. A security vulnerability exists in nadesiko3 PC version v3.3.74 and earlier versions, which originates from a vulnerability that could allow a remote attacker to obtain the product's appkey and execute arbitra...

9.8CVSS8.9AI score0.02345EPSS

Exploits0References4

Vulnrichment•added 2022/12/05 12:0 a.m.•4 views

CVE-2022-42496

7.5AI score0.02345EPSS

Exploits0References3

RedhatCVE•added 2021/05/26 1:13 p.m.•69 views

CVE-2020-26560

An impersonation attack vulnerability was found in the Linux kernel’s Bluetooth Mesh Profile implementation. The Mesh Provisioning procedure has a flaw that allows an attacker without knowledge of the AuthValue to spoof a provisioned device and use crafted responses that appear to possess the...

8.1CVSS2AI score0.00933EPSS

Exploits0References3

NVD•added 2021/05/24 6:15 p.m.•18 views

CVE-2020-26560

Bluetooth Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device, reflecting the authentication evidence from a Provisioner, to complete authentication without possessing the AuthValue, and potentially acquire a NetKey and AppKey...

8.1CVSS0.00933EPSS

Exploits0References3

OSV•added 2021/05/24 6:15 p.m.•1 views

CVE-2020-26560

8.1CVSS7.3AI score0.00933EPSS

Exploits0References3