CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The vulnerability of the pip module of the Python programming language is related to the failure to clean data at the control layer. Exploitation of the vulnerability could allow an attacker to change the repository configuration...

5.5CVSS6.9AI score0.00075EPSS

Exploits0

RedhatCVE•added 2025/08/08 4:27 a.m.•3 views

CVE-2025-21012

Improper access control in fall detection for Galaxy Watch prior to SMR Aug-2025 Release 1 allows local attackers to modify fall detection configuration...

5.5CVSS6.1AI score0.00055EPSS

Exploits0References1

RedhatCVE•added 2025/06/01 4:31 p.m.•2 views

CVE-2024-42190

HCL Traveler for Microsoft Outlook HTMO is susceptible to a DLL hijacking vulnerability which could allow an attacker to modify or replace the application with malicious content...

6.5CVSS6.8AI score0.00193EPSS

Exploits0References1

Tenable Nessus•added 2025/04/09 12:0 a.m.•11 views

MikroTik RouterOS Improper Input Validation (CVE-2008-6976)

MikroTik RouterOS 3.x through 3.13 and 2.x through 2.9.51 allows remote attackers to modify Network Management System NMS settings via a crafted SNMP set request. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL...

6.4CVSS5.4AI score0.05106EPSS

Exploits1References4

Cvelist•added 2025/02/28 1:43 p.m.•16 views

CVE-2025-1749 HTML injection vulnerability in OpenCart

HTML injection vulnerabilities in OpenCart versions prior to 4.1.0. These vulnerabilities could allow an attacker to modify the HTML of the victim's browser by sending a malicious URL and modifying the parameter name in /account/voucher...

4.7CVSS0.00121EPSS

Exploits0References1

RedhatCVE•added 2025/02/07 9:45 a.m.•4 views

CVE-2024-10237

There is a vulnerability in the BMC firmware image authentication design at Supermicro MBD-X12DPG-OA6 . An attacker can modify the firmware to bypass BMC inspection and bypass the signature verification process...

7.2CVSS7.1AI score0.00017EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 2:28 a.m.•4 views

CVE-2024-42022

An incorrect permission assignment vulnerability allows an attacker to modify product configuration files...

7.5CVSS6.8AI score0.00136EPSS

Exploits0References1

Zero Day Initiative•added 2024/08/12 12:0 a.m.•2 views

(Pwn2Own) QNAP TS-464 Netmgr Endpoint Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of QNAP TS-464 NAS devices. An attacker must first obtain the ability to make modifications to device configuration in order to exploit this vulnerability. The specific flaw exists within the legacyapi...

8.1CVSS6.9AI score0.00032EPSS

Exploits0References1

Vulnrichment•added 2023/06/16 8:39 a.m.•8 views

CVE-2023-2783 App Framework does not checks for the secret provided in the incoming webhook request

Mattermost Apps Framework fails to verify that a secret provided in the incoming webhook request allowing an attacker to modify the contents of the post sent by the Apps...

4.3CVSS6.6AI score0.00177EPSS

Exploits0References1

Vulnrichment•added 2022/08/05 9:15 p.m.•6 views

CVE-2022-24016

A buffer overflow vulnerability exists in the GetValue functionality of TCL LinkHub Mesh Wi-Fi MS1G0001.0014. A specially-crafted configuration value can lead to a buffer overflow. An attacker can modify a configuration value to trigger this vulnerability.This vulnerability represents all...

9.6CVSS9.6AI score0.00459EPSS

Exploits1References1

NVD•added 2020/08/11 7:15 p.m.•10 views

CVE-2020-9404

In PACTware before 4.1 SP6 and 5.x before 5.0.5.31, passwords are stored in an insecure manner, and may be modified by an attacker with no knowledge of the current passwords...

7.1CVSS6.9AI score0.0005EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by