CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the b3948bf3-685e-11f0-bff5-6805ca2fa271 advisory. PowerDNS Team reports: An attacker spoofing answers to ECS enabled requests sent out by the Recursor ha...

7.5CVSS5.6AI score0.0012EPSS

Exploits0References3

AlpineLinux•added 2025/07/21 12:49 p.m.•2 views

CVE-2025-30192

An attacker spoofing answers to ECS enabled requests sent out by the Recursor has a chance of success higher than non-ECS enabled queries. The updated version include various mitigations against spoofing attempts of ECS enabled queries by chaining ECS enabled requests and enforcing stricter...

7.5CVSS7.2AI score0.0012EPSS

Exploits0

Vulnrichment•added 2025/05/20 2:51 p.m.•19 views

CVE-2023-33861 IBM Security ReaQta improper certificate validation

IBM Security ReaQta EDR 3.12 could allow an attacker to spoof a trusted entity by interfering with the communication path between the host and client...

6.5CVSS6.3AI score0.0018EPSS

Exploits0References1

Debian CVE•added 2025/01/07 4:7 p.m.•12 views

CVE-2025-0244

When redirecting to an invalid protocol scheme, an attacker could spoof the address bar. Note: This issue only affected Android operating systems. Other operating systems are unaffected.. This vulnerability was fixed in Firefox 134...

5.3CVSS6.4AI score0.09835EPSS

Exploits0

Vulnrichment•added 2024/12/18 3:23 p.m.•21 views

CVE-2024-47119 IBM Storage Defender - Resiliency Service improper certificate validation

IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.9 does not properly validate a certificate which could allow an attacker to spoof a trusted entity by interfering in the communication path between the host and client...

5.9CVSS6.6AI score0.00144EPSS

Exploits0References1

OSV•added 2024/08/21 12:30 a.m.•9 views

GHSA-6247-7862-Q2PQ Apache Helix Front (UI) component contained a hard-coded secret

The Apache Helix Front UI component contained a hard-coded secret, allowing an attacker to spoof sessions by generating their own fake cookies. This issue affects Apache Helix Front UI: all versions. As this project is retired, we do not plan to release a version that fixes this issue. Users are...

8.7CVSS7.4AI score0.00478EPSS

Exploits0References4

Akamai Blog•added 2023/01/25 3:0 p.m.•14 views

Exploiting a Critical Spoofing Vulnerability in Windows CryptoAPI

Akamai researchers have analyzed a critical vulnerability in Microsoft's CryptoAPI that would allow an attacker to masquerade as a legitimate entity...

4.9AI score

Exploits0

OSV•added 2022/09/14 3:15 p.m.•7 views

CVE-2022-38796

A Host Header Injection vulnerability in Feehi CMS 2.1.1 may allow an attacker to spoof a particular header. This can be exploited by abusing password reset emails...

6.1CVSS6.4AI score

Exploits0References1

CVE•added 2021/02/09 1:56 p.m.•174 views

CVE-2021-21134

CVE-2021-21134 is a Chromium/Chrome Page Info UI security issue reported as content spoofing. Affected software: Chromium/Chrome prior to version 88.0.4324.96. Root cause: incorrect security UI handling in Page Info allowed a remote attacker to spoof security UI via a crafted page. Impact stateme...

6.5CVSS6.4AI score0.15325EPSS

Exploits0References3Affected Software1

NVD•added 2021/02/06 12:15 a.m.•10 views

CVE-2020-5812

Nessus AMI versions 8.12.0 and earlier were found to either not validate, or incorrectly validate, a certificate which could allow an attacker to spoof a trusted entity by using a man-in-the-middle MITM attack...

5.9CVSS0.00107EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by