CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

232 matches found

Flowise 1.6.5 - Authentication Bypass

The flowise version = 1.6.5 is vulnerable to authentication bypass vulnerability. id: CVE-2024-31621 info: name: Flowise 1.6.5 - Authentication Bypass author: DhiyaneshDK severity: high description: | The flowise version = 1.6.5 is vulnerable to authentication bypass vulnerability. impact: |...

7.6CVSS7.1AI score0.80162EPSS

Exploits4References3

OSV•added 2026/05/22 1:18 p.m.•1 views

OESA-2026-2404 gnutls security update

GnuTLS is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. It provides a simple C language application programming interface API to access the secure communications protocols as well as APIs to parse and write X.509, PKCS 12, and other...

9.8CVSS5.7AI score0.00308EPSS

Exploits1References8

Tenable Nessus•added 2026/05/04 12:0 a.m.•0 views

RHCOS 3 : OpenShift Container Platform 3.5 (RHSA-2018:3624)

The remote Red Hat Enterprise Linux CoreOS 3 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:3624 advisory. - kubernetes: authentication/authorization bypass in the handling of non-101 responses CVE-2018-1002105 Note that Nessus has not tested for...

9.8CVSS7.3AI score0.90189EPSS

Exploits10References9

CISA•added 2026/02/25 12:0 p.m.•4 views

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2022-20775link is external Cisco Catalyst SD-WAN Path Traversal Vulnerability CVE-2026-20127link is external Cisco Catalyst SD-WAN Controller and Manager...

10CVSS5.6AI score0.54797EPSS

In wildExploits10References7

Vulnrichment•added 2026/01/16 12:0 a.m.•2 views

CVE-2025-24531

In OpenSC pampkcs11 before 0.6.13, pamsmauthenticate wrongly returns PAMIGNORE in many error situations such as an error triggered by a smartcard before login, allowing authentication bypass...

6.7CVSS6.7AI score0.00006EPSS

Exploits0References3

RedhatCVE•added 2026/01/09 8:40 a.m.•8 views

CVE-2022-35869

This vulnerability allows remote attackers to bypass authentication on affected installations of Inductive Automation Ignition 8.1.15 b2022030114. Authentication is not required to exploit this vulnerability. The specific flaw exists within com.inductiveautomation.ignition.gateway.web.pages. The...

9.8CVSS6.8AI score0.02561EPSS

Exploits0References1