CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

TP-LINK Smart bulb Tapo is a smart bulb from China P&L TP-LINK. A security vulnerability exists in the TPLink Smart bulb Tapo series L530 version v.1.0.0, Tapo Application v.2.8.14, which originated from a vulnerability that allows remote attackers to gain access to sensitive information via the...

6.5CVSS6.6AI score0.00103EPSS

Exploits0References6

OSV•added 2021/02/17 12:0 a.m.•1 views

UBUNTU-CVE-2020-8625

BIND servers are vulnerable if they are running an affected version and are configured to use GSS-TSIG features. In a configuration which uses BIND's default settings the vulnerable code path is not exposed, but a server can be rendered vulnerable by explicitly setting valid values for the...

8.1CVSS7.1AI score0.2515EPSS

Exploits0References5

OSV•added 2017/10/05 7:29 a.m.•1 views

CVE-2017-12246

A vulnerability in the implementation of the direct authentication feature in Cisco Adaptive Security Appliance ASA Software could allow an unauthenticated, remote attacker to cause an affected device to unexpectedly reload, resulting in a denial of service DoS condition. The vulnerability is due...

8.6CVSS5.8AI score

Exploits0References3

CNVD•added 2016/05/06 12:0 a.m.•2 views

Trend Micro Email Encryption SQL Injection Vulnerability

Trend Micro Email Encryption is a suite of identity-based email encryption solutions, and Trend Micro Email Encryption Gateway is one of the gateway products that provides data protection. A SQL injection vulnerability exists in the authentication feature of Trend Micro Email Encryption, which...

9.8CVSS8.2AI score0.00769EPSS

Exploits0References1

ArchLinux•added 2014/12/22 12:0 a.m.•59 views

ntp: multiple issues

Keys explicitly generated by "ntp-keygen -M" should be regenerated. - CVE-2014-9293 weak key generation ntpd generated a weak key for its internal use, with full administrative privileges. Attackers could use this key to reconfigure ntpd or to exploit other vulnerabilities. - CVE-2014-9294 weak k...

7.5CVSS6.6AI score0.57272EPSS

Exploits4References8

The Hacker News•added 2013/09/09 6:45 a.m.•208 views

Web Application Security : PHP SuperGlobal Variables are vulnerable to Hackers

Hackers are focusing on vulnerabilities in the PHP web application development platform threatening 80% websites in the world, including many big website i.e. Facebook and Wikipedia. PHP has several predefined variables that are called SuperGlobals i.e. POST, GET, COOKIES, FILES etc. Imperva...

6.4CVSS2.2AI score0.37008EPSS

Exploits16

Prion•added 2009/01/27 11:30 p.m.•12 views

Stack overflow

Multiple buffer overflows in Ipswitch IMail before 2006.21 allow remote attackers or authenticated users to execute arbitrary code via 1 the authentication feature in IMailsec.dll, which triggers heap corruption in the IMail Server, or 2 a long SUBSCRIBE IMAP command, which triggers a stack-based...

9CVSS8.4AI score0.17551EPSS

Exploits6References3Affected Software1

CVE•added 2007/03/13 10:0 p.m.•51 views

CVE-2007-0723

This CVE affects Apple Mac OS X DirectoryService DS Plug-Ins in Mac OS X 10.3.9 and 10.4 up to 10.4.8. The issue is an authentication flaw in DirectoryService that allows remote authenticated LDAP users to modify the local root password and gain privileges. The underlying vectors are not publicly...

8.5CVSS7.4AI score0.02398EPSS

Exploits0References9Affected Software2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by