CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

13 matches found

RedhatCVE•added 2026/01/09 8:42 a.m.•7 views

CVE-2022-31011

TiDB is an open-source NewSQL database that supports Hybrid Transactional and Analytical Processing HTAP workloads. Under certain conditions, an attacker can construct malicious authentication requests to bypass the authentication process, resulting in privilege escalation or unauthorized access...

7.8CVSS7.1AI score0.00311EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-26103

Malicious code in bioql PyPI...

4.3CVSS8.6AI score0.01014EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•8 views

EUVD-2025-11760

Malicious code in bioql PyPI...

9.8CVSS9AI score0.00492EPSS

Exploits2References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-46005

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00484EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2022-25908

Malicious code in bioql PyPI...

9.6CVSS9.2AI score0.01393EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•6 views

EUVD-2023-40031

Malicious code in bioql PyPI...

7.8CVSS8.1AI score0.01107EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-41316

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00586EPSS

Exploits0References1

NVD•added 2025/05/06 4:15 p.m.•9 views

CVE-2025-22477

Dell Storage Center - Dell Storage Manager, versions 20.1.20, contains an Improper Authentication vulnerability. An unauthenticated attacker with adjacent network access could potentially exploit this vulnerability, leading to Elevation of privileges...

8.8CVSS0.00259EPSS

Exploits0References1

CVE•added 2025/03/14 5:5 p.m.•2059 views

CVE-2025-29774

CVE-2025-29774 concerns the xml-crypto Node.js library. The issue allows an attacker to modify a valid signed XML message such that signature verification still passes, enabling bypass of authentication/authorization in systems that rely on xml-crypto for verifying signed XML. Affected versions a...

9.3CVSS6.9AI score0.0905EPSS

Exploits0References8

CVE•added 2025/01/09 2:3 p.m.•62 views

CVE-2024-43176

CVE-2024-43176 affects IBM OpenPages 9.0. The issue arises from improper authorization checks on APIs, allowing an authenticated user to obtain sensitive information (configurations) that should be privileged. The IBM security bulletin confirms the affected version and provides remediation: apply...

5.4CVSS6AI score0.00272EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2024/11/27 6:16 a.m.•73 views

CVE-2024-36467 Authentication privilege escalation via user groups due to missing authorization checks

An authenticated user with API access e.g.: user with default User role, more specifically a user with access to the user.update API endpoint is enough to be able to add themselves to any group e.g.: Zabbix Administrators, except to groups that are disabled or having restricted GUI access...

7.5CVSS6.9AI score0.00716EPSS

Exploits1References1

Cvelist•added 2024/11/27 6:16 a.m.•66 views

CVE-2024-36467 Authentication privilege escalation via user groups due to missing authorization checks

An authenticated user with API access e.g.: user with default User role, more specifically a user with access to the user.update API endpoint is enough to be able to add themselves to any group e.g.: Zabbix Administrators, except to groups that are disabled or having restricted GUI access...

7.5CVSS0.00716EPSS

Exploits1References1

Cvelist•added 2000/12/19 5:0 a.m.•12 views

CVE-2000-1159

NAI Sniffer Agent allows remote attackers to gain privileges on the agent by sniffing the initial UDP authentication packets and spoofing commands...

7.1AI score0.01549EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by