CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

UbuntuCve•added 2022/08/05 4:15 p.m.•24 views

CVE-2022-2303

An issue has been discovered in GitLab CE/EE affecting all versions before 15.0.5, all versions starting from 15.1 before 15.1.4, all versions starting from 15.2 before 15.2.1. It may be possible for group members to bypass 2FA enforcement enabled at the group level by using Resource Owner Passwo...

4.3CVSS5.7AI score0.00169EPSS

Exploits0References1

OSV•added 2021/04/07 11:2 a.m.•2 views

OESA-2021-1099 c-ares security update

This is c-ares, an asynchronous resolver library. It is intended for applications which need to perform DNS queries without blocking, or need to perform multiple. Security Fixes: A Node.js application that allows an attacker to trigger a DNS request for a host of their choice could trigger a Deni...

7.5CVSS6.9AI score0.58883EPSS

Exploits0References2

OSV•added 2020/07/07 2:15 p.m.•2 views

CVE-2020-15573

SolarWinds Serv-U File Server before 15.2.1 has a "Cross-script vulnerability," aka Case Numbers 00041778 and 00306421...

6.1CVSS6.4AI score

Exploits0References1

OSV•added 2020/07/07 2:15 p.m.•2 views

CVE-2020-15575

SolarWinds Serv-U File Server before 15.2.1 allows XSS as demonstrated by Tenable Scan, aka Case Number 00484194...

6.1CVSS5.8AI score0.03318EPSS

Exploits0References1