CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-14506

Malware in sbrugna...

7.8CVSS7.7AI score0.00045EPSS

Exploits1References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-41407

Malicious code in bioql PyPI...

7.7CVSS6.4AI score0.00161EPSS

EUVD•added 2025/10/03 8:7 p.m.•0 views

EUVD-2023-41406

Malicious code in bioql PyPI...

7.7CVSS6.4AI score0.00161EPSS

Tenable Nessus•added 2025/08/01 12:0 a.m.•2 views

HCL BigFix Server Improper Access Restrictions (KB0122906)

Improper access restrictions in HCL BigFix Remote Control Server WebUI versions 10.1.0.0248 and lower allow non-admin users to view unauthorized information on certain web pages. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported versio...

8.2CVSS5.8AI score0.00132EPSS

Tenable Nessus•added 2025/07/18 12:0 a.m.•69 views

HCL BigFix Server 10.0.x < 10.0.13 / 11.0.x < 11.0.4 Multiple Vulnerabilities (KB0120585)

The version of HCL BigFix Server installed on the remote host is 10.0.x prior to 10.0.13 or 11.x prior to 11.0.4. It is, therefore, affected by multiple vulnerabilities as referenced in the KB0120585 advisory. - HCL BigFix Web Reports' service communicates over HTTPS but exhibits a weakness in it...

8.1CVSS5.6AI score0.00196EPSS

Exploits0References4

Tenable Nessus•added 2024/10/17 12:0 a.m.•23 views

HCL BigFix Server 9.5.x < 9.5.25 / 10.0.x < 10.0.12 / 11.0.x < 11.0.3 DLL Hijacking (KB0116659)

The version of HCL BigFix Server installed on the remote host is 9.5.x prior to 9.5.25, 10.0.x prior to 10.0.12 or 11.x prior to 11.0.3. It is, therefore, affected by a DLL hijacking vulnerability as referenced in the KB0116659 advisory, where a dynamic search for a prerequisite library could all...

5.3CVSS5.7AI score0.00075EPSS

Tenable Nessus•added 2024/02/08 12:0 a.m.•48 views

HCL BigFix Server 9.5.x < 9.5.24 / 10.0.x < 10.0.10 / 11.0.x < 11.0.1 Multiple Vulnerabilities (KB0110209)

The version of HCL BigFix Server installed on the remote host is 9.5.x prior to 9.5.24, 10.0.x prior to 10.0.10 or 11.x prior to 11.0.1. It is, therefore, affected by multiple vulnerabilities as referenced in the KB0110209 advisory. - Heap-based buffer overflow vulnerability in the SOCKS5 proxy...

9.8CVSS8.1AI score0.26747EPSS

Exploits6References9

Tenable Nessus•added 2024/02/08 12:0 a.m.•11 views

HCL BigFix Server Installed (Windows)

Binary data hclbigfixserverwininstalled.nbin...

7.3AI score

OSV•added 2023/12/21 11:15 p.m.•0 views

CVE-2023-37520

Unauthenticated Stored Cross-Site Scripting XSS vulnerability identified in BigFix Server version 9.5.12.68, allowing for potential data exfiltration. This XSS vulnerability is in the Gather Status Report, which is served by the BigFix Relay...

6.1CVSS5.8AI score0.00161EPSS

NVD•added 2023/12/21 11:15 p.m.•15 views

CVE-2023-37520

7.7CVSS0.00161EPSS

Prion•added 2023/12/21 11:15 p.m.•24 views

Cross site scripting

5.8CVSS5.5AI score0.00161EPSS

NVD•added 2023/12/21 10:15 p.m.•10 views

CVE-2023-37519

Unauthenticated Stored Cross-Site Scripting XSS vulnerability. This XSS vulnerability is in the Download Status Report, which is served by the BigFix Server...

7.7CVSS0.00161EPSS

OSV•added 2023/12/21 10:15 p.m.•0 views

CVE-2023-37519

Unauthenticated Stored Cross-Site Scripting XSS vulnerability. This XSS vulnerability is in the Download Status Report, which is served by the BigFix Server...

6.1CVSS5.8AI score0.00161EPSS

Prion•added 2023/12/21 10:15 p.m.•14 views

Cross site scripting

Unauthenticated Stored Cross-Site Scripting XSS vulnerability. This XSS vulnerability is in the Download Status Report, which is served by the BigFix Server...

5.8CVSS5.3AI score0.00161EPSS

CVE•added 2023/12/21 10:13 p.m.•35 views

CVE-2023-37520

CVE-2023-37520 is an unauthenticated stored XSS affecting HCL BigFix Server 9.5.12.68, located in the Gather Status Report served by the BigFix Relay. The vulnerability could enable data exfiltration. Connected documents confirm the affected product/version and location; exploitation details are ...

7.7CVSS5.9AI score0.00161EPSS

Cvelist•added 2023/12/21 10:13 p.m.•17 views

CVE-2023-37520 HCL BigFix Platform is affected by Unathenticated Stored Cross-Site Scripting (XSS)

7.7CVSS6.7AI score0.00161EPSS

CVE•added 2023/12/21 9:44 p.m.•54 views

CVE-2023-37519

CVE-2023-37519 is an Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability affecting HCL BigFix Platform/BigFix Server, specifically in the Download Status Report. Connected sources indicate affected product versions include HCL BigFix Platform 10.0–10.0.9 and 9.5–9.5.22. The vulnerabil...

7.7CVSS5.8AI score0.00161EPSS

Cvelist•added 2023/12/21 9:44 p.m.•14 views

CVE-2023-37519 HCL BigFix Platform is affected by Unathenticated Stored Cross-Site Scripting (XSS)

Unauthenticated Stored Cross-Site Scripting XSS vulnerability. This XSS vulnerability is in the Download Status Report, which is served by the BigFix Server...

7.7CVSS6.5AI score0.00161EPSS

Vulnrichment•added 2023/12/21 9:44 p.m.•11 views

CVE-2023-37519 HCL BigFix Platform is affected by Unathenticated Stored Cross-Site Scripting (XSS)

Unauthenticated Stored Cross-Site Scripting XSS vulnerability. This XSS vulnerability is in the Download Status Report, which is served by the BigFix Server...

7.7CVSS6.5AI score0.00161EPSS