CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2023/01/10 8:56 p.m.•51 views

CVE-2021-46791

CVE-2021-46791 describes insufficient input validation during parsing of the System Management Mode (SMM) binary, potentially allowing a malicious SMM executable to corrupt DRTM user application memory and cause a denial of service. The vulnerability is associated with AMD’s System Management Mod...

5.5CVSS6.1AI score0.00181EPSS

Exploits0References1Affected Software1

Tenable Nessus•added 2023/01/10 12:0 a.m.•13 views

TIBCO JasperReports Server Web Detection

Binary data tibcojasperreportsserverwebdetect.nbin...

Tenable Nessus•added 2023/01/10 12:0 a.m.•14 views

VMware Cloud Foundation Installed (Unix)

Binary data vmwarecloudfoundationinstalled.nbin...

NVD•added 2023/01/09 9:15 p.m.•29 views

CVE-2022-43972

A null pointer dereference vulnerability exists in Linksys WRT54GL Wireless-G Broadband Router with firmware = 4.30.18.006. A null pointer dereference in the soapaction function within the upnp binary can be triggered by an unauthenticated attacker via a malicious POST request invoking the...

7.5CVSS6.7AI score0.01313EPSS

NVD•added 2023/01/09 9:15 p.m.•19 views

CVE-2022-43970

A buffer overflow vulnerability exists in Linksys WRT54GL Wireless-G Broadband Router with firmware = 4.30.18.006. A stack-based buffer overflow in the StartEPI function within the httpd binary allows an authenticated attacker with administrator privileges to execute arbitrary commands on the...

7.2CVSS7.3AI score0.19304EPSS

OSV•added 2023/01/09 9:15 p.m.•5 views

CVE-2022-43972

7.5CVSS5.8AI score0.01313EPSS

Prion•added 2023/01/09 9:15 p.m.•34 views

Null pointer dereference

5CVSS7.5AI score0.01313EPSS

Exploits1References3Affected Software1

Tenable Nessus•added 2023/01/09 12:0 a.m.•13 views

Temurin Java Detection (Linux / Unix)

Binary data temurinjavanixinstalled.nbin...

CNVD•added 2023/01/09 12:0 a.m.•32 views

Binary Vulnerability in Various Cisco Products (CNVD-2023-09623)

The RV340, RV340W, RV345, and RV345P are all small business VPN routers from Cisco. A binary vulnerability exists in several Cisco products, which can be exploited by an attacker to upload files for overwrite operations...

9.8CVSS7.1AI score0.88874EPSS

Exploits0

Cvelist•added 2023/01/09 12:0 a.m.•28 views

CVE-2022-43972 Null pointer dereference in Linksys WRT54GL

6.5CVSS7.7AI score0.01313EPSS

CVE•added 2023/01/09 12:0 a.m.•53 views

CVE-2022-43973

The CVE-2022-43973 issue affects Linksys WRT54GL Wireless-G Broadband Router versions

7.2CVSS7.3AI score0.01855EPSS

Exploits1References3Affected Software1

Positive Technologies•added 2023/01/09 12:0 a.m.•2 views

PT-2023-9429 · Linux +4 · Linux Kernel +4

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.1.0-rc8 Description: The vulnerability is related to the TCA MPLS LABEL attribute in the Linux kernel, which has an invalid combination of type NLA U32 and validation type NLA VALIDATE FUNCTION. This can trigg...

8.4CVSS6.4AI score0.01944EPSS

Exploits18References1612

GithubExploit•added 2023/01/07 8:46 p.m.•1008 views

Exploit for Command Injection in Zte Mf286R_Firmware

CVE-2022-39073 Firmware details: wainnerversion: BDPO...

9.8CVSS10AI score0.0334EPSS

Exploits1

The Hacker News•added 2023/01/05 2:55 p.m.•47 views

Blind Eagle Hackers Return with Refined Tools and Sophisticated Infection Chain

A financially motivated threat actor tracked as Blind Eagle has resurfaced with a refined toolset and an elaborate infection chain as part of its attacks targeting organizations in Colombia and Ecuador. Check Point's latest research offers new insights into the Spanish-speaking group's tactics an...

0.2AI score

Exploits0

CNVD•added 2023/01/05 12:0 a.m.•26 views

Binary vulnerability in vim (CNVD-2023-09166)

Vim is a cross-platform text editor. A security vulnerability exists in Vim that originates from an out-of-bounds memory write in the function dostringsub, which can be exploited by an attacker to trigger a denial of service and potentially run code...

7.8CVSS7.1AI score0.00469EPSS

Exploits1

OSV•added 2023/01/04 10:53 a.m.•8 views

USN-5785-1 freeradius vulnerabilities

It was discovered that FreeRADIUS incorrectly handled multiple EAP-pwd handshakes. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 18.04 LTS. CVE-2019-17185 Shane Guan discovered that FreeRADIUS incorrectly handled memory when checking unkno...

7.5CVSS7.3AI score0.02168EPSS

Exploits0References4

Tenable Nessus•added 2023/01/04 12:0 a.m.•9 views

TIBCO Enterprise Message Service (EMS) Remote Detection

Binary data tibcoemsremotedetection.nbin...

Tenable Nessus•added 2023/01/04 12:0 a.m.•8 views

PlaySMS Detection

Binary data playsmswebdetect.nbin...