CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

31246 matches found

Tenable Nessus•added 2021/11/08 12:0 a.m.•151 views

ManageEngine ADSelfServicePlus Authentication Bypass (CVE-2021-40539)

Binary data manageengineadselfserviceplusCVE-2021-40539.nbin...

9.8CVSS9.8AI score0.9896EPSS

Exploits8References3

Cvelist•added 2021/11/05 7:55 p.m.•45 views

CVE-2021-41197 Crashes due to overflow and `CHECK`-fail in ops with large tensor shapes

TensorFlow is an open source platform for machine learning. In affected versions TensorFlow allows tensor to have a large number of dimensions and each dimension can be as large as desired. However, the total number of elements in a tensor must fit within an int64t. If an overflow occurs,...

5.5CVSS5AI score0.00307EPSS

Exploits1References6

NVD•added 2021/11/05 4:15 p.m.•17 views

CVE-2021-42698

Project files are stored memory objects in the form of binary serialized data that can later be read and deserialized again to instantiate the original objects in memory. Malicious manipulation of these files may allow an attacker to corrupt memory...

7.8CVSS0.00765EPSS

Exploits0References1

OSV•added 2021/11/05 4:15 p.m.•2 views

CVE-2021-42698

7.8CVSS7.1AI score0.00765EPSS

Exploits0References1

Prion•added 2021/11/05 4:15 p.m.•15 views

Design/Logic Flaw

6.8CVSS7.4AI score0.00765EPSS

Exploits0References1Affected Software1

Cvelist•added 2021/11/05 3:39 p.m.•20 views

CVE-2021-42698 AzeoTech DAQFactory

7.8CVSS7.7AI score0.00765EPSS

Exploits0References1

CVE•added 2021/11/05 3:39 p.m.•60 views

CVE-2021-42698

CVE-2021-42698 affects DAQFactory (all versions 18.1 Build 2347 and earlier). The vulnerability arises from deserialization of project files stored as binary memory objects, allowing memory corruption if a crafted file is opened. ICSA-21-308-02 notes the issue exists in the Deserialization of Unt...

7.8CVSS7.5AI score0.00765EPSS

Exploits0References1Affected Software1

RedHat Linux•added 2021/11/02 5:36 p.m.•2 views

golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs

A flaw was found in the Go encoding/binary package. Certain invalid inputs to the ReadUvarint or the ReadVarint causes those functions to read an unlimited number of bytes from the ByteReader argument before returning an error. This flaw possibly leads to processing more input than expected. The...

7.5CVSS7.2AI score0.04692EPSS

Exploits0References5

Kitploit•added 2021/11/02 11:30 a.m.•10 views

aDLL - Adventure of Dinamic Link Library

aDLL is abinary analysis tool focused on the automatic discovery of DLL Hijacking vulnerabilities. The tool analyzes the image of the binary loaded in memory to search for DLLs loaded at load-time and makes use of the Microsoft Detours library to intercept calls to the LoadLibrary/LoadLibraryEx...

6.5AI score

Exploits0References2

Tenable Nessus•added 2021/11/01 12:0 a.m.•16 views

Citrix Personalization For App-V - VDA Installed (Windows)

Binary data citrixpersonalizationappvvdawininstalled.nbin...

7.3AI score

Exploits0References1

Kitploit•added 2021/10/29 11:30 a.m.•25 views

Http-Protocol-Exfil - Exfiltrate Files Using The HTTP Protocol Version ("HTTP/1.0" Is A 0 And "HTTP/1.1" Is A 1)

Use the HTTP protocol version to send a file bit by bit "HTTP/1.0" is a 0 and "HTTP/1.1" is a 1. It uses GET requests so the Blue Team would only see the requests to your IP address. However, it takes a long time to send bigger files, for example it needs 1 hour to send 200 KB, and the amount of...

7.1AI score

Exploits0References1

Cvelist•added 2021/10/29 11:8 a.m.•19 views

CVE-2021-22038

On Windows, the uninstaller binary copies itself to a fixed temporary location, which is then executed the originally called uninstaller exits, so it does not block the installation directory. This temporary location is not randomized and does not restrict access to Administrators only so a...

8.8AI score0.00962EPSS

Exploits0References1

Tenable Nessus•added 2021/10/29 12:0 a.m.•154 views

Apple iOS < 14.8.1 Multiple Vulnerabilities (HT212868)

Binary data appleios1481check.nbin...

9.3CVSS8AI score0.14721EPSS

Exploits0References13

CNNVD•added 2021/10/29 12:0 a.m.•4 views

InstallBuilder安全特征问题漏洞

Vmware InstallBuilder is a multi-platform installer development and automatic update tool from Vmware, Inc. A security vulnerability exists in InstallBuilder that stems from the fact that under certain circumstances on the InstallBuilder Windows version, the uninstaller binary copies itself to a...

8.8CVSS7.9AI score0.00962EPSS

Exploits0References2

Tenable Nessus•added 2021/10/28 12:0 a.m.•15 views

Safari < 15.1 Multiple Vulnerabilities

Binary data 701376.pasl...

6.5CVSS7.3AI score0.01604EPSS

Exploits0References2

Tenable Nessus•added 2021/10/28 12:0 a.m.•23 views

Google Chrome < 95.0.4638.69 Multiple Vulnerabilities

Binary data 701377.pasl...

8.8CVSS7.3AI score0.00942EPSS

Exploits0References2