CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2025/05/07 12:0 a.m.•6 views

Apache Roller Detection

Binary data apacherollerdetect.nbin...

OpenVAS•added 2025/05/07 12:0 a.m.•4 views

Do Not Install Development and Compilation Tools

Compilation tools in the service environment may be exploited by attackers to edit, tamper with, and perform reverse analysis on key files in the environment. Therefore, in the production environment, do not install compilation, decompilation, binary analysis tools, and compilation environments...

6.9AI score

Exploits0References3

Packet Storm News•added 2025/05/05 12:0 a.m.•2 views

Attestable Builds: Compiling Verifiable Binaries on Untrusted Systems Using Trusted Execution Environments

In this paper we present attestable builds, a new paradigm to provide strong source-to-binary correspondence in software artifacts. We tackle the challenge of opaque build pipelines that disconnect the trust between source code, which can be understood and audited, and the final binary artifact,...

7.5AI score

Packet Storm News•added 2025/05/02 12:0 a.m.•3 views

Disassembly As Weighted Interval Scheduling with Learned Weights

Disassembly is the first step of a variety of binary analysis and transformation techniques, such as reverse engineering, or binary rewriting. Recent disassembly approaches consist of three phases: an exploration phase, that overapproximates the binary's code; an analysis phase, that assigns...

7.2AI score

Packet Storm News•added 2025/05/02 12:0 a.m.•6 views

The DCR Delusion: Measuring the Privacy Risk of Synthetic Data

Synthetic data has become an increasingly popular way to share data without revealing sensitive information. Though Membership Inference Attacks MIAs are widely considered the gold standard for empirically assessing the privacy of a synthetic dataset, practitioners and researchers often rely on...

7AI score

Tenable Nessus•added 2025/05/02 12:0 a.m.•3 views

GMOD Apollo Detection

Binary data gmodapollodetect.nbin...

OSV•added 2025/05/01 8:15 p.m.•4 views

CVE-2025-46629

Lack of access controls in the 'ate' management binary of the Tenda RX2 Pro 16.03.30.14 allows an unauthenticated remote attacker to perform unauthorized configuration changes for any router where 'ate' has been enabled by sending a crafted UDP packet...

6.5CVSS5.8AI score0.01018EPSS

OSV•added 2025/05/01 8:15 p.m.•6 views

CVE-2025-46630

Improper access controls in the web management portal of the Tenda RX2 Pro 16.03.30.14 allows an unauthenticated remote attacker to enable 'ate' a remote system management binary by sending a /goform/ate web request...

6.5CVSS5.9AI score0.00348EPSS

CNNVD•added 2025/05/01 12:0 a.m.•5 views

LLaMA-Factory 安全漏洞

LLaMA-Factory is a fine-tuned large-scale language model by a Chinese hoshi-hiyouga individual developer. A security vulnerability exists in LLaMA-Factory versions prior to 1.0.0, which stems from an unsafe deserialization of user-supplied .bin files in the llamafybaichuan2.py script, which could...

7.8CVSS6.7AI score0.00232EPSS

CNNVD•added 2025/05/01 12:0 a.m.•2 views

Tenda RX2 Pro 安全漏洞

Tenda RX2 Pro is a high performance WiFi 6 signal amplifier from Tenda China. The Tenda RX2 Pro suffers from an access control error vulnerability that can be exploited by an attacker to enable ate management binary...

6.5CVSS6.9AI score0.00348EPSS

CNNVD•added 2025/05/01 12:0 a.m.•5 views

Tenda RX2 Pro 安全漏洞

Tenda RX2 Pro is a high performance WiFi 6 signal amplifier from Tenda China. An Access Control Error vulnerability exists in Tenda RX2 Pro version 16.03.30.14, which stems from a lack of access control in the ate management binary, and can be exploited by an attacker to cause unauthorized...

6.5CVSS6.9AI score0.01018EPSS

Tenable Nessus•added 2025/05/01 12:0 a.m.•7 views

Wazuh Server Installed (Linux / UNIX)

Binary data wazuhservernixinstalled.nbin...

Tenable Nessus•added 2025/04/30 12:0 a.m.•4 views

Gladinet CentreStack Detection

Binary data gladinetcentrestackdetect.nbin...

Packet Storm News•added 2025/04/30 12:0 a.m.•7 views

An Empirical Study on the Effectiveness of Large Language Models for Binary Code Understanding

Binary code analysis plays a pivotal role in the field of software security and is widely used in tasks such as software maintenance, malware detection, software vulnerability discovery, patch analysis, etc. However, unlike source code, reverse engineers face significant challenges in understandi...

7.4AI score

CNVD•added 2025/04/30 12:0 a.m.•6 views

Binary Vulnerability in Damon New Cloud Cache Database of Wuhan Damon Database Co.

Damon New Cloud Cache Database is a self-developed Key-Value database that is deeply compatible with native Redis. A binary vulnerability exists in the Damon New Cloud Cache Database of Wuhan Damon Database Co. Ltd, which can be exploited by attackers to cause a denial of service...

6.9AI score

CVE•added 2025/04/29 4:35 a.m.•89 views

CVE-2025-46343

CVE-2025-46343 affects n8n prior to 1.90.0. The issue is stored XSS via the attachments view endpoint where uploaded binaries are served with an attacker-controlled MIME type. An authenticated member could upload an HTML file and, when a user requests the binary with MIME type text/html, the scri...

5.4CVSS4.7AI score0.00208EPSS

Exploits0References4Affected Software1

Tenable Nessus•added 2025/04/28 12:0 a.m.•7 views

libxml2 Installed (macOS)

Binary data macoslibxml2installed.nbin...

Tenable Nessus•added 2025/04/28 12:0 a.m.•4 views

Erlang/OTP Installed (Linux / Unix)

Binary data ericssonerlangotpnixinstalled.nbin...