CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3370 matches found

ATTACKERKB•added 2026/02/05 4:13 p.m.•2 views

CVE-2020-37130

Nsauditor 3.2.0.0 contains a denial of service vulnerability in the registration name input field that allows attackers to crash the application. Attackers can create a malicious payload of 1000 bytes of repeated characters to trigger an application crash when pasted into the registration name...

7.5CVSS5.4AI score0.00035EPSS

Exploits1References3Affected Software1

Vulnrichment•added 2026/02/05 4:13 p.m.•6 views

CVE-2020-37131 Product Key Explorer 4.2.2.0 - 'Key' Denial of Service

Nsauditor Product Key Explorer 4.2.2.0 contains a denial of service vulnerability that allows local attackers to crash the application by inputting a specially crafted registration key. Attackers can generate a payload of 1000 bytes of repeated characters and paste it into the 'Key' input field t...

6.7CVSS5.3AI score0.00012EPSS

Exploits1References3

EUVD•added 2026/02/05 4:13 p.m.•1 views

EUVD-2020-31026

7.5CVSS5.4AI score0.00035EPSS

Exploits1References3

RedHat Linux•added 2026/02/05 3:48 p.m.•5 views

cpython: email header injection due to unquoted newlines

A flaw was found in the email module in the Python standard library. When serializing an email message, the BytesGenerator class fails to properly quote newline characters for email headers. This issue is exploitable when the LiteralHeader class is used as it does not respect email folding rules,...

6CVSS7.3AI score0.00052EPSS

Exploits0References9

Positive Technologies•added 2026/02/05 12:0 a.m.•2 views

PT-2026-6582

Name of the Vulnerable Software and Affected Versions Odin Secure FTP Expert version 7.6.3 Description The software contains a local denial of service issue that allows attackers to crash the application by manipulating site information fields. An attacker can trigger a buffer overflow by pasting...

8.4CVSS5.8AI score0.00009EPSS

Exploits0References5

Positive Technologies•added 2026/02/05 12:0 a.m.•3 views

PT-2026-6579

Name of the Vulnerable Software and Affected Versions ZOC Terminal version 7.25.5 Description ZOC Terminal version 7.25.5 contains a denial of service condition in the private key file input field. An attacker can cause the application to crash by overwriting the private key file input with a...

7.5CVSS5.8AI score0.00027EPSS

Exploits0References5

Github Security Blog•added 2026/02/04 11:21 p.m.•12 views

EVE Has Partially Predetermined Vault Key

Impact The deriveVaultKey function calls retrieveCloudKey which always returns "foobarfoobarfoobarfoobarfoobarfo". When merged with the randomly generated 32-byte key using mergeKeys 16 bytes from each, the last 16 bytes are always "arfoobarfoobarfo". This enables an attacker with physical access...

7.8CVSS7.2AI score0.00027EPSS

Exploits0References6Affected Software1

OSV•added 2026/02/04 11:21 p.m.•2 views

GHSA-G7VP-J25F-H34P EVE Has Partially Predetermined Vault Key

6.7CVSS5.3AI score0.00027EPSS

Exploits0References6

OSV•added 2026/02/04 10:16 p.m.•1 views

UBUNTU-CVE-2026-25541

Bytes is a utility library for working with bytes. From version 1.2.1 to before 1.11.1, Bytes is vulnerable to integer overflow in BytesMut::reserve. In the unique reclaim path of BytesMut::reserve, if the condition "vcapacity = newcap + offset" uses an unchecked addition. When newcap + offset...

7.5CVSS5.8AI score0.00023EPSS

Exploits1References4

OSV•added 2026/02/04 10:16 p.m.•3 views

AZL-76752 CVE-2026-25541 affecting package rust 1.72.0-14

7.5CVSS5.6AI score0.00023EPSS

Exploits1References1

OSV•added 2026/02/04 10:16 p.m.•2 views

AZL-76712 CVE-2026-25541 affecting package azl-compliance for versions less than 1.0.2-3

7.5CVSS5.6AI score0.00023EPSS

Exploits1References1

OSV•added 2026/02/04 10:16 p.m.•4 views

AZL-76718 CVE-2026-25541 affecting package rust 1.75.0-25