CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

77 matches found

OSV•added 2026/05/21 8:41 p.m.•7 views

MAL-2026-4424 Malicious code in @remitee-money-transfer/rmt-base (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f21c6601855c2f2d0a5d0761d3defe8c0ba1708dd2a67fb278c03e0abd6ba16 Package ships only a preinstall lifecycle script scripts/preinstall.sh and no functional code. On npm install, the script reads /etc/passwd and...

5.9AI score

Exploits0References4

OSSF Malicious Packages•added 2026/04/29 8:0 a.m.•6 views

Malicious code in apple-internal-pki-utils (npm)

Malicious npm package published by threat actor "raya4321" as part of a coordinated typosquatting campaign impersonating Apple internal infrastructure services authentication, PKI, telemetry, CloudKit, and cloud infrastructure. All packages in this campaign execute credential-theft payloads durin...

5.9AI score

Exploits0References1

OSV•added 2026/04/29 8:0 a.m.•1 views

MAL-2026-3160 Malicious code in apple-internal-pki-utils (npm)

5.9AI score

Exploits0References1

RedhatCVE•added 2025/12/01 2:16 p.m.•4 views

CVE-2025-66217

AIS-catcher is a multi-platform AIS receiver. Prior to version 0.64, an integer underflow vulnerability exists in the MQTT parsing logic of AIS-catcher. This vulnerability allows an attacker to trigger a massive Heap Buffer Overflow by sending a malformed MQTT packet with a manipulated Topic Leng...

8.8CVSS7.4AI score0.00623EPSS

Exploits1References1

RedhatCVE•added 2025/12/01 2:16 p.m.•4 views

CVE-2025-66216

AIS-catcher is a multi-platform AIS receiver. Prior to version 0.64, a heap buffer overflow vulnerability has been identified in the AIS::Message class of AIS-catcher. This vulnerability allows an attacker to write approximately 1KB of arbitrary data into a 128-byte buffer. This issue has been...

9.8CVSS7.4AI score0.00436EPSS

Exploits1References1

NVD•added 2025/11/29 3:15 a.m.•4 views

CVE-2025-66216

9.8CVSS0.00436EPSS

Exploits1References2

NVD•added 2025/11/29 3:15 a.m.•4 views

CVE-2025-66217

8.8CVSS0.00623EPSS

Exploits1References2

CVE•added 2025/11/29 1:57 a.m.•12 views

CVE-2025-66216

AIS-catcher before v0.64 is affected by a heap buffer overflow in AIS::Message that allows writing ~1 KB into a 128-byte buffer. This has been patched in v0.64. Remediation: upgrade to 0.64+ (or apply vendor advisories). Exploitation details are not provided in the supplied documents.

9.8CVSS7AI score0.00436EPSS

Exploits1References2Affected Software1

Vulnrichment•added 2025/11/29 1:57 a.m.•3 views

CVE-2025-66216 AIS-catcher has a Buffer Overflow vulnerability in `AIS::Message` leading to DoS/RCE

9.3CVSS7AI score0.00436EPSS

Exploits1References2

OSV•added 2025/11/29 1:57 a.m.•4 views

CVE-2025-66216 AIS-catcher has a Buffer Overflow vulnerability in `AIS::Message` leading to DoS/RCE

9.3CVSS7.3AI score0.00436EPSS

Exploits1References4

Cvelist•added 2025/11/29 1:57 a.m.•8 views

CVE-2025-66217 AIS-catcher Integer Underflow in MQTT Packet Parsing leading to Heap Buffer Overflow

8.8CVSS0.00623EPSS

Exploits1References2

CVE•added 2025/11/29 1:57 a.m.•12 views

CVE-2025-66217

AIS-catcher is a cross-platform AIS receiver. Multiple connected sources describe a vulnerability in the MQTT parsing logic prior to version 0.64: an integer underflow can trigger a massive Heap Buffer Overflow when processing a malformed MQTT packet with a manipulated Topic Length field. This le...

8.8CVSS7AI score0.00623EPSS

Exploits1References2Affected Software1

EUVD•added 2025/11/29 1:57 a.m.•3 views

EUVD-2025-199900

8.8CVSS6.9AI score0.00623EPSS

Exploits1References2

Vulnrichment•added 2025/11/29 1:57 a.m.•2 views

CVE-2025-66217 AIS-catcher Integer Underflow in MQTT Packet Parsing leading to Heap Buffer Overflow

8.8CVSS7AI score0.00623EPSS

Exploits1References2

OSV•added 2025/11/29 1:57 a.m.•2 views

CVE-2025-66217 AIS-catcher Integer Underflow in MQTT Packet Parsing leading to Heap Buffer Overflow

8.8CVSS7.3AI score0.00623EPSS

Exploits1References4

CNNVD•added 2025/11/29 12:0 a.m.•2 views

AIS-catcher 安全漏洞

AIS-catcher is an AIS receiver from Jasper Personal Developers. A security vulnerability exists in AIS-catcher versions prior to 0.64, which stems from a heap buffer overflow in the AIS::Message class that could lead to arbitrary data writes...

9.8CVSS7AI score0.00436EPSS

Exploits1References3

Positive Technologies•added 2025/11/29 12:0 a.m.•5 views

PT-2025-48359

Name of the Vulnerable Software and Affected Versions AIS-catcher versions prior to 0.64 Description AIS-catcher is a multi-platform AIS receiver. A heap buffer overflow exists in the AIS::Message class. This allows an attacker to write approximately 1KB of arbitrary data into a 128-byte buffer...

9.3CVSS7.4AI score0.00436EPSS

Exploits1References9

Positive Technologies•added 2025/11/29 12:0 a.m.•4 views

PT-2025-48360

Name of the Vulnerable Software and Affected Versions AIS-catcher versions prior to 0.64 Description AIS-catcher, a multi-platform AIS receiver, contains a flaw in its MQTT parsing logic. An integer underflow can be triggered by sending a crafted MQTT packet with a modified Topic Length field. Th...

8.8CVSS7.1AI score0.00623EPSS

Exploits1References7

OSSF Malicious Packages•added 2025/10/14 4:35 a.m.•4 views

Malicious code in kmf-cookiecatcher (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 43f34feaa70eda2d6c1595e358d6c566d1c56c87a35c2c4cb191f4d38c279564 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score

Exploits0References1

EUVD•added 2025/10/14 4:35 a.m.•2 views

EUVD-2025-34136

Malicious code in kmf-cookiecatcher npm...

6.6AI score

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by