CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

433 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerabilities have been resolved: TCP: cdg: allows tcpcdgrelease to be called multiple times. It seems that MPTCP can call tcpdisconnect on a already disconnected flow. This is generally fine, unless the current congestion control mechanism is CDG, as it might...

7.8CVSS6.4AI score0.00064EPSS

Exploits0References2

RedhatCVE•added 2026/01/09 10:32 a.m.•4 views

CVE-2017-18636

CDG through 2017-01-01 allows downloadDocument.jsp?command=download= directory traversal...

7.5CVSS7AI score0.00775EPSS

Exploits1References1

RedhatCVE•added 2026/01/07 9:17 a.m.•4 views

CVE-2025-1840

A vulnerability was found in ESAFENET CDG 5.6.3.154.205. It has been rated as critical. Affected by this issue is some unknown functionality of the file /CDGServer3/workflowE/useractivate/updateorg.jsp. The manipulation of the argument flowId leads to sql injection. The attack may be launched...

9.8CVSS7.2AI score0.00072EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:17 a.m.•8 views

CVE-2025-1844

A vulnerability, which was classified as critical, was found in ESAFENET CDG 5.6.3.154.20520250114. Affected is an unknown function of the file /CDGServer3/logManagement/backupLogDetail.jsp. The manipulation of the argument logTaskId leads to sql injection. It is possible to launch the attack...

9.8CVSS7.1AI score0.00109EPSS

Exploits0References1

Tenable Nessus•added 2025/11/12 12:0 a.m.•1 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990806)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990806 advisory. In the Linux kernel, the following vulnerability has been resolved: tcp: cdg: allow tcpcdgrelease to be called multiple times Apparently, mptcp is able to call...

7.8CVSS6AI score0.00064EPSS

Exploits0References4