CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

7991 matches found

NVD•added 2025/11/03 5:15 p.m.•11 views

CVE-2025-11953

The Metro Development Server, which is opened by the React Native Community CLI, binds to external interfaces by default. The server exposes an endpoint that is vulnerable to OS command injection. This allows unauthenticated network attackers to send a POST request to the server and run arbitrary...

9.8CVSS0.61938EPSS

Exploits5References6

Cvelist•added 2025/11/03 4:35 p.m.•16 views

CVE-2025-11953 Command injection in React Native Community CLI allows remote attackers to perform remote code execution by sending HTTP requests

The Metro Development Server, which is opened by the React Native Community CLI, binds to external interfaces by default. The server exposes an endpoint that is vulnerable to OS command injection. This allows unauthenticated network attackers to send a POST request to the server and run arbitrary...

9.8CVSS0.61938EPSS

Exploits5References2

CVE•added 2025/11/03 4:35 p.m.•467 views

CVE-2025-11953

The CVE-2025-11953 issue affects the React Native Community CLI Server API Node.js Package (versions 4.8.0 up to, but not including, 20.0.0). The Metro Development Server bound to external interfaces exposes an endpoint vulnerable to OS command injection, enabling unauthenticated network attacker...

9.8CVSS7.5AI score0.61938EPSS

In wildExploits5References6Affected Software1

CNNVD•added 2025/11/03 12:0 a.m.•6 views

React Native Community CLI 安全漏洞

React Native Community CLI is an open source command line tool for React Native Community. A security vulnerability exists in the React Native Community CLI, which stems from a default binding to an external interface and an OS command injection vulnerability in the endpoint, which could allow an...

9.8CVSS8AI score0.61938EPSS

Exploits5References3

Wolfi•added 2025/11/02 2:17 p.m.•6 views

GHSA-447V-2QG4-H8HC vulnerabilities

Vulnerabilities for packages: chisel, jitsucom-bulker, checksec, cert-manager, gostatsd, kube-vip-cloud-provider, incert, kube-rbac-proxy, licenseclassifier, mockery, prometheus-alertmanager, redka, mkcert, redpanda, speedtest-go, telegraf, wazero, k6, kwok, falcoctl, stakater-reloader,...

Wolfi•added 2025/11/02 2:17 p.m.•5 views

GHSA-FRHW-MQJ2-WXW2 vulnerabilities

Vulnerabilities for packages: jitsucom-bulker, gostatsd, mockery, prometheus-alertmanager, telegraf, stakater-reloader, harbor-registry, opensearch-k8s-operator, vitess, azure-workload-identity-webhook, contour, envoy-ratelimit, azurefile-csi, nuclei, kpt, argo-rollouts, skopeo, pombump, ini-file...

Wolfi•added 2025/11/02 2:17 p.m.•5 views

GHSA-RJCG-56PH-3QVG vulnerabilities

Vulnerabilities for packages: chisel, jitsucom-bulker, checksec, cert-manager, gostatsd, kube-vip-cloud-provider, incert, kube-rbac-proxy, licenseclassifier, mockery, prometheus-alertmanager, redka, mkcert, redpanda, speedtest-go, telegraf, wazero, k6, kwok, falcoctl, stakater-reloader,...

Wolfi•added 2025/11/02 2:17 p.m.•4 views

GHSA-CXQ7-XW9V-RCV3 vulnerabilities

Vulnerabilities for packages: chisel, jitsucom-bulker, checksec, cert-manager, gostatsd, kube-vip-cloud-provider, incert, kube-rbac-proxy, licenseclassifier, mockery, prometheus-alertmanager, redka, mkcert, redpanda, speedtest-go, telegraf, wazero, k6, kwok, falcoctl, stakater-reloader,...

Wolfi•added 2025/11/02 2:17 p.m.•6 views

GHSA-JWMF-CHVC-RF92 vulnerabilities

Vulnerabilities for packages: chisel, jitsucom-bulker, checksec, cert-manager, gostatsd, kube-vip-cloud-provider, incert, kube-rbac-proxy, licenseclassifier, mockery, prometheus-alertmanager, redka, mkcert, redpanda, speedtest-go, telegraf, wazero, k6, kwok, falcoctl, stakater-reloader,...

Wolfi•added 2025/11/02 2:17 p.m.•6 views

GHSA-QH38-484V-W52X vulnerabilities

Vulnerabilities for packages: chisel, jitsucom-bulker, checksec, cert-manager, gostatsd, kube-vip-cloud-provider, incert, kube-rbac-proxy, licenseclassifier, mockery, prometheus-alertmanager, redka, mkcert, redpanda, speedtest-go, telegraf, wazero, k6, kwok, falcoctl, stakater-reloader,...

Wolfi•added 2025/11/02 2:17 p.m.•8 views

CVE-2025-47912 vulnerabilities

Vulnerabilities for packages: chisel, jitsucom-bulker, checksec, cert-manager, gostatsd, kube-vip-cloud-provider, incert, kube-rbac-proxy, licenseclassifier, mockery, prometheus-alertmanager, redka, mkcert, redpanda, speedtest-go, telegraf, wazero, k6, kwok, falcoctl, stakater-reloader,...

5.3CVSS7.3AI score0.00414EPSS

Wolfi•added 2025/11/02 2:17 p.m.•7 views

CVE-2025-61723 vulnerabilities

Vulnerabilities for packages: chisel, jitsucom-bulker, checksec, cert-manager, gostatsd, kube-vip-cloud-provider, incert, kube-rbac-proxy, licenseclassifier, mockery, prometheus-alertmanager, redka, mkcert, redpanda, speedtest-go, telegraf, wazero, k6, kwok, falcoctl, stakater-reloader,...

7.5CVSS7.3AI score0.00586EPSS

Wolfi•added 2025/11/02 2:17 p.m.•6 views

GHSA-HJX7-FPXX-MJ48 vulnerabilities

Vulnerabilities for packages: chisel, jitsucom-bulker, checksec, cert-manager, gostatsd, kube-vip-cloud-provider, incert, kube-rbac-proxy, licenseclassifier, mockery, prometheus-alertmanager, redka, mkcert, redpanda, speedtest-go, telegraf, wazero, k6, kwok, falcoctl, stakater-reloader,...

Wolfi•added 2025/11/02 2:17 p.m.•6 views

GHSA-WCW9-47FP-RRFR vulnerabilities

Vulnerabilities for packages: chisel, jitsucom-bulker, checksec, cert-manager, gostatsd, kube-vip-cloud-provider, incert, kube-rbac-proxy, licenseclassifier, mockery, prometheus-alertmanager, redka, mkcert, redpanda, speedtest-go, telegraf, wazero, k6, kwok, falcoctl, stakater-reloader,...

Wolfi•added 2025/11/02 2:17 p.m.•7 views

CVE-2025-58186 vulnerabilities

Vulnerabilities for packages: chisel, jitsucom-bulker, checksec, cert-manager, gostatsd, kube-vip-cloud-provider, incert, kube-rbac-proxy, licenseclassifier, mockery, prometheus-alertmanager, redka, mkcert, redpanda, speedtest-go, telegraf, wazero, k6, kwok, falcoctl, stakater-reloader,...

5.3CVSS7.3AI score0.005EPSS

Wolfi•added 2025/11/02 2:17 p.m.•6 views

CVE-2025-58185 vulnerabilities

Vulnerabilities for packages: chisel, jitsucom-bulker, checksec, cert-manager, gostatsd, kube-vip-cloud-provider, incert, kube-rbac-proxy, licenseclassifier, mockery, prometheus-alertmanager, redka, mkcert, redpanda, speedtest-go, telegraf, wazero, k6, kwok, falcoctl, stakater-reloader,...

5.3CVSS7.3AI score0.00492EPSS

Wolfi•added 2025/11/02 2:17 p.m.•7 views

CVE-2025-58188 vulnerabilities

Vulnerabilities for packages: chisel, jitsucom-bulker, checksec, cert-manager, gostatsd, kube-vip-cloud-provider, incert, kube-rbac-proxy, licenseclassifier, mockery, prometheus-alertmanager, redka, mkcert, redpanda, speedtest-go, telegraf, k6, kwok, falcoctl, stakater-reloader, helm-set-status,...

7.5CVSS7.1AI score0.00344EPSS

Wolfi•added 2025/11/02 2:17 p.m.•6 views

GHSA-9GCR-GP5F-JW27 vulnerabilities

Vulnerabilities for packages: chisel, jitsucom-bulker, checksec, cert-manager, gostatsd, kube-vip-cloud-provider, incert, kube-rbac-proxy, licenseclassifier, mockery, prometheus-alertmanager, redka, redpanda, speedtest-go, telegraf, wazero, k6, kwok, falcoctl, stakater-reloader, helm-set-status,...

Chainguard•added 2025/11/02 1:49 p.m.•8 views

CVE-2025-61724 vulnerabilities

Vulnerabilities for packages: kapp, influxd, restic-fips, fulcio, http-echo, kube-bench, custom-pod-autoscaler-fips, docker-machine-driver-harvester, terraform-provider-azuread, google-osconfig-agent, kube-state-metrics, kapp-controller-fips, fq, pvc-autoresizer, metacontroller,...

5.3CVSS7.3AI score0.00492EPSS

Chainguard•added 2025/11/02 1:49 p.m.•8 views

CVE-2025-58189 vulnerabilities

Vulnerabilities for packages: kapp, influxd, restic-fips, fulcio, http-echo, kube-bench, custom-pod-autoscaler-fips, docker-machine-driver-harvester, terraform-provider-azuread, google-osconfig-agent, kube-state-metrics, kapp-controller-fips, fq, pvc-autoresizer, metacontroller,...

5.3CVSS7.3AI score0.00414EPSS

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by