CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A vulnerability in the CLI of Cisco Secure Firewall Management Center FMC Software and Cisco Secure Firewall Threat Defense FTD Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system as root. This vulnerability is due to improper inp...

6CVSS6.1AI score0.00162EPSS

Exploits0References2Affected Software2

OSSF Malicious Packages•added 2025/08/13 5:41 p.m.•4 views

Malicious code in st-py-de-cli (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 a0110859887f6cd8d6e81ff1c6715dd4a5d2a1c84c28b71cb09320e33e10cce5 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

7.3AI score

Exploits0References1

OSV•added 2025/08/13 5:41 p.m.•2 views

MAL-2025-41768 Malicious code in st-py-de-cli (PyPI)

7.2AI score

Exploits0References1

OSV•added 2025/08/13 9:15 a.m.•3 views

CVE-2025-55345

Using Codex CLI in workspace-write mode inside a malicious context repo, directory, etc could lead to arbitrary file overwrite and potentially remote code execution due to symlinks being followed outside the allowed current working directory...

8.8CVSS6.5AI score0.00782EPSS

Exploits0References2

CVE•added 2025/08/13 8:55 a.m.•25 views

CVE-2025-55345

CVE-2025-55345 concerns OpenAI Codex CLI when used in a restricted workspace-write sandbox. The issue arises because symlinks are followed outside the allowed current working directory in a malicious context (repo/directory), enabling arbitrary file overwrite and potentially remote code execution...

8.8CVSS8.1AI score0.00782EPSS

Exploits0References2

CNNVD•added 2025/08/13 12:0 a.m.•2 views

OpenAI Codex CLI 安全漏洞

OpenAI Codex CLI is an OpenAI open source lightweight coding agent software that runs in the terminal. A security vulnerability exists in OpenAI Codex CLI that stems from the fact that use of Codex CLI in a malicious context could lead to arbitrary file overwriting and potential remote code...

8.8CVSS7.8AI score0.00782EPSS

Exploits0References2

Positive Technologies•added 2025/08/13 12:0 a.m.•3 views

PT-2025-32971 · Codex Cli · Codex Cli

Name of the Vulnerable Software and Affected Versions: Codex CLI affected versions not specified Description: Using Codex CLI in workspace-write mode within a malicious context repository, directory, etc. may lead to arbitrary file overwrite and potentially remote code execution. This occurs...

8.8CVSS7.9AI score0.00782EPSS

Exploits0References8

Tenable Nessus•added 2025/08/13 12:0 a.m.•5 views

SUSE SLES15 / openSUSE 15 Security Update : amber-cli (SUSE-SU-2025:02769-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2025:02769-1 advisory. - Update to version 1.13.1+git20250329.c2e3bb8: CVE-2025-30204: Fixed jwt-go excessive memory allocation during header parsin...

7.5CVSS7.3AI score0.00645EPSS

Exploits0References5

OSV•added 2025/08/12 7:15 p.m.•1 views

CVE-2025-47857

A improper neutralization of special elements used in an os command 'os command injection' vulnerability CWE-78 in Fortinet FortiWeb CLI version 7.6.0 through 7.6.3 and before 7.4.8 allows a privileged attacker to execute arbitrary code or command via crafted CLI commands...

6.7CVSS6.2AI score0.00497EPSS

Exploits0References1

NVD•added 2025/08/12 7:15 p.m.•3 views

CVE-2025-32766

A stack-based buffer overflow vulnerability CWE-121 in Fortinet FortiWeb CLI version 7.6.0 through 7.6.3 and before 7.4.8 allows a privileged attacker to execute arbitrary code or commands via crafted CLI commands...

6.7CVSS0.00126EPSS

Exploits0References1

NVD•added 2025/08/12 7:15 p.m.•4 views

CVE-2025-47857

6.7CVSS0.00497EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by