CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8014 matches found

Tenable Nessus•added 2023/12/05 12:0 a.m.•8 views

Fedora 39 : clevis-pin-tpm2 / keyring-ima-signer / rust-bodhi-cli / etc (2023-9790b327cb)

The remote Fedora 39 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2023-9790b327cb advisory. Affected applications were rebuilt against version 0.10.60 of the the openssl crate the Rust bindings for OpenSSL to address two security advisories: -...

5.6AI score

Exploits0References1

Packet Storm•added 2023/12/05 12:0 a.m.•392 views

FortiWeb VM 7.4.0 build577 CLI Crash

;; ;; FortiWeb VM v7.4.0 build577 Post-auth CLI Crash ;; ;; ... ;; ;; code610 / some debug notes fyi ;; ;; 17.11.2023 @ 23:33 ;; FortiWeb diagnose debug crashlog show 2023-11-16 05:07:00 application cli 2023-11-16 05:07:00 signal Segmentation fault received 2023-11-16 05:07:00 RIP 00007fdd1febf44...

7.4AI score

Exploits0

Tenable Nessus•added 2023/12/05 12:0 a.m.•7 views

Fedora 38 : clevis-pin-tpm2 / keyring-ima-signer / libkrun / rust-bodhi-cli / etc (2023-6215ea423b)

The remote Fedora 38 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2023-6215ea423b advisory. Affected applications were rebuilt against version 0.10.60 of the the openssl crate the Rust bindings for OpenSSL to address two security advisories: -...

5.6AI score

Exploits0References1

OSV•added 2023/12/04 11:13 p.m.•4 views

GHSA-J3RQ-4XJW-XG63 Go package github.com/edgelesssys/marblerun CLI commands susceptible to MITM attacks

Impact Any CLI command issued to a Coordinator after the Manifest has been set, is susceptible to be redirected to another MarbleRun Coordinator instance, which runs the same binary, but potentially a different manifest. Patches The issue has been patched in v1.4.0 Workarounds Directly using the...

7.2AI score

Exploits0References3

Kitploit•added 2023/12/04 11:30 a.m.•61 views

C2-Search-Netlas - Search For C2 Servers Based On Netlas

C2 Search Netlas is a Java utility designed to detect Command and Control C2 servers using the Netlas API. It provides a straightforward and user-friendly CLI interface for searching C2 servers, leveraging the Netlas API to gather data and process it locally. Usage To utilize this terminal utilit...

7.7AI score

Exploits0References2

OSV•added 2023/12/03 6:15 p.m.•2 views

CVE-2023-45178

IBM Db2 for Linux, UNIX and Windows includes DB2 Connect Server 11.5 CLI is vulnerable to a denial of service when a specially crafted request is used. IBM X-Force ID: 268073...

7.5CVSS6.9AI score

Exploits0References3

Cvelist•added 2023/12/03 5:29 p.m.•21 views

CVE-2023-45178 IBM Db2 denial of service

IBM Db2 for Linux, UNIX and Windows includes DB2 Connect Server 11.5 CLI is vulnerable to a denial of service when a specially crafted request is used. IBM X-Force ID: 268073...

6.5CVSS7.3AI score0.0109EPSS

Exploits0References3

Wordfence Blog•added 2023/11/30 3:31 p.m.•86 views

Wordfence Intelligence Weekly WordPress Vulnerability Report (November 20, 2023 to November 26, 2023)

Wordfence just launched its bug bounty program. For the first 6 months, all awarded bounties receive a 10% bonus. View the announcement to learn more now! Last week, there were 115 vulnerabilities disclosed in 87 WordPress Plugins and 1 WordPress themes that have been added to the Wordfence...

7.5CVSS10AI score0.18697EPSS

Exploits26

Kitploit•added 2023/11/30 11:30 a.m.•37 views

Windiff - Web-based Tool That Allows Comparing Symbol, Type And Syscall Information Of Microsoft Windows Binaries Across Different Versions Of The OS

WinDiff is an open-source web-based tool that allows browsing and comparing symbol, type and syscall information of Microsoft Windows binaries across different versions of the operating system. The binary database is automatically updated to include information from the latest Windows updates...

6.9AI score

Exploits0References3

Citrix•added 2023/11/30 12:0 a.m.•11 views

How to generate a support file of an ADM Agent CLI and GUI.

Describe how to generate a support file of anon-Prem ADM Agent from CLI or GUI...

7.1AI score

Exploits0

RedHat Linux•added 2023/11/29 12:12 p.m.•42 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.14.4 packages and security update

Red Hat OpenShift Container Platform release 4.14.4 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.14. Red Hat Product Security has rated this update as having a...

8CVSS6.8AI score0.01815EPSS

Exploits1References4

RedHat Linux•added 2023/11/29 11:36 a.m.•43 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.14.4 bug fix and security update

7.5CVSS7.1AI score0.99999EPSS

Exploits19References21

Prion•added 2023/11/28 3:15 a.m.•21 views

Privilege escalation

An improper privilege management vulnerability in the debug CLI command of the Zyxel ATP series firmware versions 4.32 through 5.37, USG FLEX series firmware versions 4.50 through 5.37, USG FLEX 50W series firmware versions 4.16 through 5.37, USG20W-VPN series firmware versions 4.16 through 5.37,...

1.7CVSS7.1AI score0.00212EPSS

Exploits0References1Affected Software20

NVD•added 2023/11/28 2:15 a.m.•16 views

CVE-2023-37925

5.5CVSS0.00218EPSS

Exploits0References1

NVD•added 2023/11/28 2:15 a.m.•14 views

CVE-2023-37926

A buffer overflow vulnerability in the Zyxel ATP series firmware versions 4.32 through 5.37, USG FLEX series firmware versions 4.50 through 5.37, USG FLEX 50W series firmware versions 4.16 through 5.37, USG20W-VPN series firmware versions 4.16 through 5.37, and VPN series firmware versions 4.30...

5.5CVSS0.00221EPSS

Exploits0References1

Prion•added 2023/11/28 2:15 a.m.•24 views

Privilege escalation

1.7CVSS7.1AI score0.00218EPSS

Exploits0References1Affected Software20

Vulnrichment•added 2023/11/28 2:0 a.m.•13 views

CVE-2023-5797

5.5CVSS6.8AI score0.00212EPSS

Exploits0References1

CVE•added 2023/11/28 2:0 a.m.•63 views

CVE-2023-5797

CVE-2023-5797 describes an improper privilege management vulnerability in the debug CLI command of Zyxel devices. Affected products include Zyxel ATP series (4.32–5.37), USG FLEX series (4.50–5.37), USG FLEX 50(W) (4.16–5.37), USG20(W)-VPN (4.16–5.37), VPN series (4.30–5.37), NWA50AX (6.29 ABYW.2...

5.5CVSS5.5AI score0.00212EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/11/28 1:42 a.m.•30 views

CVE-2023-4397

A buffer overflow vulnerability in the Zyxel ATP series firmware version 5.37, USG FLEX series firmware version 5.37, USG FLEX 50W series firmware version 5.37, and USG20W-VPN series firmware version 5.37, could allow an authenticated local attacker with administrator privileges to cause...

4.4CVSS5.3AI score0.00233EPSS

Exploits0References1

CVE•added 2023/11/28 1:30 a.m.•47 views

CVE-2023-37925

CVE-2023-37925 describes an improper privilege management vulnerability in the debug CLI command on Zyxel devices (ATP series 4.32–5.37; USG FLEX series 4.50–5.37; USG FLEX 50(W) 4.16–5.37; USG20(W)-VPN 4.16–5.37; VPN 4.30–5.37; NWA50AX 6.29(ABYW.2); WAC500 6.65(ABVS.1); WAX300H 6.60(ACHF.1); WBE...

5.5CVSS5.5AI score0.00218EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by