CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNVD•added 2022/09/20 12:0 a.m.•39 views

Google TensorFlow code issue vulnerability (CNVD-2023-10609)

Google TensorFlow is an end-to-end open source platform for machine learning from Google, Inc. A code issue vulnerability exists in Google TensorFlow, which stems from the fact that if an empty sortedinputs input is provided for a LowerBound or UpperBound, it can cause nullptr dereference, an...

7.5CVSS3.8AI score0.00075EPSS

Exploits0References1

CNVD•added 2022/09/20 12:0 a.m.•16 views

Google TensorFlow code issue vulnerability (CNVD-2023-10610)

Google TensorFlow is an end-to-end open source platform for machine learning from Google USA. Google TensorFlow suffers from a code issue vulnerability that stems from when "mlir::tfg::GraphDefImporter:: ConvertNodeDef" attempts to convert a nodedef with an unoperated name, it crashes, and an...

7.5CVSS3.8AI score0.00222EPSS

Exploits0References1

CNVD•added 2022/09/13 12:0 a.m.•16 views

vim code issue vulnerability (CNVD-2022-68079)

Vim is a cross-platform text editor. vim versions prior to 9.0.0404 have a code issue vulnerability that stems from null pointer references. No detailed vulnerability details are currently available...

6.1CVSS3.7AI score0.0003EPSS

CNNVD•added 2022/09/13 12:0 a.m.•1 views

LIEF 代码问题漏洞

LIEF is a cross-platform library from the individual developer Romain Thomas. It is used to parse, modify and abstract Elf, Pe and MachO formats. LIEF suffers from a code issue vulnerability that stems from a segmentation violation found in the LIEF::MachO::SegmentCommand::fileoffset function in...

5.5CVSS5.8AI score0.00049EPSS

Exploits1References2

CNNVD•added 2022/09/07 12:0 a.m.•2 views

Online Driving School 代码问题漏洞

Online Driving School is an online driving school program by the individual developers at Codeprojects. Online Driving School suffers from a code issue vulnerability that originates in /registration.php, which allows an attacker to upload arbitrary files...

9.8CVSS8.6AI score0.00376EPSS

Exploits1References3

7.8CVSS7.3AI score0.00285EPSS

AVEVA Edge 代码问题漏洞

AVEVA Edge is a highly scalable and flexible HMI/SCADA software from the UK-based company AvEVA Software AVEVA. A code issue vulnerability exists in AVEVA Edge version 2020 SP2 Patch 0 4201.2111.1802.0000. An attacker could exploit this vulnerability to force a victim to visit a malicious page or...

7.8CVSS7.3AI score0.00285EPSS

AVEVA Edge 代码问题漏洞

CNNVD•added 2022/09/06 12:0 a.m.•1 views

389-ds-base 代码问题漏洞

389-ds-base is a highly available, fully featured, reliable and secure LDAP server implementation. It handles many of the largest LDAP deployments in the world. A code issue vulnerability exists in 389-ds-base. An attacker exploiting this vulnerability could cause a fatal error in 389-ds via a...

6.5CVSS6.9AI score0.00355EPSS

Exploits1References22

CNNVD•added 2022/09/06 12:0 a.m.•3 views

AVEVA Edge 代码问题漏洞

7.1CVSS6.2AI score0.02599EPSS

7.8CVSS7.3AI score0.00285EPSS

AVEVA Edge 代码问题漏洞

7.8CVSS7.3AI score0.0401EPSS

AVEVA Edge 代码问题漏洞

CNVD•added 2022/09/02 12:0 a.m.•34 views

Apache OFBiz Code Issue Vulnerability (CNVD-2023-03920)

Apache OFBiz is an enterprise resource planning ERP system from the Apache Foundation. A code issue vulnerability exists in Apache OFBiz Solr plugin 18.12.05 and earlier, which stems from the default configuration of automatically issuing RMI requests on port 1099 on localhost, which can be...

9.8CVSS1.8AI score0.20826EPSS

Exploits0References1

CNVD•added 2022/08/30 12:0 a.m.•24 views

vim code issue vulnerability (CNVD-2022-68089)

Vim is a cross-platform text editor. vim 9.0.0259 previous versions have a code issue vulnerability that stems from NULL pointer dereferencing. No detailed vulnerability details are currently available...

6.3CVSS3.6AI score0.00066EPSS

CNNVD•added 2022/08/30 12:0 a.m.•2 views

XPDF 输入验证错误漏洞

XPDF is an open source PDF reader from FOO Labs. The product supports decoding files in LZW compressed format and reading encrypted PDF files. A security vulnerability exists in XPDF versions prior to 4.04. The vulnerability stems from the DCT JPEG decoder incorrectly allowing the "interleaved"...

7.8CVSS6.6AI score0.00099EPSS

Exploits0References6

RedHat Linux•added 2022/08/22 9:5 a.m.•2 views

podman: Security regression of CVE-2020-14370 due to source code management issue

The version of podman as released for Red Hat Enterprise Linux 7 Extras via RHSA-2022:2190 advisory included an incorrect version of podman missing the fix for CVE-2020-14370, which was previously fixed via RHSA-2020:5056. This issue could possibly allow an attacker to gain access to sensitive...

5.3CVSS7.1AI score0.00177EPSS

Exploits0References4

CNNVD•added 2022/08/20 12:0 a.m.•1 views

Simple and Nice Shopping Cart Script 代码问题漏洞

Simple and Nice Shopping Cart Script is simple and nice PHP shopping cart script. Simple and Nice Shopping Cart Script suffers from a code issue vulnerability that stems from an unknown function in /mkshop/Men/profile.php, which can be exploited by an attacker to upload arbitrary files...

8.8CVSS8.2AI score0.00421EPSS

Exploits1References3

CNVD•added 2022/08/19 12:0 a.m.•10 views

OTFCC code issue vulnerability

OTFCC is Caryll open source a C library and utilities. It is used to parse and write OpenType font files. OTFCC version 0.10.4 contains a code issue vulnerability that stems from a lack of proper validation of user-supplied data in the /x8664-linux-gnu/libc.so.6 0xbb384 file, which can be exploit...

9.8CVSS4.3AI score0.00437EPSS