CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•5 views

EUVD-2017-8031

Malware in sbrugna...

8.5CVSS8.6AI score0.00274EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-44107

Malicious code in bioql PyPI...

6.5CVSS6.4AI score0.00254EPSS

Exploits0References2

Debian CVE•added 2024/12/27 1:49 p.m.•12 views

CVE-2024-53182

In the Linux kernel, the following vulnerability has been resolved: Revert "block, bfq: merge bfqreleaseprocessref into bfqputcooperator" This reverts commit bc3b1e9e7c50e1de0f573eea3871db61dd4787de. The bic is associated with syncbfqq, and bfqreleaseprocessref cannot be put into bfqputcooperator...

7.8CVSS5.7AI score0.0003EPSS

Exploits0

OSV•added 2024/04/09 12:30 p.m.•18 views

GHSA-RR59-H6RH-V84V Apache Zeppelin SAP: connecting to a malicious SAP server allowed it to perform XXE

Improper Input Validation vulnerability in Apache Zeppelin SAP. This issue affects Apache Zeppelin SAP: from 0.8.0 before 0.11.0. As this project is retired, we do not plan to release a version that fixes this issue. Users are recommended to find an alternative or restrict access to the instance ...

5.3CVSS5.2AI score0.00278EPSS

Exploits0References7

NVD•added 2023/07/13 3:15 a.m.•15 views

CVE-2023-3444

An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.3 before 15.11.10, all versions starting from 16.0 before 16.0.6, all versions starting from 16.1 before 16.1.1, which allows an attacker to merge arbitrary code into protected branches...

6.5CVSS0.00254EPSS

Exploits0References2

OSV•added 2023/07/13 2:8 a.m.•18 views

CVE-2023-3444 Incorrect Authorization in GitLab

5.7CVSS6.7AI score0.00254EPSS

Exploits0References5

CVE•added 2023/07/13 2:8 a.m.•79 views

CVE-2023-3444

GitLab CE/EE contains CVE-2023-3444 affecting: 15.3–15.11.10, 16.0–16.0.6, and 16.1–16.1.1. The issue permits an attacker to merge arbitrary code into protected branches. Root cause and technical details beyond this description are not provided in the connected documents. No remediation or patch ...

6.5CVSS6.1AI score0.00254EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2023/07/13 12:0 a.m.•1 views

PT-2023-24879 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions 15.3 through 15.11.9 GitLab CE/EE versions 16.0 through 16.0.5 GitLab CE/EE versions 16.1 through 16.1.0 Description: An issue has been discovered in GitLab CE/EE, which allows an attacker to merge arbitrary code into...

6.5CVSS7.1AI score0.00254EPSS

Exploits0References10

Prion•added 2017/12/17 5:29 p.m.•16 views

Design/Logic Flaw

GitLab 9.4.x before 9.4.2 does not support LDAP SSL certificate verification, but a verifycertificates LDAP option was mentioned in the 9.4 release announcement. This issue occurred because code was not merged. This is related to use of the omniauth-ldap library and the gitlabomniauth-ldap gem...

4.3CVSS5.6AI score0.00087EPSS

Exploits0References3Affected Software1

Debian CVE•added 2017/12/17 5:0 p.m.•21 views

CVE-2017-17716

Removed by vendor...

5.9CVSS6.3AI score0.00087EPSS

Exploits0

Prion•added 2017/12/05 4:29 p.m.•12 views

Design/Logic Flaw

It is possible to bypass the bitbucket auto-unapprove plugin via minimal brute-force because it is relying on asynchronous events on the back-end. This allows an attacker to merge any code into unsuspecting repositories. This affects all versions of the auto-unapprove plugin, however since the...

6CVSS8.4AI score0.00274EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by