CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

84 matches found

SUSE CVE•added 2026/05/26 2:4 a.m.•7 views

SUSE CVE-2018-25356

SIPp 3.6 and earlier contains a local buffer overflow vulnerability in command-line argument handling that allows local attackers to crash the application or execute arbitrary code. Attackers can trigger the vulnerability by supplying oversized input to the -3pcc, -i, or -logfile parameters,...

8.6CVSS6.2AI score0.00018EPSS

Exploits0References3

NVD•added 2026/05/23 7:16 p.m.•6 views

CVE-2018-25356

8.6CVSS0.00018EPSS

Exploits0References4

RedhatCVE•added 2026/05/14 7:58 p.m.•5 views

CVE-2026-31156

A path injection vulnerability exists in OpenPLC v3 2c82b0e79c53f8c1f1458eee15fec173400d6e1a as the binary program compiled from gluegenerator.cpp does not perform any validation on the file path parameters passed via the command line. The user-controlled input parameters are directly passed to t...

6.5CVSS5.9AI score0.00043EPSS

Exploits2References1

Positive Technologies•added 2026/05/13 12:0 a.m.•6 views

PT-2026-40634

Name of the Vulnerable Software and Affected Versions OpenPLC v3 2c82b0e79c53f8c1f1458eee15fec173400d6e1a Description A path injection issue exists in the binary program compiled from glue generator.cpp. The software fails to validate file path parameters passed via the command line, specifically...

6.8CVSS5.9AI score0.00043EPSS

Exploits2References6

Vulnrichment•added 2026/05/13 12:0 a.m.•2 views

CVE-2026-31156

5.9AI score0.00043EPSS

Exploits2References2

CNNVD•added 2026/05/13 12:0 a.m.•4 views

OpenPLC 安全漏洞

OpenPLC is an open-source, programmable logic controller developed by Thiago Alves. It provides low-cost industrial solutions for automation and research purposes. OpenPLC has a security vulnerability, which stems from the binary program compiled from gluegenerator.cpp not verifying the file path...

6.5CVSS5.9AI score0.00043EPSS

Exploits2References2

EUVD•added 2026/04/11 3:30 a.m.•2 views

EUVD-2026-21653

NoMachine External Control of File Path Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of NoMachine. An attacker must first obtain the ability to execute low-privileged code on the target system in order to...

7.8CVSS7.5AI score0.00019EPSS

Exploits0References2

Vulnrichment•added 2026/04/11 12:14 a.m.•1 views

CVE-2026-5054 NoMachine External Control of File Path Local Privilege Escalation Vulnerability

7.8CVSS6.1AI score0.00019EPSS

Exploits0References1

CNNVD•added 2026/04/11 12:0 a.m.•2 views

NoMachine 安全漏洞

NoMachine is a remote desktop access tool developed by NoMachine Company in Luxembourg. NoMachine has a security vulnerability, which stems from improper handling of command-line parameters, potentially leading to an increase in local privileges...

7.8CVSS7.2AI score0.00019EPSS

Exploits0References1

CNNVD•added 2026/02/25 12:0 a.m.•3 views

Harvester 安全漏洞

Harvester is a modern, open, interoperable, Kubernetes-based hyper-converged infrastructure HCI solution developed by harvesterhci. Harvester has a security vulnerability, which stems from the scanner process accepting registry and controller credentials as command-line parameters, potentially...

3.8CVSS5.8AI score0.00016EPSS

Exploits0References2

RedhatCVE•added 2026/01/07 9:38 a.m.•6 views

CVE-1999-0817

Lynx WWW client allows a remote attacker to specify command-line parameters which Lynx uses when calling external programs to handle certain protocols, e.g. telnet...

10CVSS7AI score0.01271EPSS

Exploits0References1

CNNVD•added 2025/11/30 12:0 a.m.•1 views

HexStrike AI MCP Agents 安全漏洞

HexStrike AI MCP Agents is an MCP server by the individual developer Muhammad Osama. HexStrike AI MCP Agents suffers from a security vulnerability that stems from not cleaning up command line parameters, which could lead to the execution of arbitrary code...

9.1CVSS6.8AI score0.00048EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2007-2049

Malware in sbrugna...

7.5CVSS6.2AI score0.02562EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2016-4057

Malware in sbrugna...

7CVSS6.8AI score0.00039EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-1999-0798

Malware in sbrugna...

10CVSS6.4AI score0.01271EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2007-2347

Malware in sbrugna...

10CVSS6.4AI score0.03447EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2012-4026

Malware in sbrugna...

6.8CVSS6.4AI score0.00127EPSS

Exploits0References4

Microsoft CVE•added 2025/09/04 2:34 a.m.•1 views

Lynx WWW client allows a remote attacker to specify command-line parameters which Lynx uses when calling external programs to handle certain protocols, e.g. telnet.

...

10CVSS7AI score0.01271EPSS

Exploits0

RedhatCVE•added 2025/05/22 8:7 p.m.•2 views

CVE-2021-37778

There is a buffer overflow in gps-sdr-sim v1.0 when parsing long command line parameters, which can lead to DoS or code execution...

9.8CVSS7.7AI score0.01278EPSS

Exploits1References1