CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13663 matches found

Positive Technologies•added 2025/11/12 12:0 a.m.•3 views

PT-2025-47612

Name of the Vulnerable Software and Affected Versions cups-filters versions 2.0.1 and prior Description cups-filters, which provides backends, filters, and other software for the cups printing service, contains a heap-buffer-overflow vulnerability in the rastertopclx filter. Processing maliciousl...

5.5CVSS7.4AI score0.00412EPSS

Exploits2References58

Positive Technologies•added 2025/11/12 12:0 a.m.•4 views

PT-2025-46689

Name of the Vulnerable Software and Affected Versions airpig2011 IEC104 versions through Commit be6d841 2019-07-08 Description A heap-use-after-free issue exists in the software. During multi-threaded client execution, the Iec10x Scheduled function can access already freed memory, potentially...

4CVSS6.6AI score0.0017EPSS

Exploits1References4

Positive Technologies•added 2025/11/12 12:0 a.m.•7 views

PT-2025-46700

Name of the Vulnerable Software and Affected Versions Tuleap Community Edition versions prior to 16.13.99.1761813675 Tuleap Enterprise Edition versions prior to 16.13-5 and 16.12-8 Description Tuleap lacks cross-site request forgery CSRF protection in the management of Subversion SVN commit rules...

4.6CVSS6.4AI score0.00118EPSS

Exploits0References6

CNNVD•added 2025/11/12 12:0 a.m.•3 views

airpig2011 IEC104 安全漏洞

airpig2011 IEC104 is a protocol used for power system automation communication by the individual developer dj chen in China. A security vulnerability exists in airpig2011 IEC104 Commit be6d841 and prior versions, which originates from a post-release reuse during multi-threaded execution that coul...

4CVSS6.8AI score0.0017EPSS

Exploits1References3

CNNVD•added 2025/11/12 12:0 a.m.•1 views

IEC104 安全漏洞

IEC104 is an international standard of the International Electrotechnical Commission IEC standards organization widely used in the electric power, urban rail transit, and other industries. A security vulnerability exists in IEC104 Commit be6d841 and prior versions, which stems from the possibilit...

7.5CVSS6.6AI score0.00303EPSS

Exploits1References3

Positive Technologies•added 2025/11/12 12:0 a.m.•6 views

PT-2025-46724

Name of the Vulnerable Software and Affected Versions Tuleap Community Edition versions prior to 16.13.99.1762267347 Tuleap Enterprise Edition versions prior to 17.01 Tuleap Enterprise Edition versions prior to 16.13-6 Tuleap Enterprise Edition versions prior to 16.12-9 Description Tuleap is an...

4.6CVSS6.4AI score0.00118EPSS

Exploits0References7

Tenable Nessus•added 2025/11/12 12:0 a.m.•2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990836)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990836 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add null check for toppipetoprogram in commitplanesforstream This commit address...

5.5CVSS6.3AI score0.00248EPSS

Exploits0References3

Tenable Nessus•added 2025/11/12 12:0 a.m.•2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990845)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990845 advisory. In the Linux kernel, the following vulnerability has been resolved: ext4: fix idatasem unlock order in ext4indmigrate Fuzzing reports a possible deadlock in...

4.7CVSS6.2AI score0.00184EPSS

Exploits0References3

RedHat Linux•added 2025/11/11 9:13 a.m.•2 views

kernel: perf/x86/intel: Fix crash in icl_update_topdown_event()

In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel: Fix crash in iclupdatetopdownevent The perffuzzer found a hard-lockup crash on a RaptorLake machine: Oops: general protection fault, maybe for address 0xffff89aeceab400: 0000 CPU: 23 UID: 0 PID: 0 Comm: swapper/23...

5.5CVSS5.7AI score0.00155EPSS

Exploits0References5

SUSE CVE•added 2025/11/11 12:23 a.m.•1 views

SUSE CVE-2025-59777

NULL pointer dereference vulnerability exists in GNU libmicrohttpd v1.0.2 and earlier. The vulnerability was fixed in commit ff13abc on the master branch of the libmicrohttpd Git repository, after the v1.0.2 tag. A specially crafted packet sent by an attacker could cause a denial-of-service DoS...

7.5CVSS6.8AI score0.00374EPSS

Exploits0References8

SUSE CVE•added 2025/11/11 12:23 a.m.•1 views

SUSE CVE-2025-62689

7.5CVSS6.8AI score0.00374EPSS

Exploits0References8

EUVD•added 2025/11/10 9:30 p.m.•4 views

EUVD-2025-50782

ktg-mes before commit a484f96 2025-07-03 has a fastjson deserialization vulnerability. This is because it uses a vulnerable version of fastjson and deserializes unsafe input data...

6.5AI score0.00243EPSS

Exploits1References3

NVD•added 2025/11/10 9:15 p.m.•4 views

CVE-2025-63617

ktg-mes before commit a484f96 2025-07-03 has a fastjson deserialization vulnerability. This is because it uses a vulnerable version of fastjson and deserializes unsafe input data...

6.5CVSS0.00243EPSS

Exploits1References2

OSV•added 2025/11/10 9:15 p.m.•3 views

CVE-2025-63617

ktg-mes before commit a484f96 2025-07-03 has a fastjson deserialization vulnerability. This is because it uses a vulnerable version of fastjson and deserializes unsafe input data...

6.5CVSS5.8AI score0.00243EPSS

Exploits1References2

NVD•added 2025/11/10 5:15 a.m.•2 views

CVE-2025-62689

8.7CVSS0.00374EPSS

Exploits0References3

OSV•added 2025/11/10 5:15 a.m.•6 views

AZL-70049 CVE-2025-62689 affecting package libmicrohttpd for versions less than 0.9.77-4

8.7CVSS5.8AI score0.00374EPSS

Exploits0References1

OSV•added 2025/11/10 5:15 a.m.•2 views

CVE-2025-62689