CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

Packet Storm News•added 2026/04/20 12:0 a.m.•1 views

BinDiff 8

BinDiff is an open-source comparison tool for binary files to quickly find differences and similarities in disassembled code...

5.7AI score

Exploits0

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-25249

Malicious code in bioql PyPI...

2.5CVSS3.9AI score0.00044EPSS

Exploits1References9

CVE•added 2025/08/19 8:2 p.m.•50 views

CVE-2025-9165

LibTIFF 4.7.0 contains a local, memory-leak flaw in tiffcmp.c (InitCCITTFax3 via _TIFFmallocExt/_TIFFCheckRealloc/TIFFHashSetNew). The vulnerability is described as high complexity with published exploitability, though there is ongoing doubt about the issue’s existence. A patch is available (ed14...

2.5CVSS3.6AI score0.00044EPSS

Exploits1References10Affected Software1

OSV•added 2022/03/30 5:15 p.m.•9 views

CVE-2021-44312

An issue was discovered in Firmware Analysis and Comparison Tool v3.2. Logged in administrators could be targeted by a CSRF attack through visiting a crafted web page...

8.8CVSS6.8AI score0.00141EPSS

Exploits1References1

NVD•added 2022/03/30 5:15 p.m.•8 views

CVE-2021-44312

An issue was discovered in Firmware Analysis and Comparison Tool v3.2. Logged in administrators could be targeted by a CSRF attack through visiting a crafted web page...

8.8CVSS0.00141EPSS

Exploits1References1

CVE•added 2022/03/30 4:39 p.m.•90 views

CVE-2021-44312

The CVE-2021-44312 entry affects Firmware Analysis and Comparison Tool (FACT) version 3.2. A cross-site request forgery (CSRF) vulnerability exists in the web application, stemming from insufficient validation that requests originate from trusted users. Consequence: logged-in administrators could...

8.8CVSS8.5AI score0.00141EPSS

Exploits1References1Affected Software1

CNVD•added 2020/04/03 12:0 a.m.•2 views

Firmware Analysis and Comparison Tool Cross-Site Scripting Vulnerability

Firmware Analysis and Comparison Tool FACT is a firmware analysis and comparison tool. A cross-site scripting vulnerability exists in Firmware Analysis and Comparison Tool FACT version 3. The vulnerability stems from a lack of proper validation of client-side data by the WEB application. An...

6.1CVSS6.4AI score0.00249EPSS

Exploits1References1

Prion•added 2020/04/02 11:15 p.m.•10 views

Cross site scripting

Firmware Analysis and Comparison Tool FACT 3 has Stored XSS when updating analysis details via a localhost web request, as demonstrated by mishandling of the tags and version fields in helperFunctions/mongotaskconversion.py...

4.3CVSS5.9AI score0.00249EPSS

Exploits1References2Affected Software1

Cvelist•added 2020/04/02 10:43 p.m.•9 views

CVE-2020-11499

3.3CVSS6AI score0.00249EPSS

Exploits1References2

CVE•added 2020/04/02 10:43 p.m.•51 views

CVE-2020-11499

FACT 3 from Firmware Analysis and Comparison Tool shows a Stored XSS vulnerability when updating analysis details via a localhost web request, caused by mishandling of the tags and version fields in helperFunctions/mongo_task_conversion.py. This is corroborated by multiple CVE references (NVD, Re...

6.1CVSS5.9AI score0.00249EPSS

Exploits1References2Affected Software1

Debian•added 2016/05/01 12:4 p.m.•27 views

[SECURITY] [DSA 3562-1] tardiff security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3562-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 01, 2016 https://www.debian.org/security/faq -...

10CVSS8.1AI score0.03116EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by