CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

752 matches found

Cvelist•added 2025/06/30 10:32 p.m.•8 views

CVE-2025-6931 D-Link DCS-6517/DCS-7517 Root Password Generation httpd generate_pass_from_mac entropy

A vulnerability classified as problematic was found in D-Link DCS-6517 and DCS-7517 up to 2.02.0. Affected by this vulnerability is the function generatepassfrommac of the file /bin/httpd of the component Root Password Generation Handler. The manipulation leads to insufficient entropy. The attack...

6.3CVSS0.00426EPSS

Exploits1References8

Packet Storm News•added 2025/06/29 12:0 a.m.•2 views

Linear Stability Analysis for a System of Singular Amplitude Equations Arising in Biomorphology

We study linear stability of exponential periodic solutions of a system of singular amplitude equations associated with convective Turing bifurcation in the presence of conservation laws, as arises in modern biomorphology models, binary fluids, and elsewhere. Consisting of a complex Ginzburg-Land...

6.9AI score

Exploits0

Packet Storm News•added 2025/06/27 12:0 a.m.•2 views

Reconstructing Intelligible Speech from the Pressure Sensor Data in HVACs

Pressure sensors are an integrated component of modern Heating, Ventilation, and Air Conditioning HVAC systems. As these pressure sensors operate within the 0-10 Pa range, support high sampling frequencies of 0.5-2 kHz, and are often placed close to human proximity, they can be used to eavesdrop ...

6.8AI score

Exploits0

CVE•added 2025/06/09 6:16 p.m.•235 views

CVE-2025-5889

The CVE-2025-5889 entry concerns juliangruber brace-expansion prior to 4.0.1. The vulnerability affects the expand function in index.js, causing inefficient regular expression complexity. It may be exploitable remotely and exploitation is described as difficult but publicly disclosed. Upgrading t...

3.1CVSS3.8AI score0.00092EPSS

Exploits0References6

RedhatCVE•added 2025/06/07 7:19 a.m.•9 views

CVE-2025-5641

A flaw was found in radare2. The rconsisbreaked function in libr/cons/cons.c experiences memory corruption due to improper handling of the -T argument, leading to potential crashes. This flaw allows a local attacker to provide maliciously crafted input, possibly resulting in a denial of service...

2.5CVSS3.5AI score0.00147EPSS

Exploits1References2

NVD•added 2025/06/05 9:15 a.m.•14 views

CVE-2025-5648

A vulnerability was found in Radare2 5.9.9. It has been classified as problematic. Affected is the function rconspalinit in the library /libr/cons/pal.c of the component radiff2. The manipulation of the argument -T leads to memory corruption. An attack has to be approached locally. The complexity...

2.5CVSS0.00147EPSS

Exploits1References7

Vulnrichment•added 2025/06/05 8:31 a.m.•5 views

CVE-2025-5647 Radare2 radiff2 cons.c r_cons_context_break_pop memory corruption

A vulnerability was found in Radare2 5.9.9 and classified as problematic. This issue affects the function rconscontextbreakpop in the library /libr/cons/cons.c of the component radiff2. The manipulation of the argument -T leads to memory corruption. The attack needs to be approached locally. The...

2.5CVSS3.8AI score0.00147EPSS

Exploits1References7

OSV•added 2025/06/05 7:15 a.m.•2 views

CVE-2025-5642

A vulnerability classified as problematic has been found in Radare2 5.9.9. Affected is the function rconspalinit in the library /libr/cons/pal.c of the component radiff2. The manipulation leads to memory corruption. The attack needs to be approached locally. The complexity of an attack is rather...

2CVSS7AI score

Exploits0References7

CVE•added 2025/05/25 1:0 p.m.•51 views

CVE-2025-5149

CVE-2025-5149 affects WCMS up to version 8.3.11, specifically the Login component’s getMemberByUid function in /index.php?articleadmin/getallcon. The vulnerability stems from manipulating the uid parameter, causing improper authentication. Attacks can be launched remotely with high attack complex...

8.1CVSS5.6AI score0.00869EPSS

Exploits1References4Affected Software1

RedhatCVE•added 2025/05/23 11:57 a.m.•4 views

CVE-2025-0732

A vulnerability, which was classified as problematic, has been found in Discord up to 1.0.9177 on Windows. Affected by this issue is some unknown functionality in the library profapi.dll. The manipulation leads to untrusted search path. The attack needs to be approached locally. The complexity of...

4.5CVSS6.7AI score0.00213EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 10:37 a.m.•6 views

CVE-2024-9358

A vulnerability has been found in ThingsBoard up to 3.7.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component HTTP RPC API. The manipulation leads to resource consumption. The attack can be launched remotely. The complexity of an attack is...

6CVSS6.9AI score0.00137EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 10:15 a.m.•4 views

CVE-2024-21022

Vulnerability in the Oracle Complex Maintenance, Repair, and Overhaul product of Oracle E-Business Suite component: LOV. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

6.1CVSS6.3AI score0.0033EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 10:15 a.m.•5 views

CVE-2024-21040

6.1CVSS6.3AI score0.0033EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 10:15 a.m.•3 views

CVE-2024-21017

6.1CVSS6.3AI score0.0033EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 10:15 a.m.•6 views

CVE-2024-21020