CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15491 matches found

OSV•added 2024/05/06 1:30 a.m.•12 views

MAL-2024-1336 Malicious code in @sxmp/detector (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d54b24acdfdf427c93c47d6102673a06c407f1cd84e0508d1db4c11a98309a61 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score

Exploits0References1

Fedora•added 2024/05/03 1:36 a.m.•35 views

[SECURITY] Fedora 38 Update: grub2-2.06-118.fc38

The GRand Unified Bootloader GRUB is a highly configurable and customizable bootloader with modular architecture. It supports a rich variety of kernel formats, file systems, computer architectures and hardware devices...

7.8CVSS7.3AI score0.00536EPSS

Exploits2

CNNVD•added 2024/05/03 12:0 a.m.•4 views

Ashlar Vellum Cobalt 安全漏洞

Ashlar Vellum Cobalt is a parameter-based computer-aided design and 3D modeling program from Ashlar. A security vulnerability exists in Ashlar Vellum Cobalt that stems from an out-of-bounds read remote code execution vulnerability that could allow a remote attacker to execute arbitrary code on an...

7.8CVSS8.1AI score0.00401EPSS

Exploits0References2

CNNVD•added 2024/05/03 12:0 a.m.•3 views

Ashlar Vellum Graphite 安全漏洞

Ashlar Vellum Graphite is a CAD modeling software from Ashlar, Inc. A security vulnerability exists in Ashlar Vellum Graphite that stems from an out-of-bounds write remote code execution vulnerability that could allow a remote attacker to execute arbitrary code on an affected installation...

8.8CVSS8.2AI score0.00889EPSS

Exploits0References2

OSV•added 2024/05/02 1:4 a.m.•10 views

MAL-2024-1319 Malicious code in clistsy-node (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8d90d0caac26d33fe35373881cd3af29619f9941a50edf7def106fb9a4f2243f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score

Exploits0References1

OSV•added 2024/05/01 7:21 a.m.•10 views

MAL-2024-1320 Malicious code in grylls (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9770d42f49225e25b65dff54acc2ca5a625076784e40ae656541b46fb085ab36 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7.2AI score

Exploits0References1

Wired Threat Level•added 2024/04/30 7:13 p.m.•16 views

China Has a Controversial Plan for Brain-Computer Interfaces

China's brain-computer interface technology is catching up to the US. But it envisions a very different use case: cognitive enhancement...

7.2AI score

Exploits0

OSV•added 2024/04/30 3:3 p.m.•10 views

MAL-2024-1309 Malicious code in npm-package-shirley (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3bfc7deaed3dbd7f0253cf5cbc9c24ef076ab683fe3ca0aa06231c59f1fd36c2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score

Exploits0References3

RedHat Linux•added 2024/04/30 9:57 a.m.•3 views

kernel: scsi: qla2xxx: Check valid rport returned by fc_bsg_to_rport()

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Check valid rport returned by fcbsgtorport Klocwork reported warning of rport maybe NULL and will be dereferenced. rport returned by call to fcbsgtorport could be NULL and dereferenced. Check valid rport returned b...

6AI score0.00177EPSS

Exploits0References5

RedHat Linux•added 2024/04/30 9:57 a.m.•1 views

kernel: scsi: qla2xxx: Array index may go out of bound

A flaw was found in the Linux kernel qla2xxx SCSI driver. A static analysis tool reported that the array vha-hoststr, sized to hold 16 characters, could be indexed with values outside its valid range, potentially leading to out-of-bounds writes. The root cause was the use of sprintf without...

5.7AI score0.00173EPSS

Exploits0References5

OSSF Malicious Packages•added 2024/04/29 8:50 a.m.•2 views

Malicious code in ethutility (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 53d7a11441aebc92f1c803484e58720849e1bf6d75cf48b0df69ecc83fa25453 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score

Exploits0References1

OSV•added 2024/04/29 8:37 a.m.•5 views

MAL-2024-1306 Malicious code in ethers-transactions (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 31d30dcd73ba06a4962c3e3b0419d5864aa9f93f1dcf516e1830eafa40f44ab7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score

Exploits0References3

OSSF Malicious Packages•added 2024/04/29 8:37 a.m.•4 views

Malicious code in ethers-transactions (npm)

6.9AI score

Exploits0References3

OSV•added 2024/04/25 7:33 p.m.•9 views

CLSA-2024-1714073581 Fix of 16 CVEs

Jammy update: v5.15.81 upstream stable release LP: 2003130 // CVE-url: https://ubuntu.com/security/CVE-2023-1382 - tipc: set con sock in tipcconnalloc - tipc: add an extra connget in tipcconnalloc CVE-url: https://ubuntu.com/security/CVE-2023-1998 - x86/speculation: Allow enabling STIBP with lega...

7.8CVSS7AI score0.01377EPSS

Exploits4References1

OSSF Malicious Packages•added 2024/04/24 6:54 a.m.•2 views

Malicious code in pardonbeefconfession (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b81ea718272d3ee7ab9a60a488478726e2315992d23324f21ae8cee54bfc6709 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score

Exploits0References1

OSV•added 2024/04/24 6:54 a.m.•6 views

MAL-2024-1301 Malicious code in pleadappointmentat (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 482e3cbe96ee431fd77b6b838737cf23cf41101c0ae97be63d24d745f5eb2429 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score

Exploits0References1

OSV•added 2024/04/24 6:54 a.m.•6 views

MAL-2024-1302 Malicious code in relinquishsecurecontinuous (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3332015da529900f170cdc913a3c59ca2143f0edc5685ad9b7f57329549cccfa Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score

Exploits0References1

OSV•added 2024/04/24 6:54 a.m.•8 views

MAL-2024-1299 Malicious code in driftdegreerubbish (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 688166bf96a013e712d77d2bf9efa610dcdedc47a7f31e753db95d93a8ba2e0f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score

Exploits0References1

RedHat Linux•added 2024/04/23 4:44 p.m.•69 views

Moderate: Red Hat Security Advisory: grub2 security update

An update for grub2 is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

8.6CVSS7AI score0.00514EPSS

Exploits0References3

Fedora•added 2024/04/23 1:15 a.m.•33 views

[SECURITY] Fedora 40 Update: grub2-2.06-121.fc40

7.8CVSS5.9AI score0.00536EPSS

Exploits2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by