CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

114 matches found

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux - уязвимость в mtr

mtr through 0.95, in certain privileged contexts, mishandles execution of a program specified by the MTRPACKET environment variable. NOTE: mtr on macOS may often have Sudo rules, as an indirect consequence of Homebrew not installing setuid binaries...

7.8CVSS5.7AI score0.00054EPSS

Exploits0References2

Packet Storm News•added 2026/04/07 12:0 a.m.•1 views

SoK: Understanding Anti-Forensics Concepts and Research Practices across Forensic Subdomains

Anti-forensics includes a growing set of techniques designed to obstruct forensic analysis. While cybercriminals increasingly rely on these methods, they also help researchers identify and remedy weaknesses in forensic tools, advancing the overall robustness of digital forensics. Despite repeated...

5.9AI score

Exploits0

OSV•added 2026/03/24 7:16 p.m.•3 views

UBUNTU-CVE-2026-23919

For performance reasons Zabbix Server/Proxy reuses JavaScript Duktape contexts used in script items, JavaScript reprocessing, Webhooks. This can lead to confidentiality loss where a regular non-super Zabbix administrator leaks data for hosts they do not have access to. A fix has been released tha...

7.1CVSS5.8AI score0.0003EPSS

Exploits0References3

Packet Storm News•added 2025/12/19 12:0 a.m.•1 views

CISA: Safe Handling Considerations for Downed Unmanned Aircraft Systems

Safe Handling Considerations for Downed Unmanned Aircraft Systems provides information on how to prepare for and respond to downed unmanned aircraft systems UAS that may pose a safety or security concern...

7AI score

Exploits0

Packet Storm News•added 2025/11/20 12:0 a.m.•1 views

CISA: Safe Handling Considerations for Downed Unmanned Aircraft Systems

7AI score

Exploits0

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-15550

Malicious code in bioql PyPI...

4.8CVSS6.6AI score0.00573EPSS

Exploits0References2

Packet Storm News•added 2025/08/24 12:0 a.m.•2 views

Cyber Security Educational Games for Children: a Systematic Literature Review

Educational games have been widely used to teach children about cyber security. This systematic literature review reveals evidence of positive learning outcomes, after analysing 91 such games reported in 68 papers published between 2010 and 2024. However, critical gaps have also been identified...

7AI score

Exploits0

Packet Storm News•added 2025/07/25 12:0 a.m.•3 views

Transcript Franking for Encrypted Messaging

Message franking is an indispensable abuse mitigation tool for end-to-end encrypted E2EE messaging platforms. With it, users who receive harmful content can securely report that content to platform moderators. However, while real-world deployments of reporting require the disclosure of multiple...

6.7AI score

Exploits0

Packet Storm News•added 2025/07/17 12:0 a.m.•1 views

Manipulation Attacks by Misaligned AI: Risk Analysis and Safety Case Framework

Frontier AI systems are rapidly advancing in their capabilities to persuade, deceive, and influence human behaviour, with current models already demonstrating human-level persuasion and strategic deception in specific contexts. Humans are often the weakest link in cybersecurity systems, and a...

7AI score

Exploits0

Wiz blog•added 2025/06/11 12:0 p.m.•4 views

Building a Security Operations Center for the Cloud: Key Considerations for People, Processes, and Technology

As cloud adoption accelerates, security operations teams must rethink their people, processes, and technology to enable effective Cloud Detection and Response CDR and secure their evolving cloud attack surface...

7.3AI score

Exploits0

Packet Storm News•added 2025/05/30 12:0 a.m.•3 views

Adaptive Privacy-Preserving SSD

Data remanence in NAND flash complicates complete deletion on IoT SSDs. We design an adaptive architecture offering four privacy levels PL0-PL3 that select among address, data, and parity deletion techniques. Quantitative analysis balances efficacy, latency, endurance, and cost. Machine-learning...

7AI score

Exploits0

Packet Storm News•added 2025/05/15 12:0 a.m.•2 views

Analysing Safety Risks in LLMs Fine-Tuned with Pseudo-Malicious Cyber Security Data

The integration of large language models LLMs into cyber security applications presents significant opportunities, such as enhancing threat analysis and malware detection, but can also introduce critical risks and safety concerns, including personal data leakage and automated generation of new...

7.5AI score

Exploits0

OpenVAS•added 2025/05/07 12:0 a.m.•3 views

Configure Proper Association Policies for INPUT and OUTPUT of iptables

Although you can configure protocols, IP addresses, and port numbers to add policies for packets entering and leaving a server to the INPUT and OUTPUT chains, it is difficult to configure suitable policies using the sport parameter due to complicated situations. For example, a client accesses the...

6.9AI score

Exploits0References2

OSV•added 2025/05/01 1:15 p.m.•1 views

DEBIAN-CVE-2025-37756

In the Linux kernel, the following vulnerability has been resolved: net: tls: explicitly disallow disconnect syzbot discovered that it can disconnect a TLS socket and then run into all sort of unexpected corner cases. I have a vague recollection of Eric pointing this out to us a long time ago...

5.5CVSS5.7AI score0.00024EPSS

Exploits0References1

Packet Storm News•added 2025/05/01 12:0 a.m.•2 views

Attack and Defense Techniques in Large Language Models: a Survey and New Perspectives

Large Language Models LLMs have become central to numerous natural language processing tasks, but their vulnerabilities present significant security and ethical challenges. This systematic survey explores the evolving landscape of attack and defense techniques in LLMs. We classify attacks into...

7.6AI score

Exploits0

Packet Storm News•added 2025/04/29 12:0 a.m.•2 views

CISA: Dams Sector Waterside Barriers Guide

This guide was developed to assist dam owners and operators in understanding the possible need for waterside barriers as part of their overall security plan. It provides them and security personnel with a cursory level of information on barriers and their use, maintenance considerations, and...

7AI score

Exploits0

Nvidia•added 2025/02/11 12:0 a.m.•9 views

Security Bulletin: NVIDIA Triton Inference Server - February 2025

NVIDIA has released a software update for NVIDIA® Triton Inference Server. To protect your system, download and install the latest release from the Triton Inference Server Releases page on GitHub and view the Secure Deployment Considerations Guide. Go to NVIDIA Product Security...

6.5CVSS5.1AI score0.00072EPSS

Exploits0Affected Software1

Packet Storm News•added 2025/01/14 12:0 a.m.•2 views

CISA: Secure by Demand: Priority Considerations

This is CISA's Secure by Demand: Priority Considerations for Operational Technology Owners and Operators when Selecting Digital Products. This guide is intended to help owners and operators procure Operational Technology OT products, particularly industrial automation and control system products,...

7AI score

Exploits0

Packet Storm•added 2025/01/12 12:0 a.m.•123 views

CISA: Chemical Facility Anti-Terrorism Standards (CFATS) Case Study: Strategic and Tactical CFATS Considerations for a Multi-Tenant Dow, DuPont, and Corteva Facility

System About Files News Vote Help | Services API Advertise Contact | Account Join Login ---|---|---...

7.4AI score

Exploits0