CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

GithubExploit•added 5 days ago•51 views

Exploit for CVE-2025-9074

CVE-2025-9074: Docker Engine API Unauthenticated RCE Seve...

9.3CVSS6.4AI score0.01192EPSS

Exploits15

Tenable Nessus•added 2026/03/21 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2026-33150

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libfuse is the reference implementation of the Linux FUSE. From version 3.18.0 to before version 3.18.2, a use-after-free vulnerability in the iouring subsystem...

7.8CVSS6.1AI score0.00009EPSS

Exploits0References3

PyPA•added 2025/05/05 5:18 p.m.•9 views

PYSEC-2025-179

OpenCTI is an open cyber threat intelligence CTI platform. Prior to version 6.4.11 any user with the capability manage customizations can execute commands on the underlying infrastructure where OpenCTI is hosted and can access internal server side secrets by misusing the web-hooks. Since the...

9.1CVSS7.5AI score0.00528EPSS

Exploits0References1Affected Software1

Amazon•added 2025/04/01 12:0 a.m.•2 views

Medium: containerd

Issue Overview: containerd is an open-source container runtime. A bug was found in containerd prior to versions 1.6.38, 1.7.27, and 2.0.4 where containers launched with a User set as a UID:GID larger than the maximum 32-bit signed integer can cause an overflow condition where the container...

7.8CVSS7.1AI score0.00064EPSS

Exploits1

CVE•added 2025/03/26 12:0 a.m.•93 views

CVE-2024-55964

CVE-2024-55964 — Appsmith RCE : A misconfigured PostgreSQL instance in the Appsmith image (pre-1.52) enables remote command execution inside the Appsmith Docker container. To exploit, an attacker must access Appsmith, log in, create a datasource, craft a query against that datasource, and execute...

9.8CVSS7.5AI score0.56618EPSS

Exploits2References1Affected Software1

CNNVD•added 2024/03/18 12:0 a.m.•1 views

Buildah security breach

Buildah is a tool that supports building OCI container images. A security vulnerability exists in Buildah 1.35.0 and earlier versions that stems from allowing containers to mount arbitrary locations on the host filesystem into the build container...

8.6CVSS6.8AI score0.00076EPSS

Exploits0References7

OSV•added 2023/04/17 10:15 p.m.•1 views

CVE-2023-28960

An Incorrect Permission Assignment for Critical Resource vulnerability in Juniper Networks Junos OS Evolved allows a local, authenticated low-privileged attacker to copy potentially malicious files into an existing Docker container on the local system. A follow-on administrator could then...

8.2CVSS7.2AI score

Exploits0References1

Positive Technologies•added 2022/05/03 12:0 a.m.•1 views

PT-2022-3129 · Microsoft · Service Fabric

Name of the Vulnerable Software and Affected Versions: Service Fabric versions prior to 9.0.1.0 Docker versions affected versions not specified Description: An Elevation of Privilege vulnerability has been identified within Service Fabric clusters that run Docker containers. Exploitation of this...

6.8CVSS10AI score0.0044EPSS

Exploits0References8

RedHat Linux•added 2020/06/23 7:44 p.m.•1 views

docker: Security regression of CVE-2019-5736 due to inclusion of vulnerable runc

The version of docker as released for Red Hat Enterprise Linux 7 Extras via RHBA-2020:0053 advisory included an incorrect version of runc missing the fix for CVE-2019-5736, which was previously fixed via RHSA-2019:0304. This issue could allow a malicious or compromised container to compromise the...

9.3CVSS6.9AI score0.59178EPSS

Exploits33References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by