CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

883 matches found

Vulnrichment•added 2026/05/19 12:0 a.m.•1 views

CVE-2025-61081

In BYD Atto3, an attacker can obtain an authentication key through Brute Force attack, which is permanently available. The authentication key enables flash to the Electronic Parking Break EPB and Supplemental Restoration System SRS related ECUs...

5.8AI score0.00029EPSS

Exploits0References2

Positive Technologies•added 2026/05/01 12:0 a.m.•1 views

PT-2026-36519

Name of the Vulnerable Software and Affected Versions agl-service-can-low-level affected versions not specified Description A stack buffer overflow exists in the uds-c library. The send diagnostic request function in uds.c allocates a 6-byte stack buffer but copies up to 7 bytes via memcpy at an...

7.5CVSS6.3AI score0.00057EPSS

Exploits0References5

ATTACKERKB•added 2026/02/15 10:45 a.m.•3 views

CVE-2025-32059

The specific flaw exists within the Bluetooth stack developed by Alps Alpine of the Infotainment ECU manufactured by Bosch. The issue results from the lack of proper boundary validation of user-supplied data, which can result in a stack-based buffer overflow when receiving a specific packet on th...

8.8CVSS6.9AI score0.00221EPSS

Exploits0References4Affected Software1

RedhatCVE•added 2026/01/22 8:22 p.m.•4 views

CVE-2025-68139

EVerest is an EV charging software stack. In all versions up to and including 2025.12.1, the default value for terminateconnectiononfailedresponse is False, which leaves the responsibility for session and connection termination to the EV. In this configuration, any errors encountered by the modul...

4.3CVSS5.2AI score0.00033EPSS

Exploits0References1

NVD•added 2026/01/21 8:16 p.m.•4 views

CVE-2025-68139

4.3CVSS0.00033EPSS

Exploits0References1

Vulnrichment•added 2026/01/21 7:36 p.m.•2 views

CVE-2025-68139 In EVerest, by default, the EV is responsible for closing the connection if the module encounters an error during request processing

4.3CVSS5.2AI score0.00033EPSS

Exploits0References1

EUVD•added 2026/01/21 7:36 p.m.•1 views

EUVD-2025-206320

4.3CVSS5.2AI score0.00033EPSS

Exploits0References1

NVD•added 2025/12/17 7:16 p.m.•1 views

CVE-2025-66953

CSRF vulnerability in narda miteq Uplink Power Contril Unit UPC2 v.1.17 allows a remote attacker to execute arbitrary code via the Web-based management interface and specifically the /systemsetup.htm, /setclock.htm, /receiversetup.htm, /cal.htm?..., and /channelsetup.htm endpoints...

8.8CVSS0.00092EPSS

Exploits1References2

Positive Technologies•added 2025/12/09 12:0 a.m.•1 views

PT-2025-49846

A vulnerability has been identified in SIMATIC CN 4100 All versions V4.0.1. The affected devices exposes server information in its responses. This could allow an attacker with network access to gain useful information, increasing the likelihood of targeted attacks...

5.3CVSS6.9AI score0.00039EPSS

Exploits0References1

RedhatCVE•added 2025/11/19 12:11 a.m.•3 views

CVE-2025-36462

Multiple out-of-bounds read and write vulnerabilities exist in the ControlVault WBDI Driver Broadcom Storage Adapter functionality of Dell ControlVault3 prior to 5.15.14.19 and Dell ControlVault3 Plus prior to 6.2.36.47. A specially crafted WinBioControlUnit call can lead to memory corruption. An...

7.3CVSS6.9AI score0.00016EPSS

Exploits0References1

NVD•added 2025/11/17 11:15 p.m.•1 views

CVE-2025-36460

7.3CVSS0.00016EPSS

Exploits0References2

NVD•added 2025/11/17 11:15 p.m.•1 views

CVE-2025-36461

7.3CVSS0.00016EPSS

Exploits0References2

NVD•added 2025/11/17 11:15 p.m.•1 views

CVE-2025-31361

A privilege escalation vulnerability exists in the ControlVault WBDI Driver WBIOUSHADDRECORD functionality of Dell ControlVault3 prior to 5.15.14.19 and Dell ControlVault3 Plus prior to 6.2.36.47. A specially crafted WinBioControlUnit call can lead to privilege escalation. An attacker can issue a...

8.7CVSS0.00017EPSS

Exploits0References3

Cvelist•added 2025/11/17 10:54 p.m.•3 views

CVE-2025-31361 Dell ControlVault3 ControlVault WBDI Driver Broadcom Storage Adapter privilege escalation vulnerability

8.7CVSS0.00017EPSS

Exploits0References2

Vulnrichment•added 2025/11/17 10:51 p.m.•1 views

CVE-2025-36463 Dell ControlVault3 ControlVault WBDI Driver Broadcom Storage Adapter out-of-bounds write vulnerability

7.3CVSS6.4AI score0.00016EPSS

Exploits0References2

CVE•added 2025/11/17 10:51 p.m.•4 views

CVE-2025-36463

Summary: Dell ControlVault3/ControlVault3 Plus are affected by multiple out-of-bounds read/write vulnerabilities in the WBDI Driver Broadcom Storage Adapter. Dell ControlVault3 prior to 5.15.14.19 and ControlVault3 Plus prior to 6.2.36.47 are affected. The issues can be triggered by a crafted Win...

7.3CVSS6.5AI score0.00016EPSS

Exploits0References2

EUVD•added 2025/11/17 10:50 p.m.•1 views

EUVD-2025-197898

7.3CVSS6.4AI score0.00016EPSS

Exploits0References3

CVE•added 2025/11/17 10:50 p.m.•5 views

CVE-2025-36462

Mode C: Affected products are Dell ControlVault3 and Dell ControlVault3 Plus. Dell ControlVault3 is vulnerable to multiple out-of-bounds read/write issues in the Broadcom Storage Adapter (WBDI) driver when handling WinBioControlUnit, enabling memory corruption via local attacker access. Specifica...

7.3CVSS6.5AI score0.00016EPSS

Exploits0References2

EUVD•added 2025/11/17 10:50 p.m.•1 views

EUVD-2025-197891

7.3CVSS6.4AI score0.00016EPSS

Exploits0References3

Cvelist•added 2025/11/17 10:50 p.m.•3 views

CVE-2025-36461 Dell ControlVault3 ControlVault WBDI Driver Broadcom Storage Adapter out-of-bounds write vulnerability

7.3CVSS0.00016EPSS

Exploits0References2

Rows per page