CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

849 matches found

Snyk•added 2025/10/24 3:27 p.m.•1 views

Missing Authentication for Critical Function

Overview Affected versions of this package are vulnerable to Missing Authentication for Critical Function via the /api/v1/secret, and /api/v1/service endpoints. An attacker can retrieve sensitive cluster information by sending unauthenticated requests directly to exposed API paths. Workaround Thi...

8.7CVSS6.8AI score0.00555EPSS

Exploits0References3

NVD•added 2025/10/24 3:15 p.m.•3 views

CVE-2025-43994

Dell Storage Center - Dell Storage Manager, versions DSM 20.1.21, contains a Missing Authentication for Critical Function vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure...

8.6CVSS0.00512EPSS

Exploits0References1

EUVD•added 2025/10/24 2:14 p.m.•3 views

EUVD-2025-35844

8.6CVSS6.4AI score0.00512EPSS

Exploits0References2

Positive Technologies•added 2025/10/24 12:0 a.m.•3 views

PT-2025-43622

Name of the Vulnerable Software and Affected Versions Dell Storage Manager versions 20.1.21 Description Dell Storage Manager version 20.1.21 contains a missing authentication mechanism for a critical function. A remote attacker who does not have valid credentials could potentially exploit this...

8.6CVSS6.6AI score0.00512EPSS

Exploits0References8

RedhatCVE•added 2025/10/21 5:30 p.m.•3 views

CVE-2025-9574

Missing Authentication for Critical Function vulnerability in ABB ALS-mini-s4 IP, ABB ALS-mini-s8 IP.This issue affects . All firmware versions with the Serial Number from 2000 to 5166...

10CVSS6.9AI score0.00754EPSS

Exploits0References1

EUVD•added 2025/10/20 6:30 p.m.•3 views

EUVD-2025-35083

Missing Authentication for Critical Function vulnerability in ABB ALS-mini-s4 IP, ABB ALS-mini-s8 IP.This issue affects . All firmware versions with the Serial Number from 2000 to 5166...

9.9CVSS6.4AI score0.00754EPSS

Exploits0References2

NVD•added 2025/10/20 5:15 p.m.•5 views

CVE-2025-9574

Missing Authentication for Critical Function vulnerability in ABB ALS-mini-s4 IP, ABB ALS-mini-s8 IP.This issue affects . All firmware versions with the Serial Number from 2000 to 5166...

10CVSS0.00754EPSS

Exploits0References1

CVE•added 2025/10/20 4:56 p.m.•12 views

CVE-2025-9574

CVE-2025-9574 concerns ABB ALS-mini-s4 IP and ALS-mini-s8 IP devices with a missing authentication for critical functions. Concrete details found in connected documents: the vulnerability affects ABB ALS-mini-s4 and ALS-mini-s8 controllers, with Serial Numbers 2000–5166; impact is described as th...

10CVSS6.5AI score0.00754EPSS

Exploits0References1

RedhatCVE•added 2025/10/10 6:27 p.m.•17 views

CVE-2025-11198

A Missing Authentication for Critical Function vulnerability in Juniper Networks Security Director Policy Enforcer allows an unauthenticated, network-based attacker to replace legitimate vSRX images with malicious ones. If a trusted user initiates deployment, Security Director Policy Enforcer wil...

8.5CVSS6.8AI score0.00261EPSS

Exploits0References1

OSV•added 2025/10/09 4:15 p.m.•5 views

CVE-2025-11198

8.5CVSS5.8AI score0.00261EPSS

Exploits0References1

CVE•added 2025/10/09 3:39 p.m.•44 views

CVE-2025-11198

CVE-2025-11198 describes a Missing Authentication for Critical Function in Juniper Networks Security Director Policy Enforcer. An unauthenticated, network-based attacker can cause deployment of malicious vSRX images by replacing legitimate images when a trusted user initiates deployment; the atta...

8.5CVSS6.4AI score0.00261EPSS

Exploits0References1Affected Software1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-23363

Malware in sbrugna...

9.6CVSS9.1AI score0.00664EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2021-23364

Malware in sbrugna...

8.1CVSS8AI score0.00451EPSS

Exploits0References4