CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

37 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2022-0231

Malicious code in bioql PyPI...

5.3CVSS5.4AI score0.00232EPSS

Exploits1References6

RedhatCVE•added 2025/05/22 11:39 p.m.•4 views

CVE-2022-40468

Potential leak of left-over heap data if custom error page templates containing special non-standard variables are used. Tinyproxy commit 84f203f and earlier use uninitialized buffers in processrequest function...

7.5CVSS6.8AI score0.00178EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 10:51 p.m.•7 views

CVE-2022-3175

Missing Custom Error Page in GitHub repository ikus060/rdiffweb prior to 2.4.2...

5.3CVSS6.8AI score0.00232EPSS

Exploits1References1

Citrix•added 2024/07/12 12:0 a.m.•8 views

Storefront: Citrix Storeweb URL should have custom error page

Redirect StoreFront users to a custom error page, if a page is inaccessible for some reason. Example : If a user tries to access "StoreURL/ Script", it will trigger an unhandled exception and User will get a generic page which suggests steps to add a custom error page. This may be considered a ri...

7.1AI score

Exploits0

Tenable Nessus•added 2024/05/23 12:0 a.m.•41 views

Apache Tomcat 8.0.0.RC1 < 8.0.44

The version of Tomcat installed on the remote host is prior to 8.0.44. It is, therefore, affected by a vulnerability as referenced in the fixedinapachetomcat8.0.44security-8 advisory. - The error page mechanism of the Java Servlet Specification requires that, when an error occurs and an error pag...

7.5CVSS7.9AI score0.10802EPSS

Exploits1References4

OpenVAS•added 2024/03/11 12:0 a.m.•57 views

Tinyproxy <= 1.11.1 Information Disclosure Vulnerability

Tinyproxy is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:banu:tinyproxy"; i...

7.5CVSS7.5AI score0.00178EPSS

Exploits1References5

CNNVD•added 2023/09/13 12:0 a.m.•4 views

Fortinet FortiPresence Security Vulnerability

Fortinet FortiPresence is a comprehensive data analytics solution from Fortinet, Inc. A security vulnerability exists in Fortinet FortiPresence that stems from the lack of a custom error page, which could allow an attacker to obtain sensitive information by navigating to a specific HTTP path...

5.3CVSS6.3AI score0.00357EPSS

Exploits0References3

Tenable Nessus•added 2023/05/21 12:0 a.m.•29 views

GLSA-202305-27 : Tinyproxy: Memory Disclosure

The remote host is affected by the vulnerability described in GLSA-202305-27 Tinyproxy: Memory Disclosure - Potential leak of left-over heap data if custom error page templates containing special non-standard variables are used. Tinyproxy commit 84f203f and earlier use uninitialized buffers in...

7.5CVSS6.1AI score0.00178EPSS

Exploits1References3

SUSE CVE•added 2023/02/15 6:17 a.m.•2 views

SUSE CVE-2005-3357

modssl in Apache 2.0 up to 2.0.55, when configured with an SSL vhost with access control and a custom error 400 error page, allows remote attackers to cause a denial of service application crash via a non-SSL request to an SSL port, which triggers a NULL pointer dereference...

5.4CVSS6.8AI score0.43464EPSS

Exploits1References7

OSV•added 2022/09/19 5:15 p.m.•47 views

CVE-2022-40468

7.5CVSS3.2AI score

Exploits0References6

Prion•added 2022/09/19 5:15 p.m.•21 views

Heap overflow

5CVSS7.5AI score0.00178EPSS

Exploits1References5Affected Software1

UbuntuCve•added 2022/09/19 5:15 p.m.•51 views

CVE-2022-40468

7.5CVSS6.4AI score0.00178EPSS

Exploits1References7

Debian CVE•added 2022/09/19 12:0 a.m.•39 views

CVE-2022-40468

7.5CVSS6.1AI score0.00178EPSS

Exploits1

CVE•added 2022/09/19 12:0 a.m.•79 views

CVE-2022-40468

CVE-2022-40468 affects tinyproxy. The issue is a potential leak of left-over heap data when using custom error page templates with non-standard variables, caused by uninitialized buffers in process_request() and related header handling. Multiple advisories confirm risk across distros, including D...

7.5CVSS7.4AI score0.00178EPSS

Exploits1References6Affected Software1