CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

9 matches found

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2025-24038

Malicious code in bioql PyPI...

7.2CVSS6.5AI score0.00459EPSS

Exploits0References7

SUSE CVE•added 2025/08/11 11:22 p.m.•1 views

SUSE CVE-2025-54996

OpenBao exists to provide a software solution to manage, store, and distribute sensitive data including secrets, certificates, and keys. In versions 2.3.1 and below, accounts with access to highly-privileged identity entity systems in root namespaces were able to increase their scope directly to...

7.2CVSS6.7AI score0.00288EPSS

Exploits0References4

NVD•added 2025/08/09 2:15 a.m.•2 views

CVE-2025-54996

OpenBao exists to provide a software solution to manage, store, and distribute sensitive data including secrets, certificates, and keys. In versions 2.3.1 and below, accounts with access to highly-privileged identity entity systems in root namespaces were able to increase their scope directly to...

7.2CVSS0.00288EPSS

Exploits0References3

Snyk•added 2025/08/09 1:46 a.m.•2 views

Improper Privilege Management

Overview Affected versions of this package are vulnerable to Improper Privilege Management due to managing identity entity systems in root namespaces. An attacker can gain unauthorized access to the root policy by escalating privileges through the addition of arbitrary policies containing...

8.6CVSS7.1AI score0.00288EPSS

Exploits0References2

CVE•added 2025/08/09 1:32 a.m.•38 views

CVE-2025-54996

CVE-2025-54996 — OpenBao root namespace privilege escalation. OpenBao versions 2.3.1 and earlier allow accounts with access to highly-privileged identity entity systems in the root namespace to directly elevate scope to the root policy. The identity system can add policies that grant capabilities...

7.2CVSS6.5AI score0.00288EPSS

Exploits0References3Affected Software1

AlpineLinux•added 2025/08/09 1:32 a.m.•12 views

CVE-2025-54996

OpenBao exists to provide a software solution to manage, store, and distribute sensitive data including secrets, certificates, and keys. In versions 2.3.1 and below, accounts with access to highly-privileged identity entity systems in root namespaces were able to increase their scope directly to...

7.2CVSS6.7AI score0.00288EPSS

Vulnrichment•added 2025/08/09 1:32 a.m.•2 views

CVE-2025-54996 OpenBao Root Namespace Operator May Elevate Token Privileges

OpenBao exists to provide a software solution to manage, store, and distribute sensitive data including secrets, certificates, and keys. In versions 2.3.1 and below, accounts with access to highly-privileged identity entity systems in root namespaces were able to increase their scope directly to...

7.2CVSS6.8AI score0.00288EPSS

Exploits0References3

Cvelist•added 2025/08/09 1:32 a.m.•4 views

CVE-2025-54996 OpenBao Root Namespace Operator May Elevate Token Privileges

OpenBao exists to provide a software solution to manage, store, and distribute sensitive data including secrets, certificates, and keys. In versions 2.3.1 and below, accounts with access to highly-privileged identity entity systems in root namespaces were able to increase their scope directly to...

7.2CVSS0.00288EPSS

Exploits0References3

OSV•added 2025/08/09 1:32 a.m.•10 views

CVE-2025-54996 OpenBao Root Namespace Operator May Elevate Token Privileges

OpenBao exists to provide a software solution to manage, store, and distribute sensitive data including secrets, certificates, and keys. In versions 2.3.1 and below, accounts with access to highly-privileged identity entity systems in root namespaces were able to increase their scope directly to...

7.2CVSS6.4AI score0.00288EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by