CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

27 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2013-2074

Malware in sbrugna...

3.3CVSS6.4AI score0.00139EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-50874

Malicious code in bioql PyPI...

7.1CVSS7AI score0.00083EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 4:52 a.m.•5 views

CVE-2023-46686

A reliance on untrusted inputs in a security decision could be exploited by a privileged user to configure the Gallagher Command Centre Diagnostics Service to use less secure communication protocols. This issue affects: Gallagher Diagnostics Service prior to v1.3.0 distributed in 9.00.1507MR1...

7.1CVSS6.8AI score0.00083EPSS

Exploits0

OSV•added 2023/12/18 10:15 p.m.•1 views

CVE-2023-46686

7.1CVSS5.8AI score0.00083EPSS

Exploits0References1

NVD•added 2023/12/18 10:15 p.m.•6 views

CVE-2023-46686

7.1CVSS0.00083EPSS

Exploits0References1

Prion•added 2023/12/18 10:15 p.m.•11 views

Design/Logic Flaw

5.5CVSS7.2AI score0.00083EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/12/18 10:1 p.m.•10 views

CVE-2023-46686

5.5CVSS7AI score0.00083EPSS

Exploits0References1

CVE•added 2023/12/18 10:1 p.m.•39 views

CVE-2023-46686

The CVE-2023-46686 affects the Gallagher Command Centre Diagnostics Service (prior to v1.3.0, distributed in 9.00.1507(MR1)). The issue is a reliance on untrusted inputs within a security decision that can allow a privileged user to configure the Diagnostics Service to use less secure communicati...

7.1CVSS6.9AI score0.00083EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/12/18 10:1 p.m.•9 views

CVE-2023-46686

5.5CVSS7.1AI score0.00083EPSS

Exploits0References1

CNNVD•added 2023/12/18 12:0 a.m.•1 views

Gallagher Command Centre security breach

Gallagher Command Centre is a centralized control tool for Gallagher access control systems from Gallagher New Zealand. A security vulnerability exists in Gallagher Command Centre Diagnostics Service prior to version v1.3.0, which stems from a vulnerability that allows a privileged user to...

7.1CVSS6.8AI score0.00083EPSS

Exploits0References3

CNNVD•added 2023/11/21 12:0 a.m.•1 views

Zscaler Client Connector Security Vulnerability

Zscaler Client Connector is an application from zscaler. An application installed on a device that ensures that Internet traffic and access to an organization's internal applications are secure and in compliance with the organization's policies, even when not on the corporate network. A security...

5.4CVSS6.5AI score0.00088EPSS

Exploits0References3

SUSE CVE•added 2023/02/15 5:47 a.m.•1 views

SUSE CVE-2012-2377

JGroups diagnostics service in JBoss Enterprise Portal Platform before 5.2.2, SOA Platform before 5.3.0, and BRMS Platform before 5.3.0, is enabled without authentication when started by the JGroups channel, which allows remote attackers in adjacent networks to read diagnostics information via a...

3.3CVSS5.7AI score0.00989EPSS

Exploits1References3

Veracode•added 2019/05/02 4:46 a.m.•61 views

Information Disclosure

An attack technique against the W3C XML Encryption Standard when block ciphers were used in CBC mode could allow a remote attacker to conduct chosen-ciphertext attacks, leading to the recovery of the entire plain text of a particular cryptogram. CVE-2011-1096 JBoss Web Services leaked side-channe...

5.9CVSS7AI score0.5129EPSS

Exploits7References42Affected Software63

Veracode•added 2019/05/02 4:46 a.m.•44 views

Weak Authentication

5.9CVSS7AI score0.5129EPSS

Exploits7References40Affected Software63

Prion•added 2013/10/28 9:55 p.m.•20 views

Default configuration

The default configuration of Red Hat JBoss Portal before 6.1.0 enables the JGroups diagnostics service with no authentication when a JGroups channel is started, which allows remote attackers to obtain sensitive information diagnostics by accessing the service...

3.3CVSS6.9AI score0.00139EPSS

Exploits0References2Affected Software1

CVE•added 2013/10/28 9:0 p.m.•51 views

CVE-2013-2102

CVE-2013-2102 affects Red Hat JBoss Portal 6.1.0 and earlier: when a JGroups channel starts, the JGroups diagnostics service is enabled by default with no authentication, allowing remote attackers to read diagnostics information. Red Hat released RHSA-2013:1437 with a 6.1.0 update to address this...

3.3CVSS6.6AI score0.00139EPSS

Exploits0References2Affected Software1

RedHat Linux•added 2013/01/24 7:6 p.m.•3 views

JGroups diagnostics service enabled by default with no authentication when a JGroups channel is started

3.3CVSS6.3AI score0.00989EPSS

Exploits1References4

RedHat Linux•added 2013/01/24 6:52 p.m.•2 views

JGroups diagnostics service enabled by default with no authentication when a JGroups channel is started

3.3CVSS6.3AI score0.00989EPSS

Exploits1References4

RedHat Linux•added 2013/01/24 6:44 p.m.•106 views

Important: Red Hat Security Advisory: JBoss Enterprise Web Platform 5.2.0 update

Updated JBoss Enterprise Web Platform 5.2.0 packages that fix multiple security issues, various bugs, and add several enhancements are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability...

10CVSS7.7AI score0.5129EPSS

Exploits7References17

RedHat Linux•added 2013/01/24 6:44 p.m.•2 views

JGroups diagnostics service enabled by default with no authentication when a JGroups channel is started

3.3CVSS6.3AI score0.00989EPSS

Exploits1References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by