CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

378 matches found

Packet Storm News•added 2025/11/26 12:0 a.m.•3 views

Exploring Hidden Geographic Disparities in Android Apps

While mobile app evolution has been widely studied, geographical variation in app behavior remains largely unexplored. This paper presents a large-scale study of location-based Android app differentiation, uncovering two important and underexamined phenomena with security and fairness implication...

6.9AI score

Exploits0

Spring Engineering•added 2025/10/30 12:0 a.m.•4 views

AWS Bedrock Prompt Caching Support in Spring AI

In our previous blog post about Anthropic prompt caching, we explored how prompt caching dramatically reduces API costs and latency by reusing previously processed prompt content. We introduced Spring AI's five strategic caching patterns for Anthropic Claude models and showed how they automatical...

7.2AI score

Exploits0

Veracode•added 2025/10/22 4:54 a.m.•3 views

Information Disclosure

Liferay Portal is vulnerable to Information Disclosure. The vulnerability is due to improper handling of object entry enumeration responses, which allows an attacker to determine the existence of specific External Reference Codes ERC in the application by exploiting response time differences...

6.9CVSS6.9AI score0.00062EPSS

Exploits0References7Affected Software4

Packet Storm News•added 2025/10/19 12:0 a.m.•3 views

When AI Takes the Wheel: Security Analysis of Framework-Constrained Program Generation

In recent years, the AI wave has grown rapidly in software development. Even novice developers can now design and generate complex framework-constrained software systems based on their high-level requirements with the help of Large Language Models LLMs. However, when LLMs gradually "take the whee...

7AI score

Exploits0

Wired Threat Level•added 2025/10/15 9:30 a.m.•1 views

When Face Recognition Doesn’t Know Your Face Is a Face

An estimated 100 million people live with facial differences. As face recognition tech becomes widespread, some say they’re getting blocked from accessing essential systems and services...

7AI score

Exploits0

CNNVD•added 2025/10/09 12:0 a.m.•1 views

IBM Aspera 安全漏洞

IBM Aspera is a set of fast file transfer and streaming solutions built on the IBM FASP protocol from International Business Machines IBM. An information disclosure vulnerability exists in IBM Aspera that stems from an observable difference in the returned data, which can be exploited by an...

4.3CVSS5.8AI score0.00031EPSS

Exploits0References2