CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

18 matches found

Vulnrichment•added 2025/11/12 5:41 p.m.•4 views

CVE-2025-25236

Omnissa Workspace ONE UEM contains an observable response discrepancy vulnerability. A malicious actor may be able to enumerate sensitive information such as tenant ID and user accounts that could facilitate brute-force, password-spraying or credential-stuffing attacks...

5.3CVSS6.1AI score0.00213EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2020-22855

Malware in sbrugna...

9.8CVSS7.3AI score0.00871EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•6 views

EUVD-2020-22853

Malware in sbrugna...

5.1CVSS9.2AI score0.00152EPSS

Exploits0References2

CVE•added 2025/08/06 10:55 a.m.•12 views

CVE-2025-46390

Technical details for CVE-2025-46390 are not publicly available in the provided documents. No specific affected product/version, root cause, impact, or fix is listed here; monitor for updates.

7.5CVSS6.5AI score0.00291EPSS

Exploits0References1

Vulnrichment•added 2025/08/06 10:55 a.m.•2 views

CVE-2025-46390

CWE-204: Observable Response Discrepancy...

7.5CVSS6.5AI score0.00291EPSS

Exploits0References1

CVE•added 2024/02/07 9:18 a.m.•100 views

CVE-2023-51437

This CVE (CVE-2023-51437) concerns an observable timing discrepancy in the Apache Pulsar SASL Authentication Provider that could allow forging a SASL Role Token passing signature verification. Affected products/components include Pulsar Broker, Proxy, Websocket Proxy, and Function Worker. Root ca...

7.4CVSS7.2AI score0.00763EPSS

Exploits0References2Affected Software1

OSV•added 2022/07/11 8:15 p.m.•3 views

CVE-2020-35168

Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain an Observable Timing Discrepancy Vulnerability...

9.8CVSS6.8AI score0.00403EPSS

Exploits0References2

OSV•added 2022/07/11 8:15 p.m.•3 views

CVE-2020-29506

Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.5.2, contain an Observable Timing Discrepancy Vulnerability...

9.8CVSS7.2AI score0.00965EPSS

Exploits0References2

Cvelist•added 2022/07/11 7:25 p.m.•24 views

CVE-2020-35166

Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain an Observable Timing Discrepancy Vulnerability...

5.1CVSS9.5AI score0.00618EPSS

Exploits0References1

Cvelist•added 2022/07/11 7:25 p.m.•29 views

CVE-2020-35164

Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain an Observable Timing Discrepancy Vulnerability...

6.7CVSS8.9AI score0.00672EPSS

Exploits0References2

Cvelist•added 2022/07/11 7:25 p.m.•17 views

CVE-2020-29506

Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.5.2, contain an Observable Timing Discrepancy Vulnerability...

6.8CVSS9.6AI score0.00965EPSS

Exploits0References2

Github Security Blog•added 2022/05/24 5:21 p.m.•18 views

Magento Signature verification bypass

Magento versions 2.3.4 and earlier, 2.2.11 and earlier see note, 1.14.4.4 and earlier, and 1.9.4.4 and earlier have an observable timing discrepancy vulnerability. Successful exploitation could lead to signature verification bypass...

7.2CVSS6.9AI score0.02541EPSS

Exploits0References3Affected Software3

Positive Technologies•added 2021/07/07 12:0 a.m.•4 views

PT-2021-19754 · Qsan · Qsan Storage Manager

Name of the Vulnerable Software and Affected Versions: QSAN Storage Manager affected versions not specified Description: The issue allows remote attackers to obtain system information without permissions due to an observable behavioral discrepancy vulnerability. Recommendations: Contact QSAN and...

5.3CVSS5.1AI score0.01072EPSS

Exploits0References4

Prion•added 2020/03/11 10:27 p.m.•19 views

Authentication flaw

An exploitable timing discrepancy vulnerability exists in the authentication functionality of the Web-Based Management WBM web application on WAGO PFC100/200 controllers. The WBM application makes use of the PHP crypt function which can be exploited to disclose hashed user credentials. This affec...

5CVSS6AI score0.01022EPSS

Exploits1References1Affected Software2

Talos•added 2020/03/09 12:0 a.m.•77 views

WAGO PFC100/200 Web-Based Management (WBM) Authentication Timing Information Disclosure Vulnerability

Summary An exploitable timing discrepancy vulnerability exists in the authentication functionality of the Web-Based Management WBM web application on WAGO PFC100/200 controllers. The WBM application makes use of the PHP crypt function which can be exploited to disclose hashed user credentials...

7.5CVSS6.7AI score0.02199EPSS

Exploits1

NVD•added 2019/09/30 10:15 p.m.•21 views

CVE-2019-3731

RSA BSAFE Crypto-C Micro Edition versions prior to 4.1.4 and RSA Micro Edition Suite versions prior to 4.4 are vulnerable to an Information Exposure Through Timing Discrepancy. A malicious remote user could potentially exploit this vulnerability to extract information leaving data at risk of...

7.5CVSS6.1AI score0.01355EPSS

Exploits0References1

Prion•added 2018/12/17 10:29 p.m.•15 views

Information disclosure

An Information Exposure through Discrepancy vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 where the web server sends different responses in a way that exposes security-relevant information about the state of the product, such as whether...

5CVSS7.4AI score0.03711EPSS

Exploits0References2

Cvelist•added 2018/12/17 10:0 p.m.•24 views

CVE-2018-7812

7.4AI score0.03711EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by