CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

109 matches found

Positive Technologies•added 2026/06/16 12:0 a.m.•10 views

PT-2026-49743

Name of the Vulnerable Software and Affected Versions pypdf versions prior to 6.13.0 Description A flaw in the pure-python PDF library allows an attacker to craft a PDF that triggers an infinite loop. This occurs when merging a file containing outlines into a writer. Recommendations Update to...

6.9CVSS5.8AI score0.00125EPSS

Exploits0References6

Tenable Nessus•added 2026/01/20 12:0 a.m.•2 views

MiracleLinux 9 : cups-2.3.3op2-16.el9.1 (AXSA:2023-6372:08)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6372:08 advisory. cups: Information leak through Cups-Get-Document operation CVE-2023-32360 Tenable has extracted the preceding description block directly from the MiracleLinu...

5.5CVSS6.3AI score0.00347EPSS

Exploits0References2

RedhatCVE•added 2026/01/09 12:0 p.m.•9 views

CVE-2018-19448

In Foxit Reader SDK ActiveX Professional 5.4.0.1031, an uninitialized object in IReaderContentProvider::GetDocEventHandler occurs when embedding the control into Office documents. By opening a specially crafted document, an attacker can trigger an out of bounds write condition, possibly leveragin...

7.8CVSS7.8AI score0.02241EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 11:28 a.m.•7 views

CVE-2021-33879

Tencent GameLoop before 4.1.21.90 downloaded updates over an insecure HTTP connection. A malicious attacker in an MITM position could spoof the contents of an XML document describing an update package, replacing a download URL with one pointing to an arbitrary Windows executable. Because the only...

8.1CVSS6.8AI score0.01022EPSS

Exploits1References1

EUVD•added 2026/01/05 1:32 a.m.•4 views

EUVD-2026-0916

A security flaw has been discovered in xnx3 wangmarket up to 4.9. Affected by this issue is some unknown functionality of the file /admin/system/variableSave.do of the component System Variables Page. Performing a manipulation of the argument Description results in cross site scripting. The attac...

4.8CVSS2.7AI score0.00235EPSS

Exploits1References5

Positive Technologies•added 2025/12/11 12:0 a.m.•4 views

PT-2025-50615

Name of the Vulnerable Software and Affected Versions Foxit PDF and Editor versions prior to 13.2 Foxit PDF and Editor 2025 versions prior to 2025.2 Description An issue exists in Foxit PDF and Editor that may lead to information disclosure or memory corruption. This can occur when opening a...

3.3CVSS7.3AI score0.00147EPSS

Exploits0References6

EUVD•added 2025/11/24 10:42 p.m.•2 views

EUVD-2025-199017

pypdf's LZWDecode streams be manipulated to exhaust RAM...

6.4AI score

Exploits0References5

Tenable Nessus•added 2025/11/13 12:0 a.m.•5 views

Siemens SIMATIC S7-1500 Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2016-4658)

xpointer.c in libxml2 before 2.9.5 as used in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3, and other products does not forbid namespace nodes in XPointer ranges, which allows remote attackers to execute arbitrary code or cause a denial of service use-after-free an...

10CVSS7.1AI score0.08628EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2011-3838

Malware in sbrugna...

6.8CVSS6.1AI score0.01217EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2019-7116

Malware in sbrugna...

7.8CVSS7.7AI score0.01033EPSS

Exploits1References3