CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

191 matches found

RedhatCVE•added 2026/01/07 9:50 a.m.•7 views

CVE-2022-27220

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.0 SP2. Affected application is missing general HTTP security headers in the web server configured on port 6220. This could aid attackers by making the servers more prone to clickjacking, channel downgrade attacks...

4.3CVSS6.9AI score0.00177EPSS

Exploits0References1

NVD•added 2025/12/19 2:16 a.m.•5 views

CVE-2025-67846

The Deployment Infrastructure in Mintlify Platform before 2025-11-15 allows remote attackers to bypass security patches and execute downgrade attacks via predictable deployment identifiers on the Vercel preview domain. An attacker can identify the URL structure of a previous deployment that...

6.5CVSS0.00054EPSS

Exploits1References4

CVE•added 2025/12/19 12:0 a.m.•15 views

CVE-2025-67846

CVE-2025-67846 affects Mintlify Platform prior to 2025-11-15, where the Deployment Infrastructure allows remote attackers to bypass security patches and perform downgrade attacks by using predictable deployment identifiers on the Vercel preview domain. An attacker can identify the URL structure o...

6.5CVSS6.8AI score0.00054EPSS

Exploits1References4Affected Software1

Cvelist•added 2025/12/19 12:0 a.m.•22 views

CVE-2025-67846

4.9CVSS0.00054EPSS

Exploits1References4

Vulnrichment•added 2025/12/19 12:0 a.m.•1 views

CVE-2025-67846

4.9CVSS6.8AI score0.00054EPSS

Exploits1References4

Positive Technologies•added 2025/12/02 12:0 a.m.•1 views

PT-2025-48738

The BigFix SaaS's HTTP responses were missing some security headers. The absence of these headers weakens the application's client-side security posture, making it more vulnerable to common web attacks that these headers are designed to mitigate, such as Cross-Site Scripting XSS, Clickjacking, an...

5.4CVSS6.3AI score0.00028EPSS

Exploits0References2