CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3917 matches found

OSV•added 2025/01/28 5:15 a.m.•2 views

ALPINE-CVE-2025-23084

A vulnerability has been identified in Node.js, specifically affecting the handling of drive names in the Windows environment. Certain Node.js functions do not treat drive names as special on Windows. As a result, although Node.js assumes a relative path, it actually refers to the root directory...

5.5CVSS6.8AI score0.01404EPSS

Exploits1References1

OSV•added 2025/01/28 5:15 a.m.•5 views

CVE-2025-23084

5.5CVSS9.6AI score

Exploits0References3

NVD•added 2025/01/28 5:15 a.m.•17 views

CVE-2025-23084

5.6CVSS0.01404EPSS

Exploits1References3

OSV•added 2025/01/28 5:15 a.m.•0 views

UBUNTU-CVE-2025-23084

5.6CVSS5.7AI score0.01404EPSS

Exploits1References3

CVE•added 2025/01/28 4:35 a.m.•152 views

CVE-2025-23084

CVE-2025-23084 concerns Node.js on Windows, where drive names were not treated as special by path utilities. The available sources describe that certain Windows paths using path.join may be interpreted relative to the current directory, potentially mapping to the root instead of a relative locati...

5.6CVSS6.6AI score0.01404EPSS

Exploits1References3Affected Software1

Cvelist•added 2025/01/28 4:35 a.m.•20 views

CVE-2025-23084

5.6CVSS0.01404EPSS

Exploits1References1

Vulnrichment•added 2025/01/28 4:35 a.m.•10 views

CVE-2025-23084

5.6CVSS5.7AI score0.01404EPSS

Exploits1References1

AlpineLinux•added 2025/01/28 4:35 a.m.•11 views

CVE-2025-23084

5.6CVSS7.1AI score0.01404EPSS

Exploits1References3

CNNVD•added 2025/01/28 12:0 a.m.•4 views

Node.js 安全漏洞

Node.js is an open source, cross-platform JavaScript runtime environment from the Node.js open source. A security vulnerability exists in Node.js that stems from certain Node.js functions not treating drive names as special paths on Windows...

5.6CVSS5.7AI score0.01404EPSS

Exploits1References5

SUSE CVE•added 2025/01/23 3:48 a.m.•5 views

SUSE CVE-2025-23084

5.6CVSS7.6AI score0.01404EPSS

Exploits1References3

OSV•added 2025/01/21 1:15 p.m.•3 views

UBUNTU-CVE-2025-21656

In the Linux kernel, the following vulnerability has been resolved: hwmon: drivetemp Fix driver producing garbage data when SCSI errors occur scsiexecutecmd function can return both negative linux codes and positive scsicmnd result field error codes. Currently the driver just passes error codes o...

5.5CVSS6.2AI score0.00197EPSS

Exploits0References22

Hacker One•added 2025/01/07 10:44 p.m.•816 views

U.S. Dept Of Defense: Public google drive link Exposes Military Orders Containing PII (Name, SSN etc..) and Operational Details

A public Google Drive link was found that exposed military orders containing personally identifiable information PII such as full names, Social Security numbers, home addresses, and security clearance levels. The vulnerability was discovered on a website located at...

6.9AI score

Exploits0

OSV•added 2024/12/27 3:15 p.m.•3 views

UBUNTU-CVE-2024-56589

In the Linux kernel, the following vulnerability has been resolved: scsi: hisisas: Add condresched for no forced preemption model For no forced preemption model kernel, in the scenario where the expander is connected to 12 high performance SAS SSDs, the following call trace may occur: 214.409199...

5.5CVSS6.3AI score0.00231EPSS

Exploits0References34

Cvelist•added 2024/12/16 6:45 a.m.•17 views

CVE-2024-12644 Chunghwa Telecom tbm-client - Arbitrary File Copy and Paste

The tbm-client from Chunghwa Telecom has an Arbitrary File vulnerability. The application sets up a simple local web server and provides APIs for communication with the target website. Due to the lack of CSRF protection in the APIs, unauthenticated remote attackers could use these APIs through...

7.1CVSS0.00286EPSS

Exploits0References2

Citrix•added 2024/12/16 12:0 a.m.•12 views

PVS Boot Device Management creation of UEFI BDM disks.

PVS Boot Device Management wizard creation of UEFI BDM disks. In PVS 2402 and newer, the BDM wizard only shows options related to UEFI BDM creation, as BIOS has been deprecated, and BIOS management interfaces have been removed. This means BDM wizard will look for a locally attached drive with...

7.1AI score

Exploits0

CNNVD•added 2024/12/16 12:0 a.m.•5 views

Lenovo Filez 安全漏洞

Lenovo Filez is an enterprise web drive from the Chinese company Lenovo Lenovo. A security vulnerability exists in Lenovo Filez, which stems from incorrect parsing and could allow a carefully constructed file to read arbitrary files on a device via URL preloading...

7.6CVSS6.7AI score0.00289EPSS

Exploits0References2

ATTACKERKB•added 2024/12/09 1:15 p.m.•2 views

CVE-2023-32117

Missing Authorization vulnerability in princeahmed Integrate Google Drive integrate-google-drive allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Integrate Google Drive: from n/a through = 1.1.99...

9.8CVSS5.8AI score0.06276EPSS

Exploits0References4

NVD•added 2024/12/09 1:15 p.m.•7 views

CVE-2023-32117

Missing Authorization vulnerability in SoftLab Integrate Google Drive allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Integrate Google Drive: from n/a through 1.1.99...

9.8CVSS0.06276EPSS

Exploits0References1

Vulnrichment•added 2024/12/09 11:30 a.m.•6 views

CVE-2023-32117 WordPress Integrate Google Drive plugin <= 1.1.99 - Unauthenticated Broken Access Control vulnerability

9.8CVSS6.8AI score0.06276EPSS

Exploits0References1

CNNVD•added 2024/12/09 12:0 a.m.•2 views

WordPress plugin Integrate Google Drive 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

9.8CVSS8.2AI score0.06276EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by