Lucene search
K

260 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:59 a.m.9 views

CVE-2023-35803

IQ Engine before 10.6r2 on Extreme Network AP devices has a Buffer Overflow...

9.8CVSS7AI score0.01626EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 1:57 a.m.11 views

CVE-2023-42524

Certain WithSecure products allow an infinite loop in a scanning engine via unspecified file types. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security...

7.5CVSS7AI score0.00515EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:10 a.m.6 views

CVE-2022-36566

Rengine v1.3.0 was discovered to contain a command injection vulnerability via the scan engine function...

9.8CVSS8AI score0.0211EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:20 p.m.5 views

CVE-2022-2035

A reflected cross-site scripting XSS vulnerability exists in the playerConfUrl parameter in the /defaultui/player/modern.html file for SCORM Engine versions 20.1.45.914, 21.1.x 21.1.7.219. The issue exists because there are no limitations on the domain or format of the url supplied by the user,...

6.1CVSS5.2AI score0.00705EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:37 p.m.8 views

CVE-2020-36405

Keystone Engine 0.9.2 has a use-after-free in llvmks::X86Operand::getToken...

7.8CVSS7AI score0.01101EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 3:49 p.m.10 views

CVE-2020-1175

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1051, CVE-2020-1174, CVE-2020-1176...

9.3CVSS7.8AI score0.10889EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:11 p.m.14 views

CVE-2020-1216

A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1213, CVE-2020-1214, CVE-2020-1215, CVE-2020-1230, CVE-2020-1260...

7.6CVSS7.9AI score0.08022EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 3:10 p.m.11 views

CVE-2020-1060

A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1035, CVE-2020-1058, CVE-2020-1093...

7.6CVSS7.8AI score0.07175EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:39 a.m.6 views

CVE-2016-4535

Integer signedness error in the AV engine before DAT 8145, as used in McAfee LiveSafe 14.0, allows remote attackers to cause a denial of service memory corruption and crash via a crafted packed executable...

7.8CVSS7AI score0.09751EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:14 a.m.6 views

CVE-2019-1056

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-1001, CVE-2019-1004, CVE-2019-1059...

7.6CVSS7.3AI score0.08057EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:31 a.m.10 views

CVE-2019-1426

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge HTML-based, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-1427, CVE-2019-1428, CVE-2019-1429...

7.6CVSS7.1AI score0.72626EPSS
Exploits3References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:49 a.m.6 views

CVE-2013-7357

Unspecified vulnerability in the configuration service in SAP J2EE Engine allows remote attackers to obtain credential information via unknown vectors...

5CVSS7AI score0.01183EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/05/21 12:0 a.m.7 views

Adobe Dreamweaver V8 Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Dreamweaver. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the JavaScript...

7.8CVSS6.8AI score0.00262EPSS
Exploits0References1
CVE
CVE
added 2025/05/13 4:59 p.m.259 views

CVE-2025-30397

CVE-2025-30397 is a memory-corruption/Use-After-Free style vulnerability in the Microsoft Scripting Engine (jscript.dll) that enables remote code execution via specially crafted web content. The CVE’s affected component is the JScript/Windows Scripting Engine, with an attack vector over the netwo...

7.5CVSS7.5AI score0.21562EPSS
In wildExploits7References4Affected Software15
Cvelist
Cvelist
added 2025/05/13 4:59 p.m.26 views

CVE-2025-30397 Scripting Engine Memory Corruption Vulnerability

...

7.5CVSS0.21562EPSS
Exploits7References1
OSV
OSV
added 2025/04/28 3:15 p.m.3 views

CVE-2025-23376

Dell PowerProtect Data Manager Reporting, versions 19.16, 19.17, 19.18, contains an Improper Neutralization of Special Elements Used in a Template Engine vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to information disclosure...

4.4CVSS5.8AI score0.00142EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/28 2:34 p.m.31 views

CVE-2025-23376

Dell PowerProtect Data Manager Reporting, versions 19.16, 19.17, 19.18, contains an Improper Neutralization of Special Elements Used in a Template Engine vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to information disclosure...

2.3CVSS0.00142EPSS
Exploits0References1
CBLMariner
CBLMariner
added 2025/03/27 9:13 p.m.9 views

CVE-2025-22869 affecting package moby-engine for versions less than 25.0.3-11

CVE-2025-22869 affecting package moby-engine for versions less than 25.0.3-11. A patched version of the package is available...

7.5CVSS7.3AI score0.00868EPSS
Exploits0
CVE
CVE
added 2025/03/27 10:55 a.m.52 views

CVE-2025-30871

CVE-2025-30871 is a WordPress vulnerability in the WP Travel Engine plugin caused by improper control of filenames for include/require statements , enabling unauthenticated access to a PHP Local File Inclusion (LFI). Affected versions: WP Travel Engine

7.5CVSS7.2AI score0.00905EPSS
Exploits0References1Affected Software1
CBLMariner
CBLMariner
added 2025/03/25 3:8 p.m.5 views

CVE-2025-22868 affecting package moby-engine for versions less than 24.0.9-15

CVE-2025-22868 affecting package moby-engine for versions less than 24.0.9-15. A patched version of the package is available...

7.5CVSS7.3AI score0.00804EPSS
Exploits0
Rows per page
Query Builder