CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11216 matches found

Tenable Nessus•added 2023/01/05 12:0 a.m.•26 views

EulerOS 2.0 SP11 : libxml2 (EulerOS-SA-2023-1016)

According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the XMLPARSEHUGE parser option enabled, sever...

7.8CVSS6.9AI score0.0023EPSS

Exploits2References3

BDU FSTEC•added 2023/01/04 12:0 a.m.•1 views

The vulnerability in the implementation of the Simple Network Management Protocol (SNMP) on Cisco IOS XE Catalyst access points and Cisco Catalyst 9000 wireless network controllers, related to errors in request processing, allows a perpetrator to disclose protected information.

The vulnerability of the Simple Network Management Protocol SNMP implementation on Cisco IOS XE Catalyst access points and Cisco Catalyst 9000 wireless network controllers is related to errors in handling requests. Exploiting this vulnerability can allow a malicious actor to disclose protected...

7.8CVSS6.5AI score0.00191EPSS

Exploits0References3

CNNVD•added 2023/01/04 12:0 a.m.•2 views

Google Android 资源管理错误漏洞

Google Android is a Linux-based open-source operating system from the U.S. company Google. Google Android is vulnerable to resource management errors, which can be exploited by attackers to cause local privilege escalation without additional execution privileges...

7.8CVSS6.9AI score0.00019EPSS

Exploits0References5

BDU FSTEC•added 2023/01/03 12:0 a.m.•2 views

The vulnerability of the MasterUserEdit application interface of the cloud-based corporate solution for planning and managing Jira Align (formerly AgileCraft) programs and IT projects allows a malicious individual to increase their privileges.

The vulnerability of the MasterUserEdit application interface of the cloud-based corporate solution for planning and managing Jira Align formerly AgileCraft programs and IT projects is related to access control errors. Exploiting this vulnerability can allow a malicious actor to increase their...

9CVSS7.5AI score0.00336EPSS

Exploits0References4Affected Software1

Positive Technologies•added 2023/01/01 12:0 a.m.•2 views

PT-2025-49740

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s DRM/MSM subsystem related to a workqueue leak occurring during bind errors. Specifically, the workqueue was not being properly destroyed in cases of...

6.6AI score0.00028EPSS

Exploits0

OSV•added 2022/12/30 11:15 p.m.•8 views

CVE-2022-34670

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer handler, where an unprivileged regular user can cause truncation errors when casting a primitive to a primitive of smaller size causes data to be lost in the conversion, which may lead to denial of service or...

7.8CVSS7.2AI score

Exploits0References3

BDU FSTEC•added 2022/12/28 12:0 a.m.•2 views

The vulnerability of Huawei’s mobile phone software, related to authentication errors, allows attackers to bypass the digital balance limit.

The vulnerability of Huawei’s mobile phone software relates to authentication errors. Exploiting this vulnerability could allow a hacker to bypass the digital balance limit...

7.1CVSS5.5AI score0.00024EPSS

Exploits0References2

BDU FSTEC•added 2022/12/28 12:0 a.m.•2 views

The vulnerability of the calloc() function in the libarchive library allows a perpetrator to execute arbitrary code or cause a service failure.

The vulnerability of the calloc function in the libarchive library is related to pointer arithmetic errors. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code or cause service interruptions...

10CVSS7.3AI score0.00551EPSS

Exploits0References19Affected Software17

OpenVAS•added 2022/12/28 12:0 a.m.•21 views

Google Chrome Security Update (stable-channel-update-for-desktop_25-2021-05) - Linux

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

8.8CVSS7.7AI score0.1671EPSS

Exploits22References3

Citrix•added 2022/12/28 12:0 a.m.•5 views

Disconnected sessions not reconnecting in Server VDA 2203 and higher

After a disconnection the user profile stays active on the server the user was first logged and is locked. When users get disconnected and click the Desktop-icon to get into their session again, they always get a temporary profile on another server. No additional configuration regarding...

7AI score

Exploits0

OSV•added 2022/12/27 3:30 p.m.•12 views

GHSA-2WPW-CM9W-V4XM rdiffweb vulnerable to Business Logic Errors