CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

7.5CVSS6.4AI score0.00611EPSS

EulerOS 2.0 SP13 : python3 (EulerOS-SA-2025-2529)

According to the versions of the python3 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : During an address list folding when a separating comma ends up on a folded line and that line is to be unicode-encoded then the separator itself ...

Exploits0References5

7.5CVSS6.4AI score0.00611EPSS

EulerOS 2.0 SP11 : python3 (EulerOS-SA-2025-2488)

Exploits0References5

6.1CVSS5.9AI score0.00224EPSS

Linux Distros Unpatched Vulnerability : CVE-2025-14372

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in Password Manager in Google Chrome prior to 143.0.7499.110 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML...

Exploits0References2

Tenable Nessus•added 2025/12/11 12:0 a.m.•11 views

RHEL 8 : firefox (RHSA-2025:23128)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:23128 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox:...

9.8CVSS8.8AI score0.00498EPSS

Exploits2References22

9.8CVSS8.7AI score0.00498EPSS

RockyLinux 9 : firefox (RLSA-2025:23034)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:23034 advisory. firefox: Memory safety bugs fixed in Firefox ESR 140.6, Thunderbird ESR 140.6, Firefox 146 and Thunderbird 146 CVE-2025-14333 firefox: Use-after-free in...

Exploits2References21

Tenable Nessus•added 2025/12/11 12:0 a.m.•2 views

RockyLinux 10 : firefox (RLSA-2025:23035)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:23035 advisory. firefox: Memory safety bugs fixed in Firefox ESR 140.6, Thunderbird ESR 140.6, Firefox 146 and Thunderbird 146 CVE-2025-14333 firefox: Use-after-free i...

9.8CVSS8.7AI score0.00498EPSS

Exploits2References21

6.5CVSS6.8AI score0.00504EPSS

Linux Distros Unpatched Vulnerability : CVE-2025-14512

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in glib. This vulnerability allows a heap buffer overflow and denial-of-service DoS via an integer overflow in GLib's GIO GLib Input/Output...

6.9CVSS6.5AI score0.00418EPSS

EulerOS 2.0 SP13 : python-ldap (EulerOS-SA-2025-2530)

According to the versions of the python-ldap packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : python-ldap is a lightweight directory access protocol LDAP client API for Python. In versions prior to 3.4.5, the sanitization method...

Exploits2References3

Positive Technologies•added 2025/12/11 12:0 a.m.•7 views

PT-2025-50768

Name of the Vulnerable Software and Affected Versions MaxKB versions prior to 2.4.0 Description MaxKB, an open-source AI assistant for enterprise, contains a flaw in the tool module that allows an attacker to escape the sandbox environment and gain elevated privileges. This occurs under specific...

8.8CVSS6.8AI score0.00272EPSS

Exploits0References6

Tenable Nessus•added 2025/12/11 12:0 a.m.•8 views

EulerOS 2.0 SP13 : busybox (EulerOS-SA-2025-2495)

According to the versions of the busybox package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In netstat in BusyBox through 1.37.0, local users can launch of network application with an argv0 containing an ANSI terminal escape sequence,...

2.5CVSS5.5AI score0.00238EPSS

Exploits0References2

CNNVD•added 2025/12/11 12:0 a.m.•5 views

MaxKB 竞争条件问题漏洞

MaxKB is a 1Panel-dev open source open source knowledge base question and answer system based on a large language model and RAG. A competitive condition issue vulnerability exists in MaxKB 2.3.1 and earlier versions, which stems from a tool module that allows an attacker to escape the sandbox...

10CVSS6.7AI score0.00272EPSS

AlmaLinux•added 2025/12/11 12:0 a.m.•4 views

Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox: Memory safety bugs fixed in Firefox ESR 140.6, Thunderbird ESR 140.6, Firefox 146 and Thunderbird 146 CVE-2025-14333 firefox: Use-after-free in the WebRTC:...

9.8CVSS7.6AI score0.00498EPSS

Exploits2References22

2.5CVSS5.5AI score0.00238EPSS

EulerOS 2.0 SP13 : busybox (EulerOS-SA-2025-2516)

Exploits0References2

3.3CVSS5.6AI score0.00238EPSS

EulerOS 2.0 SP11 : busybox (EulerOS-SA-2025-2475)

7.5CVSS6.4AI score0.00611EPSS

EulerOS 2.0 SP13 : python3 (EulerOS-SA-2025-2508)

Exploits0References5

8CVSS5.5AI score0.00276EPSS

FreeBSD : Mozilla -- Sandbox escape (9a9d50a6-d6a8-11f0-8e1b-b42e991fc52e)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 9a9d50a6-d6a8-11f0-8e1b-b42e991fc52e advisory. https://bugzilla.mozilla.org/showbug.cgi?id=1996473 reports: Sandbox escape due to incorrect boundary...