CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2025-24833

Malicious code in bioql PyPI...

4.3CVSS6.6AI score0.00031EPSS

Exploits0References2

RedhatCVE•added 2025/08/16 12:16 a.m.•8 views

CVE-2025-27845

In ESPEC North America Web Controller 3 before 3.3.4, /api/v4/auth/ with any invalid authentication request results in exposing a JWT secret. This allows for elevated permissions to the UI...

9.8CVSS7.4AI score0.00117EPSS

Exploits0References1

NVD•added 2025/08/14 3:15 p.m.•3 views

CVE-2025-27847

In ESPEC North America Web Controller 3 before 3.3.8, /api/v4/auth/ users session privileges are not revoked on logout...

4.3CVSS0.00031EPSS

Exploits0References2

NVD•added 2025/08/14 3:15 p.m.•2 views

CVE-2025-27846

In ESPEC North America Web Controller 3 before 3.3.8, an attacker with physical access can gain elevated privileges because GRUB and the BIOS are unprotected...

4.3CVSS0.00031EPSS

Exploits0References2

CNNVD•added 2025/08/14 12:0 a.m.•1 views

ESPEC North America Web Controller 3 安全漏洞

ESPEC North America Web Controller 3 is a laboratory equipment monitoring software from ESPEC North America. A security vulnerability exists in ESPEC North America Web Controller versions prior to 3 3.3.4, which stems from an invalid authentication request resulting in a JWT key disclosure that...

9.8CVSS6.7AI score0.00117EPSS

Exploits0References3

Cvelist•added 2025/08/14 12:0 a.m.•5 views

CVE-2025-27847

In ESPEC North America Web Controller 3 before 3.3.8, /api/v4/auth/ users session privileges are not revoked on logout...

0.00031EPSS

Exploits0References2

Vulnrichment•added 2025/08/14 12:0 a.m.•3 views

CVE-2025-27845

In ESPEC North America Web Controller 3 before 3.3.4, /api/v4/auth/ with any invalid authentication request results in exposing a JWT secret. This allows for elevated permissions to the UI...

7.3AI score0.00117EPSS

Exploits0References2

CNNVD•added 2025/08/14 12:0 a.m.•1 views

ESPEC North America Web Controller 3 安全漏洞

ESPEC North America Web Controller 3 is a laboratory equipment monitoring software from ESPEC North America. A security vulnerability exists in ESPEC North America Web Controller versions prior to 3 3.3.8 that stems from an unprotected GRUB and BIOS, where physical access could result in elevated...

4.3CVSS6.5AI score0.00031EPSS

Exploits0References2

Vulnrichment•added 2025/08/14 12:0 a.m.•2 views

CVE-2025-27847

In ESPEC North America Web Controller 3 before 3.3.8, /api/v4/auth/ users session privileges are not revoked on logout...

7AI score0.00031EPSS

Exploits0References2

Cvelist•added 2025/08/14 12:0 a.m.•5 views

CVE-2025-27846

In ESPEC North America Web Controller 3 before 3.3.8, an attacker with physical access can gain elevated privileges because GRUB and the BIOS are unprotected...

0.00031EPSS

Exploits0References2

CVE•added 2025/08/14 12:0 a.m.•13 views

CVE-2025-27846

CVE-2025-27846 affects ESPEC North America Web Controller 3 prior to 3.3.8. The root cause is unprotected GRUB and BIOS, enabling an attacker with physical access to obtain elevated privileges. Impact is elevated privileges with no user interaction required. Remediation per PT-Security is to upgr...

4.3CVSS7.1AI score0.00031EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by