CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

ATTACKERKB•added 2025/06/25 5:15 p.m.•3 views

CVE-2025-20282

A vulnerability in an internal API of Cisco ISE and Cisco ISE-PIC could allow an unauthenticated, remote attacker to upload arbitrary files to an affected device and then execute those files on the underlying operating system as root. This vulnerability is due a lack of file validation checks tha...

10CVSS6.2AI score0.00591EPSS

Exploits3References2Affected Software1

OSV•added 2025/06/25 5:15 p.m.•1 views

CVE-2025-20282

10CVSS6.1AI score

Exploits0References1

OSV•added 2024/01/12 3:15 p.m.•0 views

CVE-2023-49257

An authenticated user is able to upload an arbitrary CGI-compatible file using the certificate upload utility and execute it with the root user privileges...

8.8CVSS5.9AI score0.00082EPSS

Exploits0References2

CNNVD•added 2023/05/18 12:0 a.m.•2 views

Cisco DNA Center 输入验证错误漏洞

Cisco DNA Center is a network management and command center service from Cisco USA. A command execution vulnerability exists in Cisco DNA Center Software. The vulnerability stems from the application's inadequate validation of user-supplied input in API request parameters and can be exploited by ...

8.8CVSS7.5AI score0.00191EPSS

Exploits0References2

ATTACKERKB•added 2023/05/17 4:0 p.m.•1 views

CVE-2023-20184

Multiple vulnerabilities in the API of Cisco DNA Center Software could allow an authenticated, remote attacker to read information from a restricted container, enumerate user information, or execute arbitrary commands in a restricted container as the root user. For more information about these...

5.4CVSS6.1AI score0.00648EPSS

Exploits0References2

GithubExploit•added 2022/10/05 10:5 a.m.•3 views

Exploit for CVE-2022-42457

CVE-2022-42457 Generex-CS141-Authenticated-Remote-Command-Exec...

9.1CVSS8.4AI score0.06451EPSS

Exploits2

NVD•added 2022/08/16 8:15 p.m.•17 views

CVE-2022-37393

Zimbra's sudo configuration permits the zimbra user to execute the zmslapd binary as root with arbitrary parameters. As part of its intended functionality, zmslapd can load a user-defined configuration file, which includes plugins in the form of .so files, which also execute as root...

7.8CVSS0.05122EPSS

Exploits4References3

NVD•added 2021/10/27 1:15 a.m.•15 views

CVE-2011-4125

A untrusted search path issue was found in Calibre at devices/linuxmounthelper.c leading to the ability of unprivileged users to execute any program as root...

10CVSS0.00736EPSS

Exploits1References4

Positive Technologies•added 2019/03/11 12:0 a.m.•1 views

PT-2019-16843 · Ibm · Ibm Db2

Name of the Vulnerable Software and Affected Versions: IBM DB2 for Linux, UNIX and Windows includes DB2 Connect Server versions 9.7, 10.1, 10.5, and 11.1 Description: The issue is a buffer overflow that could allow an authenticated local attacker to execute arbitrary code on the system as root...

8.4CVSS8.2AI score0.00085EPSS

Exploits0References5

exploitpack•added 1994/02/02 12:0 a.m.•7 views

SGI IRIX 5.25.3 - serial_ports Local Privilege Escalation

SGI IRIX 5.25.3 - serialports Local Privilege Escalation source: https://www.securityfocus.com/bid/464/info A race condition exists in the serialports administrative program, as included by SGI in the 5.x Irix operating system. This race condition allows regular users to execute arbitrary command...

1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by