CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

131 matches found

AstraLinux•added 2026/05/03 11:59 p.m.•6 views

Astra Linux - уязвимость в linux-5.10, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: “ice”: corrected the incorrect fallback logic for FDIR. When adding a FDIR filter, if icevcfdirsetirqctx returns an error, the inserted fdir entry will not be removed. Similarly, if icevcfdirwritefltr returns an error, the fdir...

5.7AI score0.00038EPSS

Exploits0References1

Positive Technologies•added 2026/04/27 12:0 a.m.•3 views

PT-2026-35282

A security vulnerability has been detected in CodeAstro Online Job Portal 1.0. Affected by this vulnerability is an unknown functionality of the file /users/user-cvs/. The manipulation leads to file and directory information exposure. Remote exploitation of the attack is possible. The exploit has...

6.9CVSS5.3AI score0.00044EPSS

Exploits0References6

Packet Storm News•added 2026/04/22 12:0 a.m.•2 views

DNG File Security Scanner for Detecting Malformed Metadata and Overflow Indicators

This Python script is a defensive security tool designed to analyze DNG Digital Negative image files and detect signs of structural corruption or potentially malicious metadata manipulation. It performs low-level parsing of TIFF/DNG structures by reading the file header and iterating through Imag...

5.8AI score

Exploits0

ATTACKERKB•added 2026/04/13 4:30 a.m.•1 views

CVE-2026-6160

A vulnerability was found in code-projects Simple ChatBox 1.0. Affected by this issue is the function SimpleChatboxPHP of the file chatbox.sql of the component Endpoint. Performing a manipulation results in file and directory information exposure. It is possible to initiate the attack remotely. T...

6.9CVSS5.7AI score0.00044EPSS

Exploits0References5Affected Software1

Cvelist•added 2026/04/03 7:30 a.m.•18 views

CVE-2025-7024 Local privilege escalation in Windows Server OS through installed Tetra Connectivity Server (TCS)

Incorrect Default Permissions vulnerability in AIRBUS PSS TETRA Connectivity Server on Windows Server OS allows Privilege Abuse. An attacker may execute arbitrary code with SYSTEM privileges if a user is tricked or directed to place a crafted file into the vulnerable directory. This issue affects...

8.6CVSS0.00012EPSS

Exploits0References1

Snyk•added 2025/12/17 10:47 p.m.•1 views

Insertion of Sensitive Information into Externally-Accessible File or Directory

Overview @storybook/builder-webpack5 is an A Storybook builder to dev and build with Webpack Affected versions of this package are vulnerable to Insertion of Sensitive Information into Externally-Accessible File or Directory via the storybook build command. An attacker can access sensitive...

7.5CVSS6.9AI score0.00013EPSS

Exploits0References2

EUVD•added 2025/12/04 12:0 a.m.•1 views

EUVD-2025-201168

Directory Traversal vulnerability in ComposioHQ v.0.7.20 allows a remote attacker to obtain sensitive information via the downloadfileordir function...

6.1AI score0.00419EPSS

Exploits1References3

Cvelist•added 2025/12/02 9:49 p.m.•7 views

CVE-2025-66476 Vim for Windows Uncontrolled Search Path Element Remote Code Execution Vulnerability

Vim is an open source, command line text editor. Prior to version 9.1.1947, an uncontrolled search path vulnerability on Windows allows Vim to execute malicious executables placed in the current working directory for the current edited file. On Windows, when using cmd.exe as a shell, Vim resolves...

7.8CVSS0.00023EPSS

Exploits0References3

EUVD•added 2025/12/02 1:24 a.m.•1 views

EUVD-2025-200141

Out-of-bounds write in parsing IFD tag in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows remote attackers to access out-of-bounds memory...

4.3CVSS6.4AI score0.00043EPSS

Exploits0References2

Cvelist•added 2025/12/02 1:24 a.m.•3 views

CVE-2025-58477

Out-of-bounds write in parsing IFD tag in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows remote attackers to access out-of-bounds memory...

4.3CVSS0.00043EPSS

Exploits0References1

Positive Technologies•added 2025/12/02 12:0 a.m.•2 views

PT-2025-48595

Out-of-bounds write in parsing IFD tag in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows remote attackers to access out-of-bounds memory...

4.3CVSS6.9AI score0.00043EPSS

Exploits0References2

RedhatCVE•added 2025/10/22 2:11 p.m.•1 views

CVE-2025-6239

Zohocorp ManageEngine Applications Manager versions 176800 and below are vulnerable to information disclosure in File/Directory monitor...

6.5CVSS6.4AI score0.00031EPSS

Exploits0References1

EUVD•added 2025/10/21 3:30 p.m.•1 views

EUVD-2025-35165

Zohocorp ManageEngine Applications Manager versions 176800 and below are vulnerable to information disclosure in File/Directory monitor...

6.5CVSS5.9AI score0.00031EPSS

Exploits0References2

OSV•added 2025/10/21 1:15 p.m.•0 views

CVE-2025-6239

Zohocorp ManageEngine Applications Manager versions 176800 and below are vulnerable to information disclosure in File/Directory monitor...

6.5CVSS5.8AI score0.00031EPSS

Exploits0References1

Vulnrichment•added 2025/10/21 12:25 p.m.•1 views

CVE-2025-6239 Information disclosure

Zohocorp ManageEngine Applications Manager versions 176800 and below are vulnerable to information disclosure in File/Directory monitor...

6.5CVSS6AI score0.00031EPSS

Exploits0References1

CNNVD•added 2025/10/17 12:0 a.m.•1 views

Streamax Crocus 代码问题漏洞

Streamax Crocus is a system used by China Ruiming Streamax to reduce commercial vehicles to reduce traffic accidents and cargo loss. A code issue vulnerability exists in Streamax Crocus version 1.3.40, which stems from an incorrect manipulation of the parameter File in File/FileDir.do and could...

8.8CVSS6.7AI score0.0007EPSS

Exploits1References5

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2017-12961

Malware in sbrugna...

4.3CVSS4.8AI score0.00204EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2002-1378

Malware in sbrugna...

2.1CVSS6.1AI score0.00084EPSS

Exploits0References11