CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

30 matches found

Packet Storm News•added 2026/06/09 12:0 a.m.•4 views

Toward Secure LLM Agents: Threat Surfaces, Attacks, Defenses, and Evaluation

Large language model LLM agents are rapidly moving from conversational interfaces to software components that plan, invoke tools, maintain memory, and act on external environments. This transition changes the nature of security risk. In agentic settings, failures are no longer limited to unsafe...

5.5AI score

Exploits0

GithubExploit•added 2026/04/26 1:35 a.m.•91 views

arm-64-exploit-demo

ARM64 Buffer Overflow Exploit Demo A from-scratch demonstrati...

6.8AI score

Exploits0

Cvelist•added 2026/03/27 8:25 p.m.•20 views

CVE-2026-33875 Authenticator Vulnerable to Authentication Flow Hijack

Gematik Authenticator securely authenticates users for login to digital health applications. Versions prior to 4.16.0 are vulnerable to authentication flow hijacking, potentially allowing attackers to authenticate with the identities of victim users who click on a malicious deep link. Update...

9.3CVSS0.00265EPSS

Exploits0References1

EUVD•added 2026/03/27 8:25 p.m.•2 views

EUVD-2026-16817

9.3CVSS5.9AI score0.00265EPSS

Exploits0References1

ATTACKERKB•added 2026/03/27 8:25 p.m.•2 views

CVE-2026-33875

9.3CVSS5.9AI score0.00265EPSS

Exploits0References2Affected Software1

CNNVD•added 2025/10/15 12:0 a.m.•4 views

happy-dom 安全漏洞

happy-dom is a JavaScript implementation of a web browser without a graphical user interface by the individual developer David Ortner. A security vulnerability exists in happy-dom prior to version 20.0.2, which stems from insufficient isolation and could lead to prototype pollution attacks and...

9.4CVSS6.3AI score0.00318EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-6161

Malware in sbrugna...

7.5CVSS7.7AI score0.02456EPSS

Exploits1References6

EUVD•added 2025/10/07 12:30 a.m.•5 views

EUVD-2018-3587

Malware in sbrugna...

9.8CVSS9.4AI score0.01633EPSS

Exploits1References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2021-29046

Malicious code in bioql PyPI...

8.2CVSS8.3AI score0.00338EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-9057

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00629EPSS

Exploits1References2

CNNVD•added 2025/08/21 12:0 a.m.•1 views

Amlib NetOpacs 安全漏洞

Amlib NetOpacs is a catalog module in a library management system from Amlib UK. A security vulnerability exists in Amlib NetOpacs that stems from an unrestricted HTTP GET parameter input length that could lead to a stack buffer overflow and control flow hijacking...

9.3CVSS7.1AI score0.01046EPSS

Exploits0References7

Prion•added 2023/08/22 7:16 p.m.•25 views

Buffer overflow

Buffer Overflow vulnerability in Supermicro motherboard X12DPG-QR 1.4b allows local attackers to hijack control flow via manipulation of SmcSecurityEraseSetupVar variable...

4.3CVSS7.5AI score0.00367EPSS

Exploits0References2

Cvelist•added 2022/09/22 11:6 p.m.•18 views

CVE-2022-30426

There is a stack buffer overflow vulnerability, which could lead to arbitrary code execution in UEFI DXE driver on some Acer products. An attack could exploit this vulnerability to escalate privilege from ring 3 to ring 0, and hijack control flow during UEFI DXE execution. This affects Altos T110...

8.4AI score0.00413EPSS

Exploits1References3

CNNVD•added 2022/02/14 12:0 a.m.•4 views

NGINX 安全漏洞

Nginx is a lightweight web server/reverse proxy server and email IMAP/POP3 proxy server from the US-based Nginx Corporation. A security vulnerability exists in NGINX, which stems from njs was found to contain a control flow hijacking caused by a type obfuscation vulnerability in...

9.8CVSS7.9AI score0.01637EPSS

Exploits1References4

Malwarebytes•added 2022/01/27 4:20 p.m.•29 views

North Korea’s Lazarus APT leverages Windows Update client, GitHub in latest campaign

This blog was authored by Ankur Saini and Hossein Jazi Lazarus Group is one of the most sophisticated North Korean APTs that has been active since 2009. The group is responsible for many high profile attacks in the past and has gained worldwide attention. The Malwarebytes Threat Intelligence team...

8.2AI score

Exploits0

NVD•added 2020/09/24 11:15 p.m.•19 views

CVE-2020-13991

vm/opcodes.c in JerryScript 2.2.0 allows attackers to hijack the flow of control by controlling a register...

7.5CVSS0.02456EPSS

Exploits1References5

UbuntuCve•added 2020/09/24 11:15 p.m.•34 views

CVE-2020-13991

vm/opcodes.c in JerryScript 2.2.0 allows attackers to hijack the flow of control by controlling a register...

7.5CVSS7.1AI score0.02456EPSS

Exploits1References6

GithubExploit•added 2020/03/10 5:0 p.m.•63 views

Exploit for CVE-2020-0551

PoC for the LVI-LFB Control Flow Hijacking attack CVE-2020-0...

5.6CVSS7.5AI score0.0104EPSS

Exploits1

CNVD•added 2018/12/22 12:0 a.m.•2 views

Multiple Buffer Overflow Vulnerabilities in Tenda AC9 Routers

Tenda AC9 Router is a router produced by Shenzhen Jixiang Tenda Technology Co. Tenda AC9 router there are multiple buffer overflow vulnerabilities, the vulnerability stems from the router background on the http request parameter content length is not limited, an attacker can use the vulnerability...

7.6AI score

Exploits0

NVD•added 2018/12/20 11:29 p.m.•22 views

CVE-2018-19241

Buffer overflow in video.cgi on TRENDnet TV-IP110WN V1.2.2 build 68, V1.2.2.65, and V1.2.2 build 64 and TV-IP121WN V1.2.2 build 28 devices allows attackers to hijack the control flow to any attacker-specified location by crafting a POST request payload without authentication...

7.5CVSS7.7AI score0.02338EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by