CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-0159

Malware in sbrugna...

9.8CVSS7.5AI score0.00416EPSS

Exploits2References14

Positive Technologies•added 2025/06/25 12:0 a.m.•1 views

PT-2025-26858 · Unknown · Registrator

Name of the Vulnerable Software and Affected Versions: Registrator versions prior to 1.9.5 Description: The issue concerns a GitHub app that automates creation of registration pull requests for julia packages. If the clone URL returned by GitHub is malicious, an argument injection is possible in...

9.3CVSS7.6AI score0.02048EPSS

Exploits0References7

Positive Technologies•added 2025/06/23 12:0 a.m.•3 views

PT-2025-26613 · Unknown · Seaswalker Spring-Analysis

Name of the Vulnerable Software and Affected Versions: seaswalker spring-analysis up to 4379cce848af96997a9d7ef91d594aa129be8d71 Description: A vulnerability was found in the function echo of the file /src/main/java/controller/SimpleController.java. The manipulation of the argument Name leads to...

5.1CVSS3.8AI score0.00167EPSS

Exploits0References9

Positive Technologies•added 2025/05/18 12:0 a.m.•2 views

PT-2025-21872 · D Link · D-Link Di-7003Gv2

Name of the Vulnerable Software and Affected Versions: D-Link DI-7003GV2 version 24.04.18D1 R68125 Description: A vulnerability has been found in the D-Link DI-7003GV2, affecting the function sub 41F0FC of the file /H5/webgl.data. This issue leads to information disclosure and can be initiated...

6.9CVSS5.1AI score0.00428EPSS

Exploits1References11

Positive Technologies•added 2025/05/08 12:0 a.m.•2 views

PT-2025-20439 · D Link · D-Link Dir-605L

Name of the Vulnerable Software and Affected Versions: D-Link DIR-605L version 2.13B01 Description: A critical issue affects the formSetWAN Wizard55 function, where manipulation of the curTime argument leads to a buffer overflow. This can be initiated remotely. The vendor was contacted about this...

9.8CVSS8.7AI score0.00936EPSS

Exploits0References15

Positive Technologies•added 2025/04/19 12:0 a.m.•1 views

PT-2025-17395 · Mjson · Mjson

Name of the Vulnerable Software and Affected Versions: mjson version 1.2.7 Description: The issue arises in the mystrtod function of mjson, which requires an excessive number of iterations when processing specific digit strings, such as 8891110122900e913013935755114. This can lead to potential...

2.9CVSS6.1AI score0.00054EPSS

Exploits0References8

Positive Technologies•added 2024/10/08 12:0 a.m.•2 views

PT-2024-31833 · Motorola · Motorola Cx2

Name of the Vulnerable Software and Affected Versions: Motorola CX2L router versions 1.0.2 and below Description: A command injection issue exists, allowing malicious users to inject and execute arbitrary commands. This is due to the system directly invoking the system function to execute command...

8CVSS8.1AI score0.00239EPSS

Exploits0References5

Github Security Blog•added 2024/05/05 9:30 p.m.•19 views

Gradio's Component Server does not properly consider` _is_server_fn` for functions

Component Server in Gradio before 4.13 does not properly consider isserverfn for functions...

6.9AI score

Exploits2References4Affected Software1

Positive Technologies•added 2023/11/20 12:0 a.m.•2 views

PT-2023-30740

Name of the Vulnerable Software and Affected Versions fast-jwt versions prior to 3.3.2 Description The fast-jwt library does not properly prevent JWT algorithm confusion for all public key types. The 'publicKeyPemMatcher' in 'fast-jwt/src/crypto.js' does not properly match all common PEM formats...

5.9CVSS6.3AI score0.00729EPSS

Exploits1References10

Positive Technologies•added 2022/12/08 12:0 a.m.•1 views

PT-2022-36577 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.14.299 Description: A potential memory leak was identified in the s3fwrn5 nci send function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prio...

7.2AI score

Exploits0References1

Positive Technologies•added 2022/09/16 12:0 a.m.•1 views

PT-2022-33555 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.2 Description: The issue is related to a potential off-by-one overflow in the il4965 rs fill link cmd function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linu...

7.5AI score

Exploits0References1

Positive Technologies•added 2022/05/02 12:0 a.m.•1 views

PT-2022-13929 · Matio +4 · Matio +4

Name of the Vulnerable Software and Affected Versions: matio versions 1.5.21 and earlier Description: A memory leak was discovered in the Mat VarReadNextInfo5 function in mat5.c via a crafted file, potentially resulting in Denial of Service DoS. Recommendations: For matio versions 1.5.21 and...

9.8CVSS6.4AI score0.00575EPSS

Exploits1References19

Positive Technologies•added 2020/03/18 12:0 a.m.•1 views

PT-2020-6203 · Graphicsmagick +4 · Graphicsmagick +4

Name of the Vulnerable Software and Affected Versions: GraphicsMagick versions prior to 1.3.32 Description: The issue is related to information disclosure, allowing remote attackers to read arbitrary files via a crafted image because of the TranslateTextEx function for SVG. This can lead to...

9.8CVSS6.8AI score0.05098EPSS

Exploits12References86

Tenable Nessus•added 2016/02/18 12:0 a.m.•70 views

F5 Networks BIG-IP : OpenSSH vulnerability (K17113)

The kbdintnextdevice function in auth2-chall.c in sshd in OpenSSH through 6.9 does not properly restrict the processing of keyboard-interactive devices within a single connection, which makes it easier for remote attackers to conduct brute-force attacks or cause a denial of service CPU consumptio...

8.5CVSS6.4AI score0.74862EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by