CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2025-22113

Malicious code in bioql PyPI...

4.6CVSS6.6AI score0.00133EPSS

Exploits1References3

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2025-22115

Malicious code in bioql PyPI...

5.1CVSS6.6AI score0.0011EPSS

Exploits1References3

RedhatCVE•added 2025/07/23 12:57 a.m.•10 views

CVE-2025-52373

Use of hardcoded cryptographic key in BlowFish.cpp in hMailServer 5.8.6 and 5.6.9-beta allows attacker to decrypt passwords used in database connections from hMailServer.ini config file...

4.6CVSS7.2AI score0.00133EPSS

Exploits1References1

RedhatCVE•added 2025/07/23 12:57 a.m.•10 views

CVE-2025-52374

Use of hardcoded cryptographic key in Encryption.cs in hMailServer 5.8.6 and 5.6.9-beta allows attacker to decrypt passwords to other servers from hMailAdmin.exe.config file to access other hMailServer admin consoles with configured connections...

4.6CVSS7.2AI score0.00075EPSS

Exploits1References1

RedhatCVE•added 2025/07/23 12:57 a.m.•10 views

CVE-2025-52372

An issue in hMailServer v.5.8.6 allows a local attacker to obtain sensitive information via the hmailserver/installation/hMailServerInnoExtension.iss and hMailServer.ini components...

5.1CVSS6.4AI score0.0011EPSS

Exploits1References1

Cvelist•added 2025/07/21 12:0 a.m.•6 views

CVE-2025-52372

An issue in hMailServer v.5.8.6 allows a local attacker to obtain sensitive information via the hmailserver/installation/hMailServerInnoExtension.iss and hMailServer.ini components...

0.0011EPSS

Exploits1References3

CVE•added 2025/07/21 12:0 a.m.•18 views

CVE-2025-52372

CVE-2025-52372 affects hMailServer v5.8.6. The issue allows a local attacker to obtain sensitive information via the files hmailserver/installation/hMailServerInnoExtension.iss and hMailServer.ini. The provided documents do not specify the root cause beyond the files involved, nor a remediation o...

5.1CVSS5.8AI score0.0011EPSS

Exploits1References3Affected Software1

Positive Technologies•added 2025/07/21 12:0 a.m.•1 views

PT-2025-30302 · Unknown · Hmailserver

Name of the Vulnerable Software and Affected Versions: hMailServer versions 5.6.9-beta through 5.8.6 Description: The software uses a hardcoded cryptographic key in the Encryption.cs file. This allows an attacker to decrypt passwords for other servers stored in the hMailAdmin.exe.config file,...

4.6CVSS6.2AI score0.00075EPSS

Exploits1References5

Positive Technologies•added 2025/07/21 12:0 a.m.•1 views

PT-2025-30300 · Unknown · Hmailserver

Name of the Vulnerable Software and Affected Versions: hMailServer version 5.8.6 Description: An issue allows a local attacker to obtain sensitive information via the hmailserver/installation/hMailServerInnoExtension.iss and hMailServer.ini components. Recommendations: At the moment, there is no...

5.1CVSS5.7AI score0.0011EPSS

Exploits1References7

Positive Technologies•added 2025/07/21 12:0 a.m.•2 views

PT-2025-30301 · Unknown · Hmailserver

Name of the Vulnerable Software and Affected Versions: hMailServer versions 5.6.9-beta hMailServer versions 5.8.6 Description: The software contains a hardcoded cryptographic key in the BlowFish.cpp file. This allows an attacker to decrypt passwords used in database connections from the...

4.6CVSS6AI score0.00133EPSS

Exploits1References6

RedhatCVE•added 2025/05/22 6:15 a.m.•4 views

CVE-2013-5571

HMailServer 5.3.x and prior: Memory Corruption which could cause DOS...

5.9CVSS7AI score0.00334EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by