CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

231 matches found

Tenable Nessus•added 2026/04/30 12:0 a.m.•3 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS : Roundcube Webmail vulnerabilities (USN-8223-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8223-1 advisory. It was discovered that Roundcube Webmail mishandled Punycode xn-- domain names. An attacker could possibl...

9.3CVSS5.4AI score0.50951EPSS

Exploits6References8

OSV•added 2026/04/29 1:50 p.m.•2 views

USN-8223-1 roundcube vulnerabilities

It was discovered that Roundcube Webmail mishandled Punycode xn-- domain names. An attacker could possibly use this issue to cause a homograph attack. CVE-2019-15237 It was discovered that Roundcube Webmail did not properly sanitize certain attributes when handling CSS within HTML messages and...

9.3CVSS7AI score0.50951EPSS

Exploits6References8

Ubuntu•added 2026/04/29 1:50 p.m.•5 views

USN-8223-1: Roundcube Webmail vulnerabilities

9.3CVSS7AI score0.50951EPSS

Exploits6

RedhatCVE•added 2026/01/09 10:7 a.m.•6 views

CVE-2019-20835

An issue was discovered in Foxit Reader and PhantomPDF before 9.5. It has homograph mishandling...

4.3CVSS7AI score0.00112EPSS

Exploits0References1

CVE•added 2025/11/20 10:32 a.m.•8 views

CVE-2025-12414

CVE-2025-12414 affects Looker installations using OIDC authentication, due to email address string normalization. Looker-hosted deployments are mitigated; self-hosted instances require upgrading to fixed versions (examples listed: 24.12.100+, 24.18.193+, 25.0.69+, 25.6.57+, 25.8.39+, 25.10.22+, 2...

9.2CVSS6.5AI score0.00072EPSS

Exploits0References1

Vulnrichment•added 2025/11/20 10:32 a.m.•4 views

CVE-2025-12414 Looker account compromise via punycode homograph attack

An attacker could take over a Looker account in a Looker instance configured with OIDC authentication, due to email address string normalization.Looker-hosted and Self-hosted were found to be vulnerable. This issue has already been mitigated for Looker-hosted. Self-hosted instances must be upgrad...

9.2CVSS6.5AI score0.00072EPSS

Exploits0References1