CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

223 matches found

OSV•added 2026/06/14 9:5 a.m.•5 views

ROOT-APP-NPM-CVE-2022-25881 CVE-2022-25881 in @rootio/http-cache-semantics - Patched by Root

Root has patched CVE-2022-25881 in the @rootio/http-cache-semantics package for Root:npm. Multiple fixed versions available...

7.5CVSS7.2AI score0.01613EPSS

Exploits1

SUSE CVE•added 2026/05/13 4:0 p.m.•6 views

SUSE CVE-2017-12425

An issue was discovered in Varnish HTTP Cache 4.0.1 through 4.0.4, 4.1.0 through 4.1.7, 5.0.0, and 5.1.0 through 5.1.2. A wrong if statement in the varnishd source code means that particular invalid requests from the client can trigger an assert, related to an Integer Overflow. This causes the...

7.5CVSS7.2AI score0.02416EPSS

Exploits0References3

AstraLinux•added 2026/05/03 11:59 p.m.•11 views

Astra Linux – Vulnerability in symfony

Symfony is a PHP framework for web and console applications, along with a set of reusable PHP components. The Symfony HTTP cache system functions as a reverse proxy: it caches entire responses including headers and returns them to clients. In a recent change to the AbstractSessionListener,...

8.8CVSS7.7AI score0.00753EPSS

Exploits0References2

Tenable Nessus•added 2026/01/20 12:0 a.m.•5 views

MiracleLinux 9 : nodejs-nodemon-2.0.20-3.el9, nodejs-16.19.1-1.el9 (AXSA:2023-6037:02)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6037:02 advisory. c-ares: buffer overflow in configsortlist due to missing string length check CVE-2022-4904 http-cache-semantics: Regular Expression Denial of Servic...

8.6CVSS8AI score0.02023EPSS

Exploits3References7

Tenable Nessus•added 2026/01/20 12:0 a.m.•5 views

MiracleLinux 8 : nodejs:16 (AXSA:2023-5262:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5262:01 advisory. glob-parent: Regular Expression Denial of Service CVE-2021-35065 c-ares: buffer overflow in configsortlist due to missing string length check...

8.6CVSS8AI score0.02209EPSS

Exploits5References9

Tenable Nessus•added 2026/01/20 12:0 a.m.•7 views

MiracleLinux 9 : nodejs:18 (AXSA:2023-6072:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6072:01 advisory. glob-parent: Regular Expression Denial of Service CVE-2021-35065 c-ares: buffer overflow in configsortlist due to missing string length check...

8.6CVSS8AI score0.02209EPSS

Exploits5References9

Tenable Nessus•added 2025/12/04 12:0 a.m.•9 views

RockyLinux 9 : nodejs:18 (RLSA-2023:2654)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:2654 advisory. glob-parent: Regular Expression Denial of Service CVE-2021-35065 c-ares: buffer overflow in configsortlist due to missing string length check CVE-2022-49...

8.6CVSS7.1AI score0.02209EPSS

Exploits5References17

Positive Technologies•added 2025/10/31 12:0 a.m.•6 views

PT-2025-44594

Name of the Vulnerable Software and Affected Versions Apache HTTP Cache affected versions not specified Description Malicious or unintentional API requests can be used to add a significant amount of data to caches. This can lead to the eviction of information required for the web frontend to...

7.5CVSS6.4AI score0.00309EPSS

Exploits0References6