CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

OSV•added 2026/05/02 8:0 a.m.•6 views

MAL-2026-3288 Malicious code in common-tg-service (npm)

Malicious npm package published by user shetty123 as part of a Telegram account hijacking framework targeting Indian Telegram users. All 502 published versions 1.0.1 through 1.3.207 are malicious. Pairs with ams-ssk, which provides the operator's server-side AMS/CMS infrastructure...

6.2AI score

Exploits0References3

Tenable Nessus•added 2026/01/22 12:0 a.m.•6 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-37742)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-37742 advisory. - In the Linux kernel, the following vulnerability has been resolved: jfs: Fix uninit-value access of imap...

5.5CVSS6.7AI score0.0015EPSS

Exploits0References2

Vulnrichment•added 2024/12/19 12:0 a.m.•10 views

CVE-2024-55196

Insufficiently Protected Credentials in the Mail Server Configuration in GoPhish v0.12.1 allows an attacker to access cleartext passwords for the configured IMAP and SMTP servers...

7.1AI score0.00358EPSS

Exploits0References1

Malwarebytes•added 2023/08/28 9:0 p.m.•16 views

Google strengthens its Workplace suite protection

Google has announced the strengthening of safeguard measures for its Workspace customers. You may well be using Workspace without realising it. If youre using a Google product such as Gmail, Calendar, Drive, or Google Docs Editors Suite among other apps, then congratulations: you are fully inside...

7AI score

Exploits0

CERT•added 2022/02/24 12:0 a.m.•43 views

Visual Voice Mail (VVM) services transmit unencrypted credentials via SMS

Overview Visual Voice Mail VVM services transmit unencrypted credentials via SMS. An attacker with the ability to read SMS messages can obtain VVM IMAP credentials and gain access to VVM data. Description VVM is specified by Open Mobile Terminal Platform-OMPT and is implemented with SMS and IMAP...

8.1CVSS7.9AI score0.01406EPSS

Exploits1References2

OSV•added 2021/01/16 10:5 a.m.•7 views

OPENSUSE-SU-2021:0072-1 Security update for dovecot23

This update for dovecot23 fixes the following issues: Security issues fixed: - CVE-2020-12100: Fixed a resource exhaustion caused by deeply nested MIME parts bsc1174920. - CVE-2020-24386: Fixed an issue with IMAP hibernation that allowed users to access other users' emails bsc1180405. -...

7.5CVSS7.1AI score0.05215EPSS

Exploits2References7