CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6726 matches found

Debian CVE•added 2026/02/17 6:48 p.m.•5 views

CVE-2025-66614

Improper Input Validation vulnerability. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.14, from 10.1.0-M1 through 10.1.49, from 9.0.0-M1 through 9.0.112. The following versions were EOL at the time the CVE was created but are known to be affected: 8.5.0 through 8.5.100. Older EOL...

9.1CVSS7.1AI score0.00051EPSS

Exploits0

IBM Security Bulletins•added 2026/02/17 12:4 p.m.•11 views

Security Bulletin: IBM Sterling External Authentication Server is vulnerable to multiple issues

Summary Multiple vulnerabilities affect IBM Sterling External Authentication Server and are addressed in the latest release and fixpack Vulnerability Details CVEID:CVE-2025-48924 DESCRIPTION: Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang:...

7.5CVSS6.5AI score0.0044EPSS

Exploits3Affected Software1

ATTACKERKB•added 2026/02/12 5:31 p.m.•3 views

CVE-2023-20601

Improper input validation within RAS TA Driver can allow a local attacker to access out-of-bounds memory, potentially resulting in a denial-of-service condition...

4.6CVSS5.5AI score0.0001EPSS

Exploits0References2

Cvelist•added 2026/02/12 5:31 p.m.•26 views

CVE-2023-20601

Improper input validation within RAS TA Driver can allow a local attacker to access out-of-bounds memory, potentially resulting in a denial-of-service condition...

4.6CVSS0.0001EPSS

Exploits0References1

OSV•added 2026/02/12 5:4 p.m.•4 views

GHSA-WVR6-395C-5PXR CediPay Affected by Improper Input Validation in Payment Processing

A vulnerability in CediPay allows attackers to bypass input validation in the transaction API. Affected users: All deployments running versions prior to the patched release. Risk: Exploitation could result in unauthorized transactions, exposure of sensitive financial data, and compromise of payme...

8.8CVSS5.4AI score0.00127EPSS

Exploits0References3

Github Security Blog•added 2026/02/12 5:4 p.m.•12 views

CediPay Affected by Improper Input Validation in Payment Processing

8.8CVSS5.4AI score0.00127EPSS

Exploits0References3Affected Software1

Snyk•added 2026/02/12 1:55 p.m.•2 views

Improper Validation of Specified Type of Input

Overview Affected versions of this package are vulnerable to Improper Validation of Specified Type of Input via the intarray extension selectivity estimator function. An attacker can execute arbitrary code as the operating system user running the database by providing specially crafted input...

8.8CVSS6.1AI score0.00059EPSS

Exploits0References2

Positive Technologies•added 2026/02/12 12:0 a.m.•3 views

PT-2026-7875

Improper input validation within RAS TA Driver can allow a local attacker to access out-of-bounds memory, potentially resulting in a denial-of-service condition...

4.6CVSS5.5AI score0.0001EPSS

Exploits0References2

RedhatCVE•added 2026/02/11 7:44 p.m.•5 views

CVE-2026-21247

Improper input validation in Windows Hyper-V allows an authorized attacker to execute code locally...

7.3CVSS5.7AI score0.00062EPSS

Exploits0References1

Vulnrichment•added 2026/02/11 2:29 p.m.•4 views

CVE-2024-36324

Improper input validation in AMD Graphics Driver could allow an attacker to supply a specially crafted pointer, potentially leading to arbitrary code execution...

8.8CVSS6AI score0.00008EPSS

Exploits0References1

GithubExploit•added 2026/02/11 1:1 a.m.•117 views

Exploit for Improper Input Validation in N8N

No d...

10CVSS5.4AI score0.05117EPSS

Exploits16

CNNVD•added 2026/02/11 12:0 a.m.•3 views

AMD Graphics Driver 安全漏洞

AMD Graphics Driver is an integrated graphics driver developed by American semiconductor company AMD. There is a security vulnerability in AMD Graphics Driver, which stems from improper input validation. This vulnerability could allow attackers to provide malicious code, enabling them to execute...

8.8CVSS6.1AI score0.00008EPSS

Exploits0References1

NVD•added 2026/02/10 8:16 p.m.•4 views

CVE-2024-36310

Improper input validation in the SMM communications buffer could allow a privileged attacker to perform an out of bounds read or write to SMRAM potentially resulting in loss of confidentiality or integrity...

4.6CVSS0.00006EPSS

Exploits0References3

Cvelist•added 2026/02/10 7:28 p.m.•26 views

CVE-2024-36355

Improper input validation in the SMM handler could allow an attacker with Ring0 access to write to SMRAM and modify execution flow for S3 sleep wake up, potentially resulting in arbitrary code execution...

7CVSS0.00007EPSS

Exploits0References2

ATTACKERKB•added 2026/02/10 7:24 p.m.•4 views

CVE-2024-36310

4.6CVSS5.8AI score0.00006EPSS

Exploits0References4

Cvelist•added 2026/02/10 4:25 p.m.•26 views

CVE-2025-25210

Improper input validation for some Server Firmware Update UtilitySysFwUpdt before version 16.0.12 within Ring 3: User Applications may allow an escalation of privilege. System software adversary with a privileged user combined with a low complexity attack may enable escalation of privilege. This...

8.2CVSS0.00026EPSS

Exploits0References1

CVE•added 2026/02/10 4:25 p.m.•9 views

CVE-2025-25210

CVE-2025-25210 involves improper input validation in Intel’s Server Firmware Update Utility (SysFwUpdt) prior to version 16.0.12. The vulnerability affects Ring 3 (User Applications); a local attacker with high privileges and low attack complexity may escalate privileges without user interaction,...

8.2CVSS5.3AI score0.00026EPSS

Exploits0References1