CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2026/05/21 12:0 a.m.•3 views

Gmission Web Fax 输入验证错误漏洞

Gmission Web Fax is a network fax management system developed by the South Korean company Gmission. In versions 3.0 to 3.1 of Gmission Web Fax, there was a vulnerability related to input validation errors. This vulnerability stemmed from improper input validation and unrestricted uploading of...

8.6CVSS6.2AI score0.00027EPSS

CNNVD•added 2026/04/22 12:0 a.m.•3 views

ONE 输入验证错误漏洞

ONE is a high-performance edge-side neural network inference framework developed by Samsung. Versions of ONE prior to 1.30.0 contained a vulnerability related to input validation errors. This vulnerability stemmed from a lack of operator boundary validation, which could lead to out-of-bounds code...

5.5CVSS6.2AI score0.00015EPSS

CNNVD•added 2026/03/12 12:0 a.m.•3 views

Backstage 输入验证错误漏洞

Backstage is an open-source application developed by Backstage. It serves as an open platform for building developer portals. Versions of Backstage prior to 0.27.1 contained a vulnerability related to input validation errors. This vulnerability stemmed from an experimental OIDC provisioning...

5.9CVSS5.8AI score0.00033EPSS

Exploits0References2

CNNVD•added 2026/01/20 12:0 a.m.•2 views

MedDream PACS Premium 安全漏洞

MedDream PACS Premium is an enterprise-class image storage and management server suite from MedDream. A cross-site scripting vulnerability exists in MedDream PACS Premium and is caused by improper validation of user-supplied input by the Modify Anonymization feature. An attacker could exploit the...

6.1CVSS5.9AI score0.00083EPSS

Exploits1References1

Redos•added 2025/12/01 12:0 a.m.•2 views

ROS-20251201-01

A vulnerability in the Core component of the Oracle VM VirtualBox virtualization software tool is related to insufficient protection of service data. Exploitation of the vulnerability could allow an attacker to gain unauthorized access to protected information Vulnerability of Core component of...

6.1CVSS6.8AI score0.00089EPSS

Redos•added 2025/06/19 12:0 a.m.•3 views

ROS-20250619-13

The vulnerability of Pgpool-II connection balancing and management software tools is related to errors of input validation errors when processing directory traversal sequences in filenames. Exploitation exploitation of the vulnerability could allow a remote attacker to perform directory traversal...

Redos•added 2025/06/19 12:0 a.m.•2 views

ROS-20250619-10

Redos•added 2025/06/19 12:0 a.m.•2 views

ROS-20250619-12

Redos•added 2025/06/19 12:0 a.m.•1 views

ROS-20250619-14

CNNVD•added 2025/05/06 12:0 a.m.•1 views

Qualcomm Chipsets 输入验证错误漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. An input validation error vulnerability exists in Qualcomm Chipsets that stems from a memory corruption when fetching and updating IOCTL during IFE output resource ID validation...

7.8CVSS6.9AI score0.00068EPSS

Ubuntu•added 2025/04/07 5:10 p.m.•9 views

USN-7422-1: FIS-GT.M vulnerabilities

It was discovered that FIS-GT.M could incorrectly dereference memory in certain instances. An attacker could possibly use this issue to cause FIS-GT.M to crash, resulting in a denial of service. CVE-2021-44492, CVE-2021-44498, CVE-2021-44508 It was discovered that FIS-GT.M could perform a divisio...

7.5CVSS7.6AI score0.00291EPSS

IBM Security Bulletins•added 2025/03/28 5:52 p.m.•23 views

Security Bulletin: IBM InfoSphere Information Server is affected by multiple vulnerabilities in Apache Axis

Summary Multiple vulnerabilities in Apache Axis that is used by InfoSphere Information Server were addressed. Vulnerability Details CVEID:CVE-2010-1632 DESCRIPTION: Apache Axis2/Java is vulnerable to a denial of service, caused by an error when handling XML DTD Document Type Declaration data. A...

7.5CVSS7.9AI score0.89966EPSS

Exploits12Affected Software1

Redos•added 2025/02/13 12:0 a.m.•3 views

ROS-20250212-10

A vulnerability in the Python Babel library that helps internationalize and localize Python applications is associated with Input validation errors when processing directory traversal sequences in .dat locale files in Babel.Locale. Exploitation of the vulnerability could allow an attacker to...

7.8CVSS6.7AI score0.00169EPSS

Exploits1

RedhatCVE•added 2025/02/06 3:17 a.m.•7 views

CVE-2021-35126

Memory corruption in DSP service due to improper validation of input parameters in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile...

8.4CVSS7.3AI score0.00111EPSS

CNNVD•added 2025/02/03 12:0 a.m.•1 views

Qualcomm Chipsets 输入验证错误漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. The Qualcomm Chipsets suffer from an input validation error vulnerability that originates from a memory corruption that occurs during power-up or power-down of the camera sensor...

7.8CVSS6.7AI score0.00112EPSS

Exploits0References2

Redos•added 2024/10/29 12:0 a.m.•11 views

ROS-20241029-07

The vulnerability in Buildah container image management tool is related to input validation errors in the directory traversal sequences in cache mounts. Exploitation of the vulnerability could allow an infringing user to escalate privileges on the system...

7.8CVSS7.4AI score0.00139EPSS

Rosalinux•added 2023/12/19 8:39 a.m.•31 views

Advisory ROSA-SA-2023-2308

Software: libarchive 3.3.3 OS: ROSA Virtualization 2.1 packageevrstring: libarchive-3.3.3.3-5.0.1.rv3.src.rpm CVE-ID: CVE-2018-1000879 BDU-ID: 2020-01816 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the archiveaclfromtextlins function of the libarchive library is related to NULL pointer...

6.5CVSS6.8AI score0.00689EPSS