CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

530 matches found

Cvelist•added 2026/05/27 7:18 a.m.•25 views

CVE-2025-41669 Insufficient Verification of Data Authenticity

The Web-based Management allows a remote low privileged Engineer user to install additional APPs on the device downloaded from the PLCnext Store without implementing any data verification mechanism, leading to the capability for an Engineer user to reach arbitrary code execution with root...

8.8CVSS0.0003EPSS

Exploits0References1

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux - уязвимость в chromium

Insufficient data validation in Extensions in Google Chrome prior to 132.0.6834.83 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform privilege escalation via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6.8AI score0.00859EPSS

Exploits1References2

CNNVD•added 2026/05/02 12:0 a.m.•4 views

TRENDnet TEW-821DAP 数据伪造问题漏洞

TRENDnet TEW-821DAP is a wireless access point from the company TRENDnet. The version TRENDnet TEW-821DAP 1.12B01 has a vulnerability related to data falsification. This vulnerability stems from improper handling of the parameter dest in the findHWid/newGuiUpdateFirmware function within the...

8.1CVSS5.8AI score0.00034EPSS

Exploits1References1

Positive Technologies•added 2026/04/01 12:0 a.m.•3 views

PT-2026-38108

Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 148.0.7778.96 Description Insufficient data validation in DevTools allows a remote attacker to bypass navigation restrictions through the use of a crafted HTML page. Recommendations Update to version...

9.6CVSS5.8AI score0.00148EPSS

Exploits0References137

Tenable Nessus•added 2026/03/10 12:0 a.m.•2 views

Fedora 43 : chromium (2026-f62db6b372)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-f62db6b372 advisory. Update to 145.0.7632.159 CVE-2026-3536: Integer overflow in ANGLE CVE-2026-3537: Object lifecycle issue in PowerVR CVE-2026-3538: Integer overflow i...

9.6CVSS6.2AI score0.00134EPSS

Exploits0References11

Microsoft CVE•added 2026/03/07 5:23 a.m.•8 views

Chromium: CVE-2026-3545 Insufficient data validation in Navigation

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

9.6CVSS5.8AI score0.00134EPSS

Exploits0

RedhatCVE•added 2026/02/23 1:31 p.m.•2 views

CVE-2026-2385

The The Plus Addons for Elementor – Addons for Elementor, Page Templates, Widgets, Mega Menu, WooCommerce plugin for WordPress is vulnerable to Insufficient Verification of Data Authenticity in all versions up to, and including, 6.4.7. This is due to the plugin decrypting and trusting...

5.3CVSS5.3AI score0.00035EPSS

Exploits0References1

CNNVD•added 2025/12/12 12:0 a.m.•1 views

Apple macOS 安全漏洞

Apple macOS is a suite of specialized operating systems developed for Mac computers by Apple Inc. in the United States. A security vulnerability exists in Apple macOS Sonoma prior to 14.8.3 and Sequoia prior to 15.7.3, which stems from insufficient data protection and could result in access to...

5.5CVSS6AI score0.0001EPSS

Exploits0References4

Tenable Nessus•added 2025/10/13 12:0 a.m.•1 views

F5 Networks BIG-IP : IPMI vulnerability (K000156992)

The version of F5 Networks BIG-IP installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the K000156992 advisory. AMI MegaRAC SPx12 and SPx13 devices have Insufficient Verification of Data Authenticity.CVE-2023-28863 Tenable has...

9.1CVSS7.2AI score0.00162EPSS

Exploits0References2