CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•5 views

EUVD-2021-1289

Malware in sbrugna...

9.1CVSS9.1AI score0.01411EPSS

Exploits0References7

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-6862

Malicious code in bioql PyPI...

5.3CVSS6.3AI score0.0105EPSS

Exploits1References5

IBM Security Bulletins•added 2025/05/01 3:16 p.m.•19 views

Security Bulletin: IBM MQ Operator and Queue manager container images are vulnerable to libxml2, Go JOSE and FreeType

Summary libxml2, Go JOSE, FreeType and IBM MQ used by IBM MQ Operator and Queue Manager container images are vulnerable to memory exhaustion and a Denial of Service by sending numerous malformed tokens, and arbitrary code execution by writing up to 6 signed long integers out of bounds. This...

9.8CVSS8.3AI score0.23357EPSS

Exploits1Affected Software1

Tenable Nessus•added 2025/05/01 12:0 a.m.•14 views

Amazon Linux 2 : containerd (ALASECS-2025-053)

The version of containerd installed on the remote host is prior to 1.7.27-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2ECS-2025-053 advisory. Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, including support...

8.7CVSS6.9AI score0.00369EPSS

Exploits0References4

Rockylinux•added 2025/03/17 8:16 p.m.•3 views

jose security update

An update is available for jose. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Jose is a C-language implementation of the Javascript Object Signing and...

7.5CVSS6.8AI score0.02102EPSS

Exploits1

Oracle linux•added 2024/11/14 12:0 a.m.•263 views

jose security update

14-1 - Rebase jose-14 upstream version Resolves: RHEL-38079...

7.5CVSS7AI score0.02102EPSS

Exploits1

OSV•added 2024/11/01 5:26 p.m.•4 views

MGASA-2024-0343 Updated buildah, podman, skopeo packages fix security vulnerabilities

A flaw was found in Buildah and subsequently Podman Build which allows containers to mount arbitrary locations on the host filesystem into build containers. A malicious Containerfile can use a dummy image with a symbolic link to the root filesystem as a mount source and cause the mount operation ...

8.6CVSS7AI score0.02102EPSS

Exploits0References10

Oracle linux•added 2024/08/13 12:0 a.m.•375 views

jose security update

10-2.3 - Backport fix for CVE-2024-28176 Resolves: RHEL-28719 10-2.2 - Fix tests on s390x Related: RHEL-29857 10-2.1 - Fixes CVE-2023-50967...

7.5CVSS7.1AI score0.02102EPSS

Exploits1

OSV•added 2024/05/07 3:58 p.m.•5 views

OPENSUSE-SU-2024:0118-1 Security update for python-python-jose

This update for python-python-jose fixes the following issues: CVE-2024-33663: Fixed algorithm confusion with OpenSSH ECDSA keys and other key formats boo1223417...

6.5CVSS6.8AI score0.00307EPSS

Exploits1References3

UbuntuCve•added 2017/03/28 2:59 a.m.•13 views

CVE-2016-9121

go-jose before 1.0.4 suffers from an invalid curve attack for the ECDH-ES algorithm. When deriving a shared key using ECDH-ES for an encrypted message, go-jose neglected to check that the received public key on a message is on the same curve as the static private key of the receiver, thus making ...

9.1CVSS7.2AI score0.01411EPSS

Exploits0References4

ThreatPost•added 2009/06/18 1:49 p.m.•8 views

Buy an Infected PC for 5 Cents

From PC World Erik Larkin It doesn’t take much to get started in Internet crime these days. Find the right site, hand over $50, and you can start wreaking havoc with 1,000 already-infected PCs. Finjan, a San Jose, CA security company, looked into the “Golden Cash” site, used by black hats to buy...

0.6AI score

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by