CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

41 matches found

ATTACKERKB•added 2026/04/16 6:43 p.m.•1 views

CVE-2026-6442

Improper validation of bash commands in Snowflake Cortex Code CLI versions prior to 1.0.25 allowed subsequent commands to execute outside the sandbox. An attacker could exploit this by embedding specially crafted commands in untrusted content, such as a malicious repository, causing the CLI agent...

8.3CVSS6.2AI score0.00055EPSS

Exploits0References3Affected Software1

RedhatCVE•added 2026/01/09 12:35 p.m.•5 views

CVE-2023-45283

The filepath package does not recognize paths with a ??\ prefix as special. On Windows, a path beginning with ??\ is a Root Local Device path equivalent to a path beginning with \?\. Paths with a ??\ prefix may be used to access arbitrary locations on the system. For example, the path...

7.5CVSS7AI score0.00318EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2016-9271

Malware in sbrugna...

9.3CVSS7.9AI score0.0004EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2017-0691

Malware in sbrugna...

9.3CVSS7.8AI score0.00237EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2016-9270

Malware in sbrugna...

9.3CVSS7.9AI score0.0004EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2016-1461

Malware in sbrugna...

9.3CVSS8AI score0.0004EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•6 views

EUVD-2016-7678

Malware in sbrugna...

9.3CVSS7.9AI score0.00147EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2016-7634

Malware in sbrugna...

9.3CVSS7.6AI score0.00035EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-12838

Malicious code in bioql PyPI...

6.6CVSS5.8AI score0.00053EPSS

Exploits0References1

OSV•added 2025/03/03 8:15 p.m.•1 views

CVE-2025-1879

A vulnerability was found in i-Drive i11 and i12 up to 20250227 and classified as problematic. This issue affects some unknown processing of the component APK. The manipulation leads to hard-coded credentials. It is possible to launch the attack on the physical device. It was not possible to...

6.8CVSS4.7AI score

Exploits0References4

OSV•added 2024/03/06 10:53 a.m.•27 views

BIT-GOLANG-2023-45283 Insecure parsing of Windows paths with a \??\ prefix in path/filepath

The filepath package does not recognize paths with a ??\ prefix as special. On Windows, a path beginning with ??\ is a Root Local Device path equivalent to a path beginning with \?. Paths with a ??\ prefix may be used to access arbitrary locations on the system. For example, the path ??\c:\x...

7.5CVSS7.8AI score0.00318EPSS

Exploits0References10

Amazon•added 2024/01/09 12:0 a.m.•2 views

Medium: golang

Issue Overview: A malicious HTTP sender can use chunk extensions to cause a receiver reading from a request or response body to read many more bytes from the network than are in the body. A malicious HTTP client can further exploit this to cause a server to automatically read a large amount of da...

7.5CVSS6.8AI score0.00318EPSS

Exploits0

Amazon•added 2024/01/08 12:0 a.m.•3 views

Medium: golang

7.5CVSS8.9AI score0.00318EPSS

Exploits0

Amazon•added 2024/01/08 12:0 a.m.•3 views

Medium: golang

7.5CVSS6.8AI score0.00318EPSS

Exploits0

OSV•added 2023/11/09 5:15 p.m.•2 views

AZL-79034 CVE-2023-45283 affecting package golang 1.25.7-1