CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4834 matches found

Cvelist•added 2025/10/19 10:2 p.m.•12 views

CVE-2025-11947 bftpd Configuration File options.c expand_groups heap-based overflow

A weakness has been identified in bftpd up to 6.2. Impacted is the function expandgroups of the file options.c of the component Configuration File Handler. Executing a manipulation can lead to heap-based buffer overflow. It is possible to launch the attack on the local host. Attacks of this natur...

4.5CVSS0.00165EPSS

Exploits0References4

NVD•added 2025/10/19 9:15 a.m.•2 views

CVE-2025-11940

A security vulnerability has been detected in LibreWolf up to 143.0.4-1 on Windows. This affects an unknown function of the file assets/setup.nsi of the component Installer. Such manipulation leads to uncontrolled search path. The attack must be carried out locally. Attacks of this nature are...

7.3CVSS0.00159EPSS

Exploits0References6

Cvelist•added 2025/10/19 8:32 a.m.•9 views

CVE-2025-11940 LibreWolf Installer setup.nsi uncontrolled search path

7.3CVSS0.00159EPSS

Exploits0References6

Vulnrichment•added 2025/10/19 8:32 a.m.•2 views

CVE-2025-11940 LibreWolf Installer setup.nsi uncontrolled search path

7.3CVSS6.6AI score0.00159EPSS

Exploits0References6

CNNVD•added 2025/10/19 12:0 a.m.•3 views

LibreWolf 代码问题漏洞

LibreWolf is a Firefox-based web browser open-sourced by LibreWolf. A code issue vulnerability exists in LibreWolf version 143.0.4-1 and earlier, which stems from an uncontrolled search path for an unknown function in the file assets/setup.nsi, which could lead to a local attack...

7.3CVSS6.7AI score0.00159EPSS

Exploits0References7

OSV•added 2025/10/16 2:15 p.m.•6 views

AZL-68772 CVE-2025-11839 affecting package binutils 2.41-10

A security flaw has been discovered in GNU Binutils 2.45. Impacted is the function tgtagtype of the file prdbg.c. Performing a manipulation results in unchecked return value. The attack needs to be approached locally. The exploit has been released to the public and may be used for attacks...

5.5CVSS5.5AI score0.00251EPSS

Exploits1References1

CNNVD•added 2025/10/16 12:0 a.m.•3 views

GNU Binutils 安全漏洞

GNU Binutils GNU Binary Utilities is a set of programming language utility programs developed by the American GNU community. The programs are primarily used to work with target files in a variety of formats, and are provided with linkers, assemblers, and other tools for target files and archives....

5.5CVSS3.9AI score0.00251EPSS

Exploits1References8

RedhatCVE•added 2025/10/15 5:44 p.m.•5 views

CVE-2025-59253

Improper access control in Microsoft Windows Search Component allows an authorized attacker to deny service locally...

5.5CVSS6.8AI score0.00307EPSS

Exploits0References1

RedhatCVE•added 2025/10/15 5:44 p.m.•5 views

CVE-2025-59190

Improper input validation in Microsoft Windows Search Component allows an unauthorized attacker to deny service locally...

5.5CVSS6.8AI score0.00457EPSS

Exploits0References1

RedhatCVE•added 2025/10/15 5:44 p.m.•1 views

CVE-2025-55334

Cleartext storage of sensitive information in Windows Kernel allows an unauthorized attacker to bypass a security feature locally...

6.2CVSS6.5AI score0.0032EPSS

Exploits0References1

RedhatCVE•added 2025/10/15 5:44 p.m.•4 views

CVE-2025-50175

Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally...

7.8CVSS7.1AI score0.00384EPSS

Exploits0References1

RedhatCVE•added 2025/10/15 5:44 p.m.•3 views

CVE-2025-59497

Time-of-check time-of-use toctou race condition in Microsoft Defender for Linux allows an authorized attacker to deny service locally...

7CVSS6.7AI score0.00188EPSS

Exploits0References1

RedhatCVE•added 2025/10/15 5:44 p.m.•2 views

CVE-2025-59275

Improper validation of specified type of input in Windows Authentication Methods allows an authorized attacker to elevate privileges locally...

7.8CVSS6.9AI score0.00249EPSS

Exploits0References1

RedhatCVE•added 2025/10/15 5:44 p.m.•3 views

CVE-2025-59494

Improper access control in Azure Monitor Agent allows an authorized attacker to elevate privileges locally...

7.8CVSS6.9AI score0.00574EPSS

Exploits0References1

RedhatCVE•added 2025/10/15 5:44 p.m.•1 views

CVE-2025-59207

Untrusted pointer dereference in Windows Kernel allows an authorized attacker to elevate privileges locally...

7.8CVSS6.9AI score0.00387EPSS

Exploits0References1

RedhatCVE•added 2025/10/15 5:44 p.m.•7 views

CVE-2025-55697

Heap-based buffer overflow in Azure Local allows an authorized attacker to elevate privileges locally...

7.8CVSS7.4AI score0.00325EPSS

Exploits0References1

RedhatCVE•added 2025/10/15 5:43 p.m.•3 views

CVE-2025-53782

Incorrect implementation of authentication algorithm in Microsoft Exchange Server allows an unauthorized attacker to elevate privileges locally...

8.4CVSS7AI score0.00325EPSS

Exploits0References1

RedhatCVE•added 2025/10/15 5:43 p.m.•2 views

CVE-2025-48004

Use after free in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally...

7.4CVSS7AI score0.01783EPSS

Exploits0References1

EUVD•added 2025/10/14 6:30 p.m.•4 views

EUVD-2025-34271

Improper validation of specified type of input in Windows Authentication Methods allows an authorized attacker to elevate privileges locally...

7.8CVSS9.1AI score0.00249EPSS

Exploits0References2

EUVD•added 2025/10/14 6:30 p.m.•4 views

EUVD-2025-34270

Improper validation of specified type of input in Windows Authentication Methods allows an authorized attacker to elevate privileges locally...

7.8CVSS9.1AI score0.00249EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by