CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2006-7144

Malware in sbrugna...

1.9CVSS6.3AI score0.00042EPSS

Exploits0References3

RedhatCVE•added 2025/05/23 7:8 a.m.•8 views

CVE-2024-35150

IBM Maximo Application Suite 8.10.12, 8.11.0, 9.0.1, and 9.1.0 - Monitor Component does not neutralize output that is written to logs, which could allow an attacker to inject false log entries...

5.3CVSS6.6AI score0.0009EPSS

Exploits0References1

Vulnrichment•added 2025/02/28 4:54 p.m.•11 views

CVE-2025-23405 Dario Health USB-C Blood Glucose Monitoring System Starter Kit Android Application Improper Output Neutralization For Logs

Unauthenticated log effects metrics gathering incident response efforts and potentially exposes risk of injection attacks ex log injection...

6.9CVSS5.6AI score0.00131EPSS

Exploits0References2

Positive Technologies•added 2024/09/18 12:0 a.m.•6 views

PT-2025-29116

Name of the Vulnerable Software and Affected Versions: Apache HTTP Server versions prior to 2.4.63 Description: Insufficient escaping of user-supplied data in the mod ssl module can allow an untrusted SSL/TLS client to insert escape characters into log files under certain configurations. This...

7.8CVSS7.5AI score0.00651EPSS

Exploits0References142

Cvelist•added 2020/01/30 12:33 a.m.•11 views

CVE-2020-8445

In OSSEC-HIDS 2.7 through 3.5.0, the OSCleanMSG function in ossec-analysisd doesn't remove or encode terminal control characters or newlines from processed log messages. In many cases, those characters are later logged. Because newlines \n are permitted in messages processed by ossec-analysisd, i...

9.8AI score0.00988EPSS

Exploits1References4