CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

48 matches found

NVD•added 2026/05/27 2:16 p.m.•8 views

CVE-2024-56462

IBM QRadar 7.5.0 through 7.5.0 UP15 Interim Fix 002 could allow a privileged user to upload a malicious backup archive that could be restored and used to gain access to the underlying operating system...

8.8CVSS0.00463EPSS

Exploits0References1

Cvelist•added 2026/05/27 1:50 p.m.•40 views

CVE-2024-56462 IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

7.2CVSS0.00463EPSS

Exploits0References1

EUVD•added 2026/05/27 1:50 p.m.•10 views

EUVD-2024-55601

7.2CVSS5.8AI score0.00463EPSS

Exploits0References1

CVE•added 2026/05/27 1:50 p.m.•17 views

CVE-2024-56462

IBM QRadar SIEM 7.5.0 to 7.5.0 UP15 Interim Fix 002 contains a vulnerability where a privileged user can upload a malicious backup archive, which could be restored to gain access to the underlying operating system. Affected versions: 7.5.0 through UP15 IF002. Root cause and exact remediation are ...

8.8CVSS5.8AI score0.00463EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2026/05/27 12:0 a.m.•10 views

PT-2026-43685

Name of the Vulnerable Software and Affected Versions IBM QRadar versions 7.5.0 through 7.5.0 UP15 Interim Fix 002 Description A privileged user can upload a malicious backup archive. When this archive is restored, it can be used to gain unauthorized access to the underlying operating system...

8.8CVSS5.4AI score0.00463EPSS

Exploits0References3

RedhatCVE•added 2026/05/15 12:57 p.m.•12 views

CVE-2026-41684

A flaw was found in Incus, a system container and virtual machine manager. An authenticated user with permissions to import instance backups could craft a malicious backup archive. This archive, containing a valid inline configuration but a malformed legacy backup file, could cause the Incus daem...

6.5CVSS5.8AI score0.00408EPSS

Exploits1References2

CVE•added 2026/02/11 10:57 p.m.•18 views

CVE-2025-43537

CVE-2025-43537 describes a path handling issue fixed by improved validation in Apple OS updates. Affected components relate to restoring a maliciously crafted backup file that could modify protected system files. Public references from Apple confirm fixes in iOS 18.7.5 and iPadOS 18.7.5, and simi...

5.5CVSS5.8AI score0.00419EPSS

Exploits0References2Affected Software2

RedhatCVE•added 2026/01/10 5:40 a.m.•6 views

CVE-2025-55125

This vulnerability allows a Backup or Tape Operator to perform remote code execution RCE as root by creating a malicious backup configuration file...

9.8CVSS8.1AI score0.00801EPSS

Exploits0References1

NVD•added 2026/01/08 5:15 p.m.•3 views

CVE-2025-55125

This vulnerability allows a Backup or Tape Operator to perform remote code execution RCE as root by creating a malicious backup configuration file...

9.8CVSS0.00801EPSS

Exploits0References1

OSV•added 2026/01/08 5:15 p.m.•4 views

CVE-2025-55125

This vulnerability allows a Backup or Tape Operator to perform remote code execution RCE as root by creating a malicious backup configuration file...

9.8CVSS6.4AI score0.00801EPSS

Exploits0References1

Vulnrichment•added 2026/01/08 4:18 p.m.•4 views

CVE-2025-55125

This vulnerability allows a Backup or Tape Operator to perform remote code execution RCE as root by creating a malicious backup configuration file...

7.8CVSS7.8AI score0.00801EPSS

Exploits0References1

CNNVD•added 2026/01/08 12:0 a.m.•3 views

Veeam Backup & Replication 安全漏洞

Veeam Backup & Replication is a backup and replication software from Veeam USA. A security vulnerability exists in Veeam Backup & Replication that stems from malicious content in backup configuration files, which could lead to remote code execution attacks...

9.8CVSS9.2AI score0.00801EPSS

Exploits0References2

RedhatCVE•added 2025/11/07 1:46 p.m.•3 views

CVE-2025-63601

Snipe-IT before version 8.3.3 contains a remote code execution vulnerability that allows an authenticated attacker to upload a malicious backup file containing arbitrary files and execute system commands...

9.9CVSS8.3AI score0.00525EPSS

Exploits0References1

Cvelist•added 2025/11/05 12:0 a.m.•5 views

CVE-2025-63601

0.00525EPSS

Exploits0References4

Positive Technologies•added 2025/11/05 12:0 a.m.•5 views

PT-2025-45120

Name of the Vulnerable Software and Affected Versions Snipe-IT versions prior to 8.3.3 Description An authenticated attacker can execute system commands by uploading a malicious backup file containing arbitrary files. The issue is a remote code execution that allows for arbitrary file uploads and...

9.9CVSS8.2AI score0.00525EPSS

Exploits0References8

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2020-26930

Malware in sbrugna...

7.5CVSS7.5AI score0.01952EPSS

Exploits1References2

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-11455

Malicious code in bioql PyPI...

7.2CVSS6.5AI score0.00327EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•8 views

EUVD-2025-6513

Malicious code in bioql PyPI...

8.8CVSS7.4AI score0.0054EPSS

Exploits0References6

RedhatCVE•added 2025/05/23 4:54 a.m.•10 views

CVE-2023-2638

Rockwell Automation's FactoryTalk System Services does not verify that a backup configuration archive is password protected. Improper authorization in FTSSBackupRestore.exe may lead to the loading of malicious configuration archives. This vulnerability may allow a local, authenticated non-admin...

5.9CVSS6.7AI score0.00197EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 10:3 p.m.•6 views

CVE-2022-30075

In TP-Link Router AX50 firmware 210730 and older, import of a malicious backup file via web interface can lead to remote code execution due to improper validation...

8.8CVSS7.8AI score0.36947EPSS

Exploits7References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by