CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

201 matches found

NextCloud Access Control Vulnerability

Nextcloud is an open-source, self-hosted communication platform for file synchronization and sharing developed by the German company Nextcloud. Vulnerabilities existed in versions of Nextcloud prior to 21.1.10, 22.0.11, and 23.0.3 due to access control flaws. These vulnerabilities stemmed from...

3.5CVSS5.8AI score0.00025EPSS

Exploits0References3

Tenable Nessus•added 2026/04/21 12:0 a.m.•2 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013110)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013110 advisory. In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix null pointer dereference on zero-length checksum In xdrstreamdecodeopaqueauth,...

5.6AI score0.00028EPSS

Exploits0References4

OSV•added 2026/02/21 7:18 a.m.•4 views

CVE-2026-27467 BigBlueButton: Audio from participants to the server initially unmuted

BigBlueButton is an open-source virtual classroom. In versions 3.0.19 and below, when first joining a session with the microphone muted, the client sends audio to the server regardless of mute state. Media is discarded at the server side, so it isn't audible to any participants, but this may allo...

2CVSS5.5AI score0.00036EPSS

Exploits0References4

Tenable Nessus•added 2026/01/16 12:0 a.m.•1 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001049)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001049 advisory. Race condition in the vopioctl function in drivers/misc/mic/vop/vopvringh.c in the MIC VOP driver in the Linux kernel before 4.6.1 allows local users to obtain...

6.3CVSS7.3AI score0.00048EPSS

Exploits0References15

Tenable Nessus•added 2026/01/15 12:0 a.m.•1 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002971)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002971 advisory. Race condition in the vopioctl function in drivers/misc/mic/vop/vopvringh.c in the MIC VOP driver in the Linux kernel before 4.6.1 allows local users to obtain...

6.3CVSS7.3AI score0.00048EPSS

Exploits0References15

SUSE CVE•added 2025/12/24 12:29 a.m.•1 views

SUSE CVE-2025-34458

wb2osz/direwolf Dire Wolf versions up to and including 1.8, prior to commit 3658a87, contain a reachable assertion vulnerability in the APRS MIC-E decoder function aprsmice located in src/decodeaprs.c. When processing a specially crafted AX.25 frame containing a MIC-E message with an empty or...

8.7CVSS6.6AI score0.00181EPSS

Exploits0References3

EUVD•added 2025/12/23 12:30 a.m.•1 views

EUVD-2025-204761

8.7CVSS6.2AI score0.00181EPSS

Exploits0References5

Tenable Nessus•added 2025/12/23 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2025-34458

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wb2osz/direwolf Dire Wolf versions up to and including 1.8, prior to commit 3658a87, contain a reachable assertion vulnerability in the APRS MIC-E decoder...

8.7CVSS5.7AI score0.00181EPSS

Exploits0References2

OSV•added 2025/12/22 10:16 p.m.•1 views

CVE-2025-34458

8.7CVSS6.6AI score

Exploits0References4

NVD•added 2025/12/22 10:16 p.m.•1 views

CVE-2025-34458

8.7CVSS0.00181EPSS

Exploits0References4

OSV•added 2025/12/22 10:16 p.m.•1 views

DEBIAN-CVE-2025-34458

8.7CVSS5.2AI score0.00181EPSS

Exploits0References1

UbuntuCve•added 2025/12/22 10:16 p.m.•1 views

CVE-2025-34458

8.7CVSS5.8AI score0.00181EPSS

Exploits0References5

Cvelist•added 2025/12/22 9:29 p.m.•18 views

CVE-2025-34458 wb2osz/direwolf <= 1.8.1 Reachable Assertion DoS

8.7CVSS0.00181EPSS

Exploits0References4

CVE•added 2025/12/22 9:29 p.m.•5 views

CVE-2025-34458

Summary: CVE-2025-34458 affects wb2osz/direwolf (Dire Wolf) up to version 1.8, prior to commit 3658a87. Affected component is the APRS MIC-E decoder function aprs_mic_e() in src/decode_aprs.c. Root cause: reachable assertion that checks for a non-empty comment in an AX.25 frame containing a MIC-E...

8.7CVSS6.3AI score0.00181EPSS

Exploits0References4

Positive Technologies•added 2025/12/22 12:0 a.m.•1 views

PT-2025-52720

Name of the Vulnerable Software and Affected Versions wb2osz/direwolf Dire Wolf versions up to and including 1.8, prior to commit 3658a87 Description The software contains a reachable assertion issue in the APRS MIC-E decoder function aprs mic e located in src/decode aprs.c. Processing a speciall...

8.7CVSS6.6AI score0.00181EPSS

Exploits0References13

NVD•added 2025/12/13 4:16 p.m.•3 views

CVE-2025-36751

Encryption is missing on the configuration interface for Growatt ShineLan-X and MIC 3300TL-X. This allows an attacker with access to the network to intercept and potentially manipulate communication requests between the inverter and its cloud endpoint...

9.4CVSS0.00009EPSS

Exploits0References1

Positive Technologies•added 2025/12/13 12:0 a.m.•2 views

PT-2025-51100

9.4CVSS6.8AI score0.00009EPSS

Exploits0References1

SUSE CVE•added 2025/11/14 12:25 a.m.•4 views

SUSE CVE-2025-40129

In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix null pointer dereference on zero-length checksum In xdrstreamdecodeopaqueauth, zero-length checksum.len causes checksum.data to be set to NULL. This triggers a NPD when accessing checksum.data in gsskrb5verifymicv2...

7.5CVSS6.4AI score0.00028EPSS

Exploits0References75

NVD•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40129

0.00028EPSS

Exploits0References4

OSV•added 2025/11/12 11:15 a.m.•1 views

UBUNTU-CVE-2025-40129

5.7AI score0.00028EPSS

Exploits0References22

Rows per page