CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

CVE•added 2026/03/20 4:21 p.m.•42 views

CVE-2026-22898

The CVE-2026-22898 entry concerns QVR Pro with a missing authentication for a critical function. Affected component is the QVR Pro software; remote attackers could gain system access due to insufficient authentication. The vulnerability carries a CVSS v4.0 base score of 9.3 (CRITICAL) with networ...

9.8CVSS5.9AI score0.00593EPSS

Exploits0References1Affected Software1

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2020-21325

Malware in sbrugna...

7.5CVSS7.5AI score0.00634EPSS

Exploits1References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-29115

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00289EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•0 views

EUVD-2025-1684

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.01152EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-14270

Malicious code in bioql PyPI...

6.9CVSS6.6AI score0.00156EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-49632

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00827EPSS

Exploits0References2

CVE•added 2025/05/14 6:7 p.m.•28 views

CVE-2025-0132

CVE-2025-0132 affects Palo Alto Networks Cortex XDR Broker VM, exposing a missing authentication flaw that allows an unauthenticated attacker with network access to disable certain internal services on the Broker VM. The CVE is documented with a CVSS 4.0 base vector (AV:N/AC:L/PR:N/UI:N/SI:N/VI:L...

6.9CVSS6.8AI score0.00364EPSS

Exploits0References1

CISA KEV Catalog•added 2025/05/05 12:0 a.m.•34 views

Langflow Missing Authentication Vulnerability

Langflow contains a missing authentication vulnerability in the /api/v1/validate/code endpoint that allows a remote, unauthenticated attacker to execute arbitrary code via crafted HTTP requests...

9.8CVSS10AI score0.92665EPSS

In wildExploits33

Vulnrichment•added 2025/01/15 7:23 a.m.•4 views

CVE-2025-0355

Missing Authentication for Critical Function vulnerability in NEC Corporation Aterm WG2600HS Ver.1.7.2 and earlier, WF1200CRS Ver.1.6.0 and earlier, WG1200CRS Ver.1.5.0 and earlier, GB1200PE Ver.1.3.0 and earlier, WG2600HP4 Ver.1.4.2 and earlier, WG2600HM4 Ver.1.4.2 and earlier, WG2600HS2 Ver.1.3...

7.5CVSS7.6AI score0.00174EPSS

Exploits0References1

CISA KEV Catalog•added 2024/12/18 12:0 a.m.•23 views

NUUO NVRmini2 Devices Missing Authentication Vulnerability

NUUO NVRmini2 devices contain a missing authentication vulnerability that allows an unauthenticated attacker to upload an encrypted TAR archive, which can be abused to add arbitrary users...

10CVSS9.7AI score0.53877EPSS

In wildExploits3

CISA KEV Catalog•added 2024/11/25 12:0 a.m.•13 views

Array Networks AG and vxAG ArrayOS Missing Authentication for Critical Function Vulnerability

Array Networks AG and vxAG ArrayOS contain a missing authentication for critical function vulnerability that allows an attacker to read local files and execute code on the SSL VPN gateway...

9.8CVSS7.2AI score0.89289EPSS

In wildExploits0

Atlassian•added 2021/06/30 3:9 a.m.•49 views

Jira Data Center & Jira Service Management Data Center - Missing Authentication for Ehcache RMI - CVE-2020-36239

h3. Issue Summary Jira Data Center, Jira Core Data Center, Jira Software Data Center, and Jira Service Management Data Center exposed a Ehcache RMI network service which attackers, who can connect to the service, on port 40001 and potentially 40011 012, could execute arbitrary code of their choic...

9.8CVSS9.6AI score0.16173EPSS

Exploits1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by