CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

vulnersOsv•added 2026/01/07 5:47 p.m.•4 views

ai.pipestream.module:module-chunker (=0.1.1), ai.pipestream.module:module-echo (=0.1.1) +454 more potentially affected by CVE-2025-66560 via io.quarkus.vertx.utils:quarkus-vertx-utils (>=3.28.0.CR1 <=3.30.8)

io.quarkus.vertx.utils:quarkus-vertx-utils MAVEN version =3.28.0.CR1, =0.0.2, =0.1.1, =0.1.1, =0.2.0, =0.2.0, =0.1.1, =0.1.1, =0.1.7, =0.1.9 and more Source cves: CVE-2025-66560 Source advisory: SNYK:JAVA-IOQUARKUSVERTXUTILS-14897052...

7.5CVSS5.8AI score0.00012EPSS

vulnersOsv•added 2026/01/07 5:47 p.m.•4 views

ai.timefold.solver:timefold-solver-quarkus-benchmark-integration-test (>=1.12.0 <=1.20.1), ai.timefold.solver:timefold-solver-quarkus-devui-integration-test (>=1.12.0 <=1.20.1) +912 more potentially affected by CVE-2025-66560 via io.quarkus.vertx.utils:quarkus-vertx-utils (>=3.12.0 <=3.20.4)

io.quarkus.vertx.utils:quarkus-vertx-utils MAVEN version =3.12.0, =1.12.0, =1.12.0, =1.12.0, =1.12.0, =1.12.0, =1.12.0, =0.0.1, =0.0.4, =0.0.1, =0.0.1, =0.0.1, =3.15.3, =3.15.3, =0.2.0.0, =0.4.8.0, =0.7.0.2 and more Source cves: CVE-2025-66560 Source advisory: SNYK:JAVA-IOQUARKUSVERTXUTILS-148970...

7.5CVSS5.8AI score0.00012EPSS

EUVD•added 2026/01/07 12:31 p.m.•3 views

EUVD-2025-206248

Unverified Password Change vulnerability in Progress MOVEit Transfer on Windows REST API modules.This issue affects MOVEit Transfer: from 2023.1.0 before 2023.1.3, from 2023.0.0 before 2023.0.8, from 2022.1.0 before 2022.1.11, from 2022.0.0 before 2022.0.10...

3.7CVSS6.5AI score0.00018EPSS

RedhatCVE•added 2026/01/07 9:42 a.m.•4 views

CVE-1999-0342

Linux PAM modules allow local users to gain root access using temporary files...

6.2CVSS7AI score0.0006EPSS

EUVD•added 2026/01/07 3:30 a.m.•1 views

EUVD-2025-206258

Uncontrolled Search Path Element vulnerability in Altera Quartus Prime Pro on Windows System Console modules allows Search Order Hijacking.This issue affects Quartus Prime Pro: from 17.0 through 25.1.1...

6.7CVSS6.4AI score0.00013EPSS

NVD•added 2026/01/07 2:2 a.m.•2 views

CVE-2025-14605

6.7CVSS0.00013EPSS

Tenable Nessus•added 2026/01/07 12:0 a.m.•1 views

EulerOS 2.0 SP9 : pam (EulerOS-SA-2026-1010)

According to the versions of the pam package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A Local Privilege Escalation LPE vulnerability has been discovered in pam-config within Linux Pluggable Authentication Modules PAM. This flaw allows a...

7.8CVSS8.1AI score0.0009EPSS

Exploits13References2

Vulnrichment•added 2026/01/06 9:15 p.m.•2 views

CVE-2025-14605 Quartus Prime Pro Edition Advisory

6.7CVSS6.6AI score0.00013EPSS

CVE•added 2026/01/06 9:15 p.m.•10 views

CVE-2025-14605

CVE-2025-14605 affects Altera Quartus Prime Pro on Windows, specifically System Console modules, with versions 17.0 through 25.1.1 vulnerable to an Uncontrolled Search Path Element, enabling a Search Order Hijacking scenario. The root cause is the presence of an uncontrolled search path element t...

6.7CVSS6.6AI score0.00013EPSS

Exploits0References1Affected Software1

RedhatCVE•added 2026/01/06 3:9 p.m.•4 views

CVE-2025-15029

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Centreon Infra Monitoring Awie export modules allows SQL Injection to unauthenticated user. This issue affects Infra Monitoring: from 25.10.0 before 25.10.2, from 24.10.0 before 24.10.3, from 24.04...

9.8CVSS8.1AI score0.0012EPSS

Rapid7 Blog•added 2026/01/05 8:31 p.m.•16 views

Metasploit 2025 Annual Wrap-Up

Hard to believe it's that time again, and that Metasploit Framework will see the dawn of another Annual Wrap-Up and a New Year. All of the metrics and modules you see here would in large part not be possible without the dedicated community members who care about the Framework and its mission on a...

9.1AI score

NVD•added 2026/01/05 3:15 p.m.•2 views

CVE-2025-15029

9.8CVSS0.0012EPSS

EUVD•added 2026/01/05 2:34 p.m.•2 views

EUVD-2026-0851

9.8CVSS7.6AI score0.0012EPSS

EUVD•added 2026/01/05 10:15 a.m.•3 views

EUVD-2026-0871

Missing Authorization vulnerability in Centreon Infra Monitoring Administration parameters API endpoint modules allows Accessing Functionality Not Properly Constrained by ACLs, resulting in Information Disclosure like downtime or acknowledgement configurations. This issue affects Infra Monitoring...

5.3CVSS6.1AI score0.00015EPSS

Positive Technologies•added 2026/01/05 12:0 a.m.•3 views

PT-2026-1287

Name of the Vulnerable Software and Affected Versions Centreon Infra Monitoring versions 25.10.0 through 25.10.0 Centreon Infra Monitoring versions 24.10.0 through 24.10.3 Centreon Infra Monitoring versions 24.04.0 through 24.04.7 Description The software contains an Improper Neutralization of...

6.8CVSS5.3AI score0.00016EPSS

Exploits0References4

Positive Technologies•added 2026/01/05 12:0 a.m.•2 views

PT-2026-1289

Name of the Vulnerable Software and Affected Versions Centreon Infra Monitoring versions 24.04.0 through 24.04.3 Centreon Infra Monitoring versions 24.10.0 through 24.10.3 Centreon Infra Monitoring versions 25.10.0 through 25.10.2 Description A flaw exists in Centreon Infra Monitoring Awie export...

9.8CVSS7.2AI score0.0012EPSS

Exploits0References9

Packet Storm News•added 2026/01/02 12:0 a.m.•3 views

Scapy Packet Manipulation Tool 2.7.0

Scapy is a powerful interactive packet manipulation tool, packet generator, network scanner, network discovery tool, and packet sniffer. It provides classes to interactively create packets or sets of packets, manipulate them, send them over the wire, sniff other packets from the wire, match answe...

6.8AI score