CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.0-8.0.42, 8.4.0-8.4.5 and 9.0.0-9.3.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

5.5CVSS5.7AI score0.00425EPSS

Exploits0References5

OSV•added 2025/09/19 1:13 p.m.•2 views

OESA-2025-2300 edk2 security update

EDK II is a modern, feature-rich, cross-platform firmware development environment for the UEFI and PI specifications. Security Fixes: EDK2 contains a vulnerability in BIOS where a user may cause an Integer Overflow or Wraparound by network means. A successful exploitation of this vulnerability ma...

7CVSS7.5AI score0.00193EPSS

Exploits0References3

Amazon•added 2025/09/16 12:0 a.m.•3 views

Medium: edk2

Issue Overview: EDK2 contains a vulnerability in BIOS where a user may cause an Integer Overflow or Wraparound by network means. A successful exploitation of this vulnerability may lead to denial of service. CVE-2024-38805 Affected Packages: edk2 Note: This advisory is applicable to Amazon Linux ...

6.3CVSS6.8AI score0.00193EPSS

Exploits0

OSV•added 2025/09/12 2:15 a.m.•6 views

CVE-2025-55319

Ai command injection in Agentic AI and Visual Studio Code allows an unauthorized attacker to execute code over a network...

9.8CVSS8.1AI score0.00849EPSS

Exploits0References1

RedhatCVE•added 2025/09/11 5:29 p.m.•2 views

CVE-2025-54101

Use after free in Windows SMBv3 Client allows an authorized attacker to execute code over a network...

4.8CVSS7.5AI score0.02351EPSS

Exploits0References1

RedhatCVE•added 2025/09/07 9:24 p.m.•3 views

CVE-2025-53791

Improper access control in Microsoft Edge Chromium-based allows an unauthorized attacker to bypass a security feature over a network...

4.7CVSS6.5AI score0.00364EPSS

Exploits0References1

Tenable Nessus•added 2025/08/27 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2019-8287

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - TightVNC code version 1.3.10 contains global buffer overflow in HandleCoRREBBP macro function, which can potentially result code execution. This attack appear t...

9.8CVSS7.5AI score0.19461EPSS

Exploits0References2

Tenable Nessus•added 2025/08/27 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2019-15693

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - TigerVNC version prior to 1.10.1 is vulnerable to heap buffer overflow, which occurs in TightDecoder::FilterGradient. Exploitation of this vulnerability could...

7.2CVSS7.2AI score0.04277EPSS

Exploits1References2

Tenable Nessus•added 2025/08/26 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2019-15695

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - TigerVNC version prior to 1.10.1 is vulnerable to stack buffer overflow, which could be triggered from CMsgReader::readSetCursor. This vulnerability occurs due ...

7.2CVSS7.6AI score0.04485EPSS

Exploits1References2

OSV•added 2025/08/21 8:15 p.m.•1 views

CVE-2025-55231

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Storage allows an unauthorized attacker to execute code over a network...

7.5CVSS6.1AI score0.00447EPSS

Exploits0References1

Tenable Nessus•added 2025/08/19 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2022-21340

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are...

5.3CVSS6.2AI score0.07748EPSS

Exploits0References2

NVD•added 2025/08/12 6:15 p.m.•3 views

CVE-2025-53766

Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code over a network...

9.8CVSS0.06706EPSS

Exploits0References1

OSV•added 2025/08/12 6:15 p.m.•4 views

CVE-2025-53727

Improper neutralization of special elements used in an sql command 'sql injection' in SQL Server allows an authorized attacker to elevate privileges over a network...

8.8CVSS5.8AI score0.01017EPSS

Exploits0References1

OSV•added 2025/08/12 6:15 p.m.•5 views

CVE-2025-49757

Heap-based buffer overflow in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to execute code over a network...

8.8CVSS6.2AI score0.00891EPSS

Exploits0References1

OSV•added 2025/08/12 3:15 p.m.•2 views

UBUNTU-CVE-2024-38805

EDK2 contains a vulnerability in BIOS where a user may cause an Integer Overflow or Wraparound by network means. A successful exploitation of this vulnerability may lead to denial of service...

6.3CVSS6.8AI score0.00193EPSS

Exploits0References4

Debian CVE•added 2025/08/12 2:13 p.m.•2 views

CVE-2024-38805

EDK2 contains a vulnerability in BIOS where a user may cause an Integer Overflow or Wraparound by network means. A successful exploitation of this vulnerability may lead to denial of service...

6.3CVSS6.6AI score0.00193EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by