CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2136 matches found

Positive Technologies•added 2026/05/08 12:0 a.m.•5 views

PT-2026-39162

Uncontrolled resource consumption in .NET allows an unauthorized attacker to deny service over a network...

7.5CVSS6.2AI score0.03084EPSS

Exploits0References3

ATTACKERKB•added 2026/05/07 8:58 p.m.•2 views

CVE-2026-32207

Improper neutralization of input during web page generation 'cross-site scripting' in Azure Machine Learning allows an unauthorized attacker to perform spoofing over a network...

8.8CVSS5.8AI score0.00041EPSS

Exploits0References2

Github Security Blog•added 2026/05/07 4:33 a.m.•3 views

vm2 has a NodeVM require.root bypass via symlink traversal that allows sandbox escape

Summary NodeVM's require.root path restriction can be bypassed using filesystem symlinks, allowing sandboxed code to load modules from outside the allowed root directory in host context. Because path validation uses path.resolve which does not dereference symlinks but module loading uses Node's...

8.5CVSS6.4AI score0.00284EPSS

Exploits1References4Affected Software1

Positive Technologies•added 2026/05/07 12:0 a.m.•6 views

PT-2026-38463

Stack-based buffer overflow in .NET and Visual Studio allows an unauthorized attacker to deny service over a network...

7.5CVSS6.4AI score0.00256EPSS

Exploits0References3

Positive Technologies•added 2026/05/07 12:0 a.m.•6 views

PT-2026-38466

Loop with unreachable exit condition 'infinite loop' in .NET, .NET Framework, Visual Studio allows an unauthorized attacker to deny service over a network...

7.5CVSS6.2AI score0.08014EPSS

Exploits0References3

OSV•added 2026/05/06 2:46 p.m.•5 views

BIT-JAVA-MIN-2026-34282

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Networking. Supported versions that are affected are Oracle Java SE: 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK: 17.0.18 and 21.0.10;...

7.5CVSS5.8AI score0.00066EPSS

Exploits0References2

OSV•added 2026/05/06 2:46 p.m.•2 views

BIT-JAVA-2026-22018

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK:...

3.7CVSS7.3AI score0.00066EPSS

Exploits0References2

OSV•added 2026/05/06 2:46 p.m.•0 views

BIT-JAVA-2026-21945

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Security. Supported versions that are affected are Oracle Java SE: 8u471, 8u471-b50, 8u471-perf, 11.0.29, 17.0.17, 21.0.9, 25.0.1; Oracle GraalVM for JDK: 17.0.17 an...

7.5CVSS6.5AI score0.00089EPSS

Exploits0References3

OSV•added 2026/05/06 2:46 p.m.•2 views

BIT-JAVA-2026-21933

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Networking. Supported versions that are affected are Oracle Java SE: 8u471, 8u471-b50, 8u471-perf, 11.0.29, 17.0.17, 21.0.9, 25.0.1; Oracle GraalVM for JDK: 17.0.17...

6.1CVSS6.5AI score0.00016EPSS

Exploits0References3

OSV•added 2026/05/06 2:45 p.m.•1 views

BIT-JAVA-2025-30752

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK product of Oracle Java SE component: Compiler. The supported version that is affected is Oracle Java SE: 24.0.1; Oracle GraalVM for JDK: 24.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...

3.7CVSS7.2AI score0.00254EPSS

Exploits0References2

OSV•added 2026/05/06 2:44 p.m.•1 views

BIT-JAVA-MIN-2024-21144

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Concurrency. Supported versions that are affected are Oracle Java SE: 8u411, 8u411-perf, 11.0.23; Oracle GraalVM Enterprise Edition: 20.3.14 and 21.3.10. Difficult to exploit vulnerability...

3.7CVSS6.8AI score0.00048EPSS

Exploits0References4

OSV•added 2026/05/06 2:44 p.m.•2 views

BIT-JAVA-2024-21140

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u411, 8u411-perf, 11.0.23, 17.0.11, 21.0.3, 22.0.1; Oracle GraalVM for JDK: 17.0.11, 21.0.3, 22.0....

4.8CVSS6.8AI score0.00568EPSS

Exploits0References4

OSV•added 2026/05/06 2:44 p.m.•1 views

BIT-JAVA-MIN-2024-20919

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u391, 8u391-perf, 11.0.21, 17.0.9, 21.0.1; Oracle GraalVM for JDK: 17.0.9, 21.0.1; Oracle GraalVM...

5.9CVSS6.4AI score0.00156EPSS

Exploits0References5

OSV•added 2026/05/06 2:43 p.m.•1 views

BIT-JAVA-MIN-2023-22036

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE component: Utility. Supported versions that are affected are Oracle Java SE: 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise Edition: 20.3.10, 21.3.6, 22.3.2; Oracle GraalVM...

3.7CVSS6.2AI score0.00104EPSS

Exploits0References7

OSV•added 2026/05/06 2:43 p.m.•2 views

BIT-JAVA-2022-39399

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Networking. Supported versions that are affected are Oracle Java SE: 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Difficult to exploit vulnerabilit...

3.7CVSS6.5AI score0.00215EPSS

Exploits0References6

OSV•added 2026/05/06 2:43 p.m.•4 views

BIT-JAVA-2022-21341

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Serialization. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability...

5.3CVSS6.5AI score0.00143EPSS

Exploits0References7

OSV•added 2026/05/06 2:42 p.m.•0 views

BIT-JAVA-2022-21271

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows...

5.3CVSS6.5AI score0.01653EPSS

Exploits0References5

OSV•added 2026/05/06 2:42 p.m.•2 views

BIT-JAVA-2021-35559

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Swing. Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allows unauthenticated...

5.3CVSS6.8AI score0.00117EPSS

Exploits0References14

OSV•added 2026/05/06 2:42 p.m.•4 views

BIT-JAVA-2020-2830

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Concurrency. Supported versions that are affected are Java SE: 7u251, 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Easily exploitable vulnerability allows unauthenticated attacker with network access via multipl...

5.3CVSS6.7AI score0.00234EPSS

Exploits0References14

OSV•added 2026/05/06 2:42 p.m.•1 views

BIT-JAVA-MIN-2020-2767

Vulnerability in the Java SE product of Oracle Java SE component: JSSE. Supported versions that are affected are Java SE: 11.0.6 and 14. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Java SE. Successful attacks of this vulnerability...

5.8CVSS6.7AI score0.00328EPSS

Exploits0References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by