CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

CVE-2026-42941

The Danelec MacGregor Voyage Data Recorder device includes a default username and password, with no enforced password change...

8.7CVSS5.4AI score0.00018EPSS

Exploits0References1

ATTACKERKB•added 2026/05/19 1:45 p.m.•6 views

CVE-2026-44159

Tyler Identity Local TID-L uses documented, default administrative credentials. Users are not required to change the credentials before deployment. TID-L has not been distributed since December 2020, and has not been supported since 2021...

9.8CVSS5.8AI score0.00054EPSS

Exploits0References3

EUVD•added 2026/05/19 1:45 p.m.•9 views

EUVD-2026-30937

9.8CVSS5.8AI score0.00054EPSS

Exploits0References2

Positive Technologies•added 2026/05/19 12:0 a.m.•6 views

PT-2026-41936

Name of the Vulnerable Software and Affected Versions Tyler Identity Local TID-L affected versions not specified Description The software uses documented, default administrative credentials, and users are not required to change these credentials before deployment. Recommendations At the moment,...

9.8CVSS5.8AI score0.00054EPSS

Exploits0References5

UbuntuCve•added 2025/10/29 11:16 p.m.•2 views

CVE-2025-58188

Validating certificate chains which contain DSA public keys can cause programs to panic, due to a interface cast that assumes they implement the Equal method. This affects programs which validate arbitrary certificate chains...

7.5CVSS7AI score0.00012EPSS

Exploits0References5

UbuntuCve•added 2025/06/11 5:15 p.m.•8 views

CVE-2025-4673

Proxy-Authorization and Proxy-Authenticate headers persisted on cross-origin redirects potentially leaking sensitive information...

6.8CVSS6.8AI score0.00074EPSS

Exploits0References2

UbuntuCve•added 2025/02/06 5:15 p.m.•10 views

CVE-2025-22866

Due to the usage of a variable time instruction in the assembly implementation of an internal function, a small number of bits of secret scalars are leaked on the ppc64le architecture. Due to the way this function is used, we do not believe this leakage is enough to allow recovery of the private...

4CVSS6.8AI score0.00022EPSS

Exploits0References10

UbuntuCve•added 2024/09/06 9:15 p.m.•6 views

CVE-2024-34155

Calling any of the Parse functions on Go source code which contains deeply nested literals can cause a panic due to stack exhaustion...

4.3CVSS6.8AI score0.00081EPSS

Exploits0References10

OSV•added 2023/09/14 8:15 p.m.•2 views

CVE-2023-37755

i-doit pro 25 and below and I-doit open 25 and below are configured with insecure default administrator credentials, and there is no warning or prompt to ask users to change the default password and account name. Unauthenticated attackers can exploit this vulnerability to obtain Administrator...

9.8CVSS5.9AI score0.01433EPSS

Exploits1References3

UbuntuCve•added 2022/12/23 12:0 a.m.•106 views

CVE-2022-40898

An issue discovered in Python Packaging Authority PyPA Wheel 0.37.1 and earlier allows remote attackers to cause a denial of service via attacker controlled input to wheel cli...

7.5CVSS6.9AI score0.00199EPSS

Exploits1References8

OSV•added 2022/08/17 9:15 p.m.•2 views

CVE-2022-2336

Softing Secure Integration Server, edgeConnector, and edgeAggregator software ships with the default administrator credentials as admin and password as admin. This allows Softing to log in to the server directly to perform administrative functions. Upon installation or upon first login, the...

9.8CVSS5.8AI score

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by