CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

35 matches found

AstraLinux•added 2026/06/19 11:10 a.m.•6 views

Astra Linux – Vulnerability in Firefox

A duplicate SystemPrincipal object can be created when parsing a non-system HTML document using DOMParser::ParseFromSafeString. This could result in bypassing web security checks. This vulnerability affects Firefox versions earlier than 109...

6.5CVSS6.2AI score0.00463EPSS

Exploits0References2

Positive Technologies•added 2026/06/12 12:0 a.m.•13 views

PT-2026-48875

⚠️ If you use hidden volumes in VeraCrypt: Versions 1.26.6 – 1.26.28 had a regression that could weaken plausible deniability of hidden volumes inside file containers CVE-2026-54073. Fixed in 1.26.29. If this applies to you, recreate the container + hidden volume with the new version and securely...

5.3AI score

Exploits0References4

Positive Technologies•added 2026/06/12 12:0 a.m.•13 views

PT-2026-48872

VeraCrypt 1.26.29 is now available!🎉 - Argon2id KDF for non-system volumes - Security fixes: CVE-2026-54073 & CVE-2026-53762 - Microsoft UEFI CA 2023 support for system encryption - Driver, EFI, Linux/macOS fixes 🔗More details at https://t.co/xdLi5dqTrX...

5.3AI score

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2020-1979

Malware in sbrugna...

3.3CVSS4.8AI score0.00127EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•12 views

EUVD-2025-30217

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00248EPSS

Exploits0References2

NVD•added 2025/09/19 3:15 a.m.•2 views

CVE-2025-59714

In Internet2 Grouper 5.17.1 before 5.20.5, group admins who are not Grouper sysadmins can configure loader jobs...

6.5CVSS0.00248EPSS

Exploits0References1

Vulnrichment•added 2025/09/19 12:0 a.m.•3 views

CVE-2025-59714

In Internet2 Grouper 5.17.1 before 5.20.5, group admins who are not Grouper sysadmins can configure loader jobs...

6.5CVSS6.5AI score0.00248EPSS

Exploits0References1

Tenable Nessus•added 2025/09/10 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2021-46787

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The AMS module has a vulnerability of improper permission control.Successful exploitation of this vulnerability may cause non-system application processes to...

7.5CVSS7.2AI score0.00688EPSS

Exploits0References2

Microsoft CVE•added 2025/09/03 9:48 p.m.•2 views

A duplicate <code>SystemPrincipal</code> object could be created when parsing a non-system html document via <code>DOMParser::ParseFromSafeString</code>. This could have lead to bypassing web security checks. This vulnerability affects Firefox < 109.

...

6.5CVSS7AI score0.00463EPSS

Exploits0

Tenable Nessus•added 2025/08/11 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2023-23604

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A duplicate SystemPrincipal object could be created when parsing a non-system html document via DOMParser::ParseFromSafeString. This could have lead to bypassin...

6.5CVSS7.6AI score0.00463EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 3:11 a.m.•4 views

CVE-2023-23604

A duplicate SystemPrincipal object could be created when parsing a non-system html document via DOMParser::ParseFromSafeString. This could have lead to bypassing web security checks. This vulnerability affects Firefox 109...

6.5CVSS6.8AI score0.00463EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 4:0 p.m.•5 views

CVE-2020-0481

In AndroidManifest.xml, there is a possible permissions bypass. This could lead to local escalation of privilege allowing a non-system app to send a broadcast it shouldn't have permissions to send, with no additional execution privileges needed. User interaction is not needed for...

3.3CVSS8.7AI score0.00127EPSS

Exploits0References1

Oracle linux•added 2024/12/16 12:0 a.m.•24 views

postgresql security update

9.2.24-9.0.1 - Backport fix for CVE-2023-7348 Orabug: 37220738 - Adds restriction on non-system views...

8.8CVSS7.2AI score0.01565EPSS

Exploits0

OSV•added 2024/03/13 5:15 p.m.•4 views

CVE-2024-0154

Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain an improper parameter initialization vulnerability. A local low privileged attacker could potentially exploit this vulnerability to read the contents of non-SMM stack memory...

3.3CVSS5.8AI score0.00203EPSS

Exploits0References1

Cvelist•added 2023/11/21 6:56 a.m.•14 views

CVE-2023-21418

Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API irissetup.cgi was vulnerable to path traversal attacks that allows for file deletion. This flaw can only be exploited after authenticating with an operator- or administrator-privileged service account. The impact...

7.1CVSS7.1AI score0.00668EPSS

Exploits0References1

SUSE CVE•added 2023/06/03 2:13 a.m.•2 views

SUSE CVE-2023-23604

6.5CVSS6.9AI score0.00463EPSS

Exploits0References4

OSV•added 2023/06/02 5:15 p.m.•1 views

CVE-2023-23604

6.5CVSS7AI score0.00463EPSS

Exploits0References2

OSV•added 2023/01/18 12:0 a.m.•1 views

UBUNTU-CVE-2023-23604

6.5CVSS7.2AI score0.00463EPSS

Exploits0References4

OSV•added 2022/05/13 3:15 p.m.•4 views

CVE-2021-46787

The AMS module has a vulnerability of improper permission control.Successful exploitation of this vulnerability may cause non-system application processes to crash...

7.5CVSS5.8AI score0.00688EPSS

Exploits0References2

UbuntuCve•added 2022/05/13 3:15 p.m.•42 views

CVE-2021-46787

The AMS module has a vulnerability of improper permission control.Successful exploitation of this vulnerability may cause non-system application processes to crash...

7.5CVSS7.1AI score0.00688EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by