Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

49 matches found

RedhatCVE
RedhatCVEadded 2025/12/15 11:33 p.m.2 views

CVE-2025-67900

NXLog Agent before 6.11 can load a file specified by the OPENSSLCONF environment variable...

8.1CVSS6.9AI score0.00014EPSS
Exploits0References1
EUVD
EUVDadded 2025/12/15 12:30 a.m.1 views

EUVD-2025-203315

NXLog Agent before 6.11 can load a file specified by the OPENSSLCONF environment variable...

8.1CVSS6.4AI score0.00014EPSS
Exploits0References2
NVD
NVDadded 2025/12/14 11:15 p.m.3 views

CVE-2025-67900

NXLog Agent before 6.11 can load a file specified by the OPENSSLCONF environment variable...

8.1CVSS0.00014EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/12/14 10:48 p.m.1 views

CVE-2025-67900

NXLog Agent before 6.11 can load a file specified by the OPENSSLCONF environment variable...

8.1CVSS6.5AI score0.00014EPSS
Exploits0References1
CVE
CVEadded 2025/12/14 10:48 p.m.5 views

CVE-2025-67900

NXLog Agent before 6.11 is affected by a vulnerability where the process can load a file specified by the OPENSSL_CONF environment variable. This allows manipulation of the OpenSSL configuration, with potential impact on cryptographic operations. Affected product: NXLog Agent; vulnerable version(...

8.1CVSS6.5AI score0.00014EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/12/14 10:48 p.m.11 views

CVE-2025-67900

NXLog Agent before 6.11 can load a file specified by the OPENSSLCONF environment variable...

8.1CVSS0.00014EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/12/14 12:0 a.m.1 views

NXLog Agent 安全漏洞

NXLog Agent is a log management software from NXLog USA. A security vulnerability exists in NXLog Agent versions prior to 6.11, which originates from a file specified by the loadable OPENSSLCONF environment variable...

8.1CVSS6.6AI score0.00014EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2025/12/14 12:0 a.m.2 views

PT-2025-51178

Name of the Vulnerable Software and Affected Versions NXLog Agent versions prior to 6.11 Description NXLog Agent versions before 6.11 are susceptible to a local issue that allows attackers to manipulate the OpenSSL configuration. The issue involves the loading of a file specified by the OPENSSL...

8.1CVSS6.1AI score0.00014EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.15 views

EUVD-2023-37011

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00118EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-37012

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00056EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-37013

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00056EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 4:37 p.m.6 views

CVE-2020-35488

The fileop module of the NXLog service in NXLog Community Edition 2.10.2150 allows remote attackers to cause a denial of service daemon crash via a crafted Syslog payload to the Syslog service. This attack requires a specific configuration. Also, the name of the directory created must use a Syslo...

7.5CVSS6.7AI score0.19392EPSS
Exploits3
CNVD
CNVDadded 2023/10/07 12:0 a.m.13 views

Cross-Site Request Forgery Vulnerability in NXLog Manager

NXLog Manager is a solution that can be used from a browser to easily manage and monitor a large number of NXLog Enterprise instances. NXLog Manager suffers from a cross-site request forgery vulnerability that can be exploited by a remote attacker to submit a specially crafted malicious request...

6.5CVSS6.9AI score0.00056EPSS
Exploits0References1
CNVD
CNVDadded 2023/10/07 12:0 a.m.11 views

NXLog Manager Cross-Site Request Forgery Vulnerability

NXLog Manager is a solution that can be used from a browser to easily manage and monitor a large number of NXLog Enterprise instances. NXLog Manager suffers from a cross-site request forgery vulnerability that can be exploited by a remote attacker to submit a specially crafted malicious request...

6.5CVSS6.9AI score0.00056EPSS
Exploits0References1
OSV
OSVadded 2023/10/03 1:15 p.m.1 views

CVE-2023-32790

Cross-Site Scripting XSS vulnerability in NXLog Manager 5.6.5633 version. This vulnerability allows an attacker to inject a malicious JavaScript payload into the 'Full Name' field during a user edit, due to improper sanitization of the input parameter...

6.1CVSS5.8AI score0.00118EPSS
Exploits0References1
NVD
NVDadded 2023/10/03 1:15 p.m.21 views

CVE-2023-32790

Cross-Site Scripting XSS vulnerability in NXLog Manager 5.6.5633 version. This vulnerability allows an attacker to inject a malicious JavaScript payload into the 'Full Name' field during a user edit, due to improper sanitization of the input parameter...

6.1CVSS4.9AI score0.00118EPSS
Exploits0References1
NVD
NVDadded 2023/10/03 1:15 p.m.6 views

CVE-2023-32791

Cross-Site Request Forgery CSRF vulnerability in NXLog Manager 5.6.5633 version. This vulnerability allows an attacker to manipulate and delete user accounts within the platform by sending a specifically crafted query to the server. The vulnerability is based on the lack of proper validation of t...

6.5CVSS6.5AI score0.00056EPSS
Exploits0References1
OSV
OSVadded 2023/10/03 1:15 p.m.0 views

CVE-2023-32792

Cross-Site Request Forgery CSRF vulnerability in NXLog Manager 5.6.5633 version. This vulnerability allows an attacker to eliminate roles within the platform by sending a specifically crafted query to the server. The vulnerability is based on the absence of proper validation of the origin of...

6.5CVSS5.8AI score0.00056EPSS
Exploits0References1
NVD
NVDadded 2023/10/03 1:15 p.m.19 views

CVE-2023-32792

Cross-Site Request Forgery CSRF vulnerability in NXLog Manager 5.6.5633 version. This vulnerability allows an attacker to eliminate roles within the platform by sending a specifically crafted query to the server. The vulnerability is based on the absence of proper validation of the origin of...

6.5CVSS6.5AI score0.00056EPSS
Exploits0References1
OSV
OSVadded 2023/10/03 1:15 p.m.0 views

CVE-2023-32791

Cross-Site Request Forgery CSRF vulnerability in NXLog Manager 5.6.5633 version. This vulnerability allows an attacker to manipulate and delete user accounts within the platform by sending a specifically crafted query to the server. The vulnerability is based on the lack of proper validation of t...

6.5CVSS5.8AI score
Exploits0References1
Rows per page
Query Builder