CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7487 matches found

Positive Technologies•added 2025/10/14 12:0 a.m.•1 views

PT-2025-42069

Name of the Vulnerable Software and Affected Versions Inbox COM Objects affected versions not specified Description A use after free condition exists in Inbox COM Objects. This allows an unauthorized attacker to execute code locally. Recommendations At the moment, there is no information about a...

7CVSS9.2AI score0.00058EPSS

Exploits0References3

CNNVD•added 2025/10/14 12:0 a.m.•1 views

Microsoft Inbox COM Objects 资源管理错误漏洞

Microsoft Inbox COM Objects is a built-in COM component for Windows operating systems from Microsoft Corporation USA. A resource management error vulnerability exists in Microsoft Inbox COM Objects, which can be exploited by an attacker to remotely execute code...

7CVSS9.1AI score0.00058EPSS

Exploits0References1

CNNVD•added 2025/10/14 12:0 a.m.•2 views

Microsoft Windows Internet Information Services（IIS）和Microsoft Inbox COM Objects 资源管理错误漏洞

Microsoft Windows Internet Information Services IIS and Microsoft Inbox COM Objects are both products of Microsoft Corporation.Microsoft Windows Internet Information Services is a web server for the Windows Server platform. Information Services is a web server for the Windows Server...

7CVSS9AI score0.00428EPSS

Exploits0References1

CNNVD•added 2025/10/14 12:0 a.m.•1 views

Microsoft Inbox COM Objects 资源管理错误漏洞

Microsoft Inbox COM Objects is a built-in COM component of the Windows operating system from the U.S. company Microsoft Microsoft. A code execution vulnerability exists in Microsoft Inbox COM Objects, which can be exploited by an attacker to execute arbitrary code...

7CVSS9.4AI score0.00058EPSS

Exploits0References1

Positive Technologies•added 2025/10/14 12:0 a.m.•1 views

PT-2025-42066

Name of the Vulnerable Software and Affected Versions versions prior to 2025 affected versions not specified Description A use-after-free condition exists in Inbox COM Objects. This allows an unauthorized attacker to execute code locally. The issue involves the improper handling of memory,...

7CVSS9.4AI score0.00058EPSS

Exploits0References3

Mozilla•added 2025/10/14 12:0 a.m.•11 views

Security Vulnerabilities fixed in Firefox ESR 115.29 — Mozilla

A compromised web process was able to trigger out of bounds reads and writes in a more privileged process using manipulated WebGL textures. A compromised web process using malicious IPC messages could have caused the privileged browser process to reveal blocks of its memory to the compromised...

9.8CVSS7.3AI score0.00106EPSS

Exploits0References4Affected Software1

CNNVD•added 2025/10/09 12:0 a.m.•1 views

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser from Google, Inc USA. Google Chrome suffers from a resource management error vulnerability that stems from Storage objects being accessed even after they have been released prematurely...

8.8CVSS8.9AI score0.00125EPSS

Exploits1References3

RedHat Linux•added 2025/10/08 3:18 p.m.•8 views

kernel: RDMA/iwcm: Fix use-after-free of work objects after cm_id destruction

In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix use-after-free of work objects after cmid destruction The commit 59c68ac31e15 "iwcm: free cmid resources on the last deref" simplified cmid resource management by freeing cmid once all references to the cmid were...

7.8CVSS6.7AI score0.00063EPSS

Exploits0References5