CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

174 matches found

CVE-2026-0152

In OSMMapPMRGeneric of pmros.c, there is a possible way to leverage a system call to system call to maliciously expand the VMA out of bounds due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not...

7.8CVSS0.00071EPSS

Exploits0References1

CVE•added 2026/06/15 12:0 a.m.•13 views

CVE-2026-50874

Summary: CVE-2026-50874 describes an OS command injection in the /manage/features/media component of kanishka-linux Reminiscence v0.3.0. The vulnerability allows an attacker to execute arbitrary commands by supplying crafted input. This flaw is documented across multiple feeds (NVD/NVD-derived en...

8.1CVSS5.9AI score0.01119EPSS

Exploits0References1

CISA KEV Catalog•added 2026/06/09 12:0 a.m.•11 views

Arista Extensible Operating System Incomplete Comparison with Missing Factors Vulnerability

Arista Extensible Operating System EOS contains an incomplete comparison with missing factors vulnerability when the switch incorrectly decapsulate and forwards other unexpected tunneled packet with a destination IP matching its configured decapsulation IP...

6.9CVSS5.4AI score0.00378EPSS

In wildExploits1

The Hacker News•added 2026/05/14 4:7 p.m.•8 views

ThreatsDay Bulletin: PAN-OS RCE, Mythos cURL Bug, AI Tokenizer Attacks, and 10+ Stories

Everything is still on fire. This week feels dumb in the worst way — bad links, weak checks, fake help desks, shady forum posts, and people turning supply chain attacks into some cursed little game for clout and cash. Half of it feels new. Half of it feels like crap we should have fixed years ago...

9.8CVSS7.1AI score0.3176EPSS

Exploits6

Tenable Nessus•added 2026/04/29 12:0 a.m.•7 views

Juniper Junos OS Vulnerability (JSA79188)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA79188 advisory. - A Missing Authentication for Critical Function vulnerability in the Packet Forwarding Engine pfe of Juniper Networks Junos OS on MX Series with SPC3, and SRX Series allows...

6.3CVSS5.7AI score0.00434EPSS

Exploits0References2

CNVD•added 2026/03/26 12:0 a.m.•1 views

OpenClaw OS Command Injection Vulnerability (CNVD-2026-16043)

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from an operating system command injection vulnerability. The vulnerability stems from the safeBins configuration failing to properly filter constructed command special characters, commands, etc., which can...

7.1CVSS6.1AI score0.00197EPSS

Exploits0

EUVD•added 2026/02/25 9:31 p.m.•3 views

EUVD-2026-8718

This vulnerability is caused by a CWE‑159: "Improper Handling of Invalid Use of Special Elements" weakness, which leads to an unrecoverable inconsistency in the CLFS.sys driver. This condition forces a call to the KeBugCheckEx function, allowing an unprivileged user to trigger a system crash...

5.5CVSS5.4AI score0.0041EPSS

Exploits2References2

CNVD•added 2026/02/25 12:0 a.m.•3 views

Advantech WISE-6610 OS Command Injection Vulnerability

Advantech WISE-6610 is a core gateway device from Advantech, Taiwan, China. The Advantech WISE-6610 suffers from an operating system command injection vulnerability that originates from a misuse of the parameter deletefile in the file /cgi-bin/luci/admin/openvpnapply, which can be exploited by an...

8.6CVSS7.3AI score0.12914EPSS

Exploits2

IBM AIX•added 2026/02/18 8:44 a.m.•7 views

Vulnerability in libxml2 (CVE-2025-8732) affects AIX

IBM SECURITY ADVISORY First Issued: Wed Feb 18 08:44:14 CST 2026 |Updated: Fri Mar 13 13:55:04 CDT 2026 |Update: Added iFix information for VIOS 3.1. The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/libxml2advisory10.asc Security Bulleti...

4.8CVSS5AI score0.00135EPSS

Exploits0

CVE•added 2025/12/17 12:19 p.m.•9 views

CVE-2025-14096

CVE-2025-14096 describes a vulnerability in multiple Radiometer products where an attacker with physical access to the analyzer can potentially extract credential information due to a weakness in the operating system’s credential protection. The issue is rooted in design weaknesses within the OS ...

8.4CVSS6.4AI score0.00116EPSS

Exploits0References1

Positive Technologies•added 2025/12/11 12:0 a.m.•4 views

PT-2025-50653

Name of the Vulnerable Software and Affected Versions Ruijie X30-PRO version X30-PRO-V1 09241521 Description An OS Command Injection issue exists in Ruijie X30-PRO version X30-PRO-V1 09241521. Attackers can execute arbitrary commands by sending a specially crafted POST request to the module set...

8.8CVSS7.6AI score0.01748EPSS

Exploits0References6

CNNVD•added 2025/10/15 12:0 a.m.•3 views

F5 F5OS-A和F5 F5OS-C 缓冲区错误漏洞

F5 F5OS-A and F5 F5OS-C are both products of F5 Corporation, U.S.A. F5 F5OS-A is an operating system software.F5 F5OS-C is an operating system software on VELOS hardware. A buffer error vulnerability exists in F5 F5OS-A and F5 F5OS-C, which stems from the presence of out-of-bounds writes that cou...

6.9CVSS6.8AI score0.00192EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2017-16800

Malware in sbrugna...

5.3CVSS7.5AI score0.01629EPSS

Exploits0References12

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2020-6007

Malware in sbrugna...

5.5CVSS6.8AI score0.00398EPSS

Exploits0References7