CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-26082

Malicious code in bioql PyPI...

4.9CVSS6.3AI score0.0048EPSS

Exploits0References2

OSV•added 2025/09/25 4:10 a.m.•0 views

MAL-2025-47563 Malicious code in next-optimized-image (npm)

The package next-optimized-image was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 58dd13a9edd9b09b53a4bd0b8b6e36204d366ffc8f6e6a1b9ed3fcfc89ef9657 Any computer that has this package installed or running should be considered fully...

OSSF Malicious Packages•added 2025/09/25 4:10 a.m.•2 views

Malicious code in next-optimized-image (npm)

OSSF Malicious Packages•added 2025/08/29 6:55 p.m.•2 views

Malicious code in vite-tsconfig-optimized (npm)

The package vite-tsconfig-optimized was found to contain malicious code...

7AI score

OSV•added 2025/08/29 6:55 p.m.•1 views

MAL-2025-42112 Malicious code in vite-tsconfig-optimized (npm)

The package vite-tsconfig-optimized was found to contain malicious code...

7AI score

Packet Storm News•added 2025/07/07 12:0 a.m.•2 views

FIDESlib: a Fully-Fledged Open-Source FHE Library for Efficient CKKS on GPUs

Word-wise Fully Homomorphic Encryption FHE schemes, such as CKKS, are gaining significant traction due to their ability to provide post-quantum-resistant, privacy-preserving approximate computing; an especially desirable feature in Machine-Learning-as-a-Service MLaaS cloud-computing paradigms...

Tenable Nessus•added 2025/06/25 12:0 a.m.•5 views

Azure Linux 3.0 Security Update: mysql (CVE-2024-20971)

The version of mysql installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-20971 advisory. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions th...

4.9CVSS5.7AI score0.00163EPSS

Exploits0References2

Packet Storm News•added 2025/06/22 12:0 a.m.•2 views

O2Former:Direction-Aware and Multi-Scale Query Enhancement for SAR Ship Instance Segmentation

Instance segmentation of ships in synthetic aperture radar SAR imagery is critical for applications such as maritime monitoring, environmental analysis, and national security. SAR ship images present challenges including scale variation, object density, and fuzzy target boundary, which are often...

RedhatCVE•added 2025/05/23 5:12 a.m.•5 views

CVE-2023-23711

Cross-Site Request Forgery CSRF vulnerability in A2 Hosting A2 Optimized WP plugin = 3.0.4 versions...

4.3CVSS7.1AI score0.00097EPSS

RedhatCVE•added 2025/05/23 5:2 a.m.•2 views

CVE-2023-27457

Cross-Site Request Forgery CSRF vulnerability in Passionate Brains Add Expires Headers & Optimized Minify plugin = 2.7 versions...

8.8CVSS7.1AI score0.00137EPSS

Packet Storm News•added 2025/05/01 12:0 a.m.•2 views

Attack and Defense Techniques in Large Language Models: a Survey and New Perspectives

Large Language Models LLMs have become central to numerous natural language processing tasks, but their vulnerabilities present significant security and ethical challenges. This systematic survey explores the evolving landscape of attack and defense techniques in LLMs. We classify attacks into...

7.6AI score

Packet Storm News•added 2025/04/28 12:0 a.m.•3 views

Prefill-Based Jailbreak: a Novel Approach of Bypassing LLM Safety Boundary

Large Language Models LLMs are designed to generate helpful and safe content. However, adversarial attacks, commonly referred to as jailbreak, can bypass their safety protocols, prompting LLMs to generate harmful content or reveal sensitive data. Consequently, investigating jailbreak methodologie...

7.4AI score

OSV•added 2024/10/21 3:41 p.m.•17 views

CVE-2024-48930 secp256k1-node vulnerable to private key extraction over ECDH

secp256k1-node is a Node.js binding for an Optimized C library for EC operations on curve secp256k1. In elliptic-based version, loadUncompressedPublicKey has a check that the public key is on the curve. Prior to versions 5.0.1, 4.0.4, and 3.8.1, however, loadCompressedPublicKey is missing that...

8.7CVSS6.3AI score0.00217EPSS

Exploits0References8

Citrix•added 2024/10/01 12:0 a.m.•5 views

How to convert MCS provisioned VM’s identity disks to streaming optimized disks.

Description: Support for VMware vSAN8 was incorporated into all current releases of Citrix Virtual Apps and Desktops as detailed in thisblog. With this support, Machine Creation Services MCS creates VMDK files with a stream-optimized format for all VMs. As the blog mentioned, there might be...

7AI score

Qualys Blog•added 2024/09/24 3:0 p.m.•9 views

Enhancing Cloud-Native Security: Qualys Introduces Scanning for Container-Optimized OS in Google Kubernetes Engine

As organizations move from traditional workloads to containerized environments, they encounter new security challenges. Containers bring added complexity that traditional security tools often struggle to manage, largely because of their transient nature and the shared responsibility between the...

7.5AI score