CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2015-4257

Malware in sbrugna...

7.2CVSS6.4AI score0.00122EPSS

Exploits0References4

Prion•added 2023/08/09 11:15 p.m.•19 views

Code injection

The WireGuard client 0.5.3 on Windows insecurely configures the operating system and firewall such that traffic to a local network that uses non-RFC1918 IP addresses is blocked. This allows an adversary to trick the victim into blocking IP traffic to selected IP addresses and services even while...

2.9CVSS5.5AI score0.00062EPSS

Exploits1References3Affected Software1

Amd•added 2023/08/08 12:0 a.m.•106 views

Return Address Security Bulletin

Bulletin ID: AMD-SB-7005 Potential Impact: Data Confidentiality Severity: Medium Summary AMD has received an external report titled ‘INCEPTION’, describing a new speculative side channel attack. The attack can result in speculative execution at an attacker-controlled address, potentially leading ...

4.7CVSS6.9AI score0.02081EPSS

Exploits1

Cvelist•added 2021/01/12 2:44 p.m.•10 views

CVE-2021-21469

When security guidelines for SAP NetWeaver Master Data Management running on windows have not been thoroughly reviewed, it might be possible for an external operator to try and set custom paths in the MDS server configuration. When no adequate protection has been enforced on any level e.g., MDS...

5.3CVSS7.8AI score0.00204EPSS

Exploits0References2

Microsoft KB•added 2019/09/24 12:0 a.m.•80 views

Update Rollup 8 for System Center 2016 Virtual Machine Manager

Update Rollup 8 for System Center 2016 Virtual Machine Manager Introduction This article describes the issues that are fixed in Update Rollup 8 for Microsoft System Center 2016 Virtual Machine Manager. Two updates are available for Virtual Machine Manager, one for the Virtual Machine Manager serv...

6.7AI score

Exploits0

OSV•added 2019/04/23 4:7 p.m.•102 views

GHSA-XC67-HJX6-CGG6 Installation information leak in Eclipse Jetty

In Eclipse Jetty version 7.x, 8.x, 9.2.27 and older, 9.3.26 and older, and 9.4.16 and older, the server running on any OS and Jetty version combination will reveal the configured fully qualified directory base resource location on the output of the 404 error for not finding a Context that matches...

5.3CVSS6AI score0.0336EPSS

Exploits0References19

Prion•added 2015/07/03 10:59 a.m.•13 views

Input validation

Cisco NX-OS 6.02 and 6.22 on Nexus devices has an improper OS configuration, which allows local users to obtain root access via unspecified input to the Python interpreter, aka Bug IDs CSCun02887, CSCur00115, and CSCur00127...

7.2CVSS6.9AI score0.00122EPSS

Exploits0References3Affected Software1

CVE•added 2015/07/03 10:0 a.m.•44 views

CVE-2015-4234

Cisco NX-OS on Nexus devices (6.0(2) and 6.2(2)) is affected by a local privilege-escalation flaw in the Python scripting subsystem, allowing a locally authenticated user to obtain root via improper OS configuration and input to the Python interpreter. Exploitation requires local access and authe...

7.2CVSS6.7AI score0.00122EPSS

Exploits0References3Affected Software1

Cvelist•added 2015/07/03 10:0 a.m.•19 views

CVE-2015-4234

6.5AI score0.00122EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by