CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

RedhatCVE•added 2025/12/10 12:28 a.m.•5 views

CVE-2025-66432

In Oxide control plane 15 through 17 before 17.1, API tokens can be renewed past their expiration date...

5CVSS6.9AI score0.00194EPSS

Exploits0References1

EUVD•added 2025/11/30 6:30 a.m.•4 views

EUVD-2025-199923

In Oxide control plane 15 through 17 before 17.1, API tokens can be renewed past their expiration date...

5CVSS6.4AI score0.00194EPSS

Exploits0References4

NVD•added 2025/11/30 5:16 a.m.•4 views

CVE-2025-66432

In Oxide control plane 15 through 17 before 17.1, API tokens can be renewed past their expiration date...

5CVSS0.00194EPSS

Exploits0References3

CNNVD•added 2025/11/30 12:0 a.m.•3 views

Oxide Control Plane 安全漏洞

Oxide Control Plane is an open source console software from Oxide Computer Company. A security vulnerability exists in Oxide Control Plane versions 15 through 17 and prior to 17.1, which stems from the possibility that API tokens may continue to be used after expiration...

5CVSS6.7AI score0.00194EPSS

Exploits0References4

Vulnrichment•added 2025/11/30 12:0 a.m.•2 views

CVE-2025-66432

In Oxide control plane 15 through 17 before 17.1, API tokens can be renewed past their expiration date...

5CVSS6.5AI score0.00194EPSS

Exploits0References3

Cvelist•added 2025/11/30 12:0 a.m.•4 views

CVE-2025-66432

In Oxide control plane 15 through 17 before 17.1, API tokens can be renewed past their expiration date...

5CVSS0.00194EPSS

Exploits0References3

CVE•added 2025/11/30 12:0 a.m.•9 views

CVE-2025-66432

In Oxide Control Plane versions 15–17 before 17.1, API tokens can be renewed past their expiration date. This is the core issue; no exploitation details are provided in the documents. The remediation/patch version is not explicitly stated in the supplied materials.

5CVSS6.5AI score0.00194EPSS

Exploits0References3

Positive Technologies•added 2025/11/30 12:0 a.m.•2 views

PT-2025-48383

In Oxide control plane 15 through 17 before 17.1, API tokens can be renewed past their expiration date...

5CVSS6.9AI score0.00194EPSS

Exploits0References4

CVE•added 2024/12/09 12:0 a.m.•53 views

CVE-2024-55582

CVE-2024-55582 affects Oxide prior to version 6, where the control plane datastores are unencrypted. Root cause: storage of control plane data without encryption. Impact (per sources): potential exposure or modification of sensitive control-plane information, reflected in the CVSS vector (high co...

5.7CVSS5.6AI score0.00124EPSS

Exploits0References1

NVD•added 2024/12/05 8:15 p.m.•21 views

CVE-2023-50913

Oxide control plane software before 5 allows SSRF...

9.1CVSS0.0035EPSS

Exploits0References2

CVE•added 2024/12/05 12:0 a.m.•50 views

CVE-2023-50913

The CVE-2023-50913 entry refers to the Oxide control plane software prior to version 5, where a Server-Side Request Forgery (SSRF) vulnerability is present. The issue affects the Oxide control plane software and is characterized by SSRF with high impact to confidentiality and integrity (per CVSS ...

9.1CVSS7AI score0.0035EPSS

Exploits0References2

Vulnrichment•added 2024/12/05 12:0 a.m.•9 views

CVE-2023-50913

Oxide control plane software before 5 allows SSRF...

9.3AI score0.0035EPSS

Exploits0References2

Cvelist•added 2024/12/05 12:0 a.m.•16 views

CVE-2023-50913

Oxide control plane software before 5 allows SSRF...

0.0035EPSS

Exploits0References2