CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

Github Security Blog•added 6 days ago•14 views

Koel Vulnerable to SSRF via Podcast Episode Enclosure URLs

Summary Koel validates the podcast feed URL via the SafeUrl rule DNS resolution + public IP check, but the individual episode values extracted from the RSS XML are stored directly into the database without any SSRF validation. When a user plays an episode, the server downloads the full HTTP...

5.8AI score

Exploits0References4Affected Software1

Tenable Nessus•added 2026/04/28 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2026-6780

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Denial-of-service in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 150 and Thunderbird 150. CVE-2026-6780 Note that Nessus relies...

7.5CVSS5.4AI score0.00057EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2015-5723

Malware in sbrugna...

6.8CVSS7.4AI score0.01866EPSS

Exploits0References7

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2015-5724

Malware in sbrugna...

6.8CVSS7.4AI score0.01866EPSS

Exploits0References7

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2017-9433

Malware in sbrugna...

8.4CVSS8.6AI score0.00073EPSS

Exploits0References2

NVD•added 2025/02/03 5:15 p.m.•15 views

CVE-2024-38416

Information disclosure during audio playback...

6.1CVSS0.00073EPSS

Exploits0References1

OSV•added 2024/12/12 12:15 p.m.•1 views

CVE-2024-54114

Out-of-bounds access vulnerability in playback in the DASH module Impact: Successful exploitation of this vulnerability will affect availability...

7.5CVSS5.8AI score0.00094EPSS

Exploits0References1

Positive Technologies•added 2024/12/12 12:0 a.m.•1 views

PT-2024-36047 · Unknown · Dash Module

Name of the Vulnerable Software and Affected Versions: DASH module affected versions not specified Description: The issue is related to an out-of-bounds access vulnerability in the playback functionality of the DASH module. Successful exploitation of this vulnerability will affect availability...

7.5CVSS6.8AI score0.00094EPSS

Exploits0References4

Apple•added 2024/10/03 12:0 a.m.•1091 views

About the security content of Apple TV 1.5.0.152 for Windows

About the security content of Apple TV 1.5.0.152 for Windows This document describes the security content of Apple TV 1.5.0.152 for Windows. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred...

5.5CVSS8.5AI score0.00076EPSS

Exploits0References1Affected Software1

OSV•added 2021/08/18 1:15 p.m.•14 views

CVE-2021-21852

Multiple exploitable integer overflow vulnerabilities exist within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input at “stss” decoder can cause an integer overflow due to unchecked arithmetic resulting in a heap-based buffe...

8.8CVSS7.2AI score

Exploits0References3

RedHat Linux•added 2013/05/14 6:31 p.m.•1 views

Mozilla: Use-after-free with video and onresize event (MFSA 2013-46)

Use-after-free vulnerability in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 allows remote attackers to execute arbitrary code via vectors involving an onresize event during the playing of a video...

9.3CVSS7.8AI score0.04484EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by