CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

32 matches found

Cvelist•added 2026/04/08 12:15 a.m.•12 views

CVE-2026-1346 Security Vulnerabilities have been found in IBM Verify Identity Access and IBM Security Verify Access

IBM Verify Identity Access Container 11.0 through 11.0.2 and IBM Security Verify Access Container 10.0 through 10.0.9.1 and IBM Verify Identity Access 11.0 through 11.0.2 and IBM Security Verify Access 10.0 through 10.0.9.1 could allow a locally authenticated user to escalate their privileges to...

9.3CVSS0.00007EPSS

Exploits0References1

Redos•added 2026/03/17 12:0 a.m.•3 views

ROS-20260317-73-0031

A vulnerability in the cloneprivatemnt function of the Linux kernel is related to insecure privilege management. Exploitation of the vulnerability allows an intruder to affect the integrity and availability of protected information...

5.5CVSS5.8AI score0.00026EPSS

Exploits0

RedhatCVE•added 2026/01/09 10:58 a.m.•13 views

CVE-2025-40571

A vulnerability has been identified in Mendix OIDC SSO Mendix 10.12 compatible All versions V4.0.1, Mendix OIDC SSO Mendix 9 compatible All versions V3.3.1, Mendix OIDC SSO V4.2 Mendix 10 compatible All versions V4.2.1, Mendix OIDC SSO V4.3 Mendix 10 compatible All versions. The Mendix OIDC SSO...

2.2CVSS5.7AI score0.00142EPSS

Exploits0References1

GithubExploit•added 2025/11/15 3:25 p.m.•113 views

Exploit for CVE-2025-63955

CVE-2025-63955 – Cross-Site Request Forgery CSRF leading t...

7.5CVSS6.6AI score0.00062EPSS

Exploits2

CVE•added 2025/10/17 2:25 a.m.•5 views

CVE-2025-6894

CVE-2025-6894 is a documented API authorization flaw in Moxa network security appliances/routers that allows a low-privileged, authenticated user to execute an administrative ping, potentially enabling internal network reconnaissance and limited impact to device confidentiality/availability. Rela...

5.3CVSS6.6AI score0.00202EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2012-1977

Malware in sbrugna...

4.3CVSS6.1AI score0.00283EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2019-1130

Malware in sbrugna...

7.2CVSS6.6AI score0.00075EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-14675

Malicious code in bioql PyPI...

2.2CVSS6.5AI score0.00142EPSS

Exploits0References1

IBM Security Bulletins•added 2025/09/19 3:46 p.m.•4 views

Security Bulletin: TOCTOU Race Condition in gosnowflake Logging Configuration Allows Local Privilege Misuse (Fixed in 1.13.3), affects watsonx.data

Summary gosnowflake is the Snowflake Golang driver. Versions starting from 1.7.0 to before 1.13.3, are vulnerable to a Time-of-Check to Time-of-Use TOCTOU race condition. When using the Easy Logging feature on Linux and macOS, the Driver reads logging configuration from a user-provided file. On...

7CVSS6.4AI score0.00041EPSS

Exploits0Affected Software1

ATTACKERKB•added 2025/05/13 10:15 a.m.•1 views

CVE-2025-40571

2.2CVSS5.7AI score0.00142EPSS

Exploits0References2

NVD•added 2025/05/13 10:15 a.m.•10 views

CVE-2025-40571

2.2CVSS0.00142EPSS

Exploits0References1

CVE•added 2025/05/13 9:38 a.m.•37 views

CVE-2025-40571

The CVE-2025-40571 affects the Mendix OIDC SSO module. In Mendix 10 compatible builds it affects all versions < 4.1.0; in Mendix 10.12 compatible builds it affects all versions < 4.0.1; in Mendix 9 compatible builds it affects all versions

2.2CVSS5.7AI score0.00142EPSS

Exploits0References1

Cvelist•added 2025/05/13 9:38 a.m.•18 views

CVE-2025-40571

2.2CVSS0.00142EPSS

Exploits0References1

Vulnrichment•added 2025/05/13 9:38 a.m.•6 views

CVE-2025-40571

2.2CVSS5.7AI score0.00142EPSS

Exploits0References1

ICS•added 2025/05/13 12:0 a.m.•7 views

Siemens Mendix OIDC SSO

SUMMARY The Mendix OIDC SSO module grants read and write access to all tokens exclusively to the Administrator role and could result in privilege misuse by an adversary modifying the module during Mendix development. Siemens has released a new version for Mendix OIDC SSO and recommends to update...

2.2CVSS4AI score0.00142EPSS

Exploits0References10

Positive Technologies•added 2025/05/13 12:0 a.m.•4 views

PT-2025-20866 · Mendix · Mendix Oidc Sso

Name of the Vulnerable Software and Affected Versions: Mendix OIDC SSO Mendix 10 compatible versions prior to V4.0.0 Mendix OIDC SSO Mendix 9 compatible affected versions not specified Description: A vulnerability has been identified in the Mendix OIDC SSO module, which grants read and write acce...

2.2CVSS6.1AI score0.00142EPSS

Exploits0References5

RedHat Linux•added 2025/02/19 10:31 a.m.•3 views

mysql: Privilege Misuse in MySQL Server Security Component

A flaw was found in MySQL Server component: Security: Privileges. This issue can allow unauthorized update, insert, or delete access to MySQL Server data and unauthorized read access to a subset of data via multiple protocols...

3.8CVSS5.7AI score0.00094EPSS

Exploits0References5

CNNVD•added 2025/02/12 12:0 a.m.•1 views

Intel 800 Series Ethernet Driver 安全漏洞

Intel 800 Series Ethernet Driver is a driver from Intel Corporation USA. A security vulnerability exists in Intel 800 Series Ethernet Driver versions prior to 1.15.4, which arises from the implementation of incorrectly assigned privileges that could allow an authenticated user to disclose...

3.3CVSS5.7AI score0.00034EPSS

Exploits0References2

CNNVD•added 2024/09/23 12:0 a.m.•1 views

Acronis Cyber Protect Cloud Agent 安全漏洞

Acronis Cyber Protect Cloud Agent is a cloud agent from Acronis Switzerland. A security vulnerability exists in Acronis Cyber Protect Cloud Agent versions prior to 38565, which stems from an unnecessary privilege assignment that results in the manipulation of local active protection service...

4.7CVSS4.8AI score0.00049EPSS

Exploits0References2