CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2274 matches found

Snyk•added 2025/11/07 12:24 p.m.•5 views

Malicious Package

Overview MCDbRepository is a malicious package. This package contains malicious code that injects time-delayed destructive payloads into database operations and target industrial control systems. Published under the NuGet alias shanhai666 together with 8 other malicious packages between 2023 and...

9.8CVSS7.2AI score

Exploits0References2

Veracode•added 2025/11/03 7:57 a.m.•5 views

Improper Authentication Exposure

github.com/chaos-mesh/chaos-mesh is vulnerable to improper authentication exposure. The vulnerability is due to the Chaos Controller Manager exposing an unauthenticated GraphQL debugging server to the entire Kubernetes cluster, which allows an attacker to kill arbitrary processes in any pod...

7.5CVSS7.4AI score0.00987EPSS

Exploits1References5Affected Software1

Packet Storm News•added 2025/10/23 12:0 a.m.•4 views

Risk Psychology and Cyber-Attack Tactics

We examine whether measured cognitive processes predict cyber-attack behavior. We analyzed data that included psychometric scale responses and labeled attack behaviors from cybersecurity professionals who conducted red-team operations against a simulated enterprise network. We employed multilevel...

6.8AI score

Exploits0

CVE•added 2025/10/20 12:0 a.m.•21 views

CVE-2025-61303

CVE-2025-61303 concerns a vulnerability in the Windows behavioral analysis engine used by Hatching Triage Sandbox (Windows 10 build 2004 and Windows 10 LTSC 2021). The issue arises when a sample recursively spawns a very large number of child processes, producing an extreme log volume and exhaust...

9.8CVSS6.6AI score0.00415EPSS

Exploits1References1

RedhatCVE•added 2025/10/17 5:39 p.m.•5 views

CVE-2025-61909

Icinga 2 is an open source monitoring system. From 2.10.0 to before 2.15.1, 2.14.7, and 2.13.13, the safe-reload script also used during systemctl reload icinga2 and logrotate configuration shipped with Icinga 2 read the PID of the main Icinga 2 process from a PID file writable by the daemon user...

4.4CVSS6.8AI score0.00196EPSS

Exploits0References1

CNNVD•added 2025/10/16 12:0 a.m.•2 views

Icinga 2 安全漏洞

Icinga 2 is a monitoring system from Icinga open source. A security vulnerability exists in Icinga 2 versions 2.10.0 through 2.15.1 and earlier, 2.14.7, and 2.13.13, which stems from a safe-reload script and logrotate configuration that allows Icinga users to send signals to other processes,...

4.4CVSS6.4AI score0.00196EPSS

Exploits0References4

EUVD•added 2025/10/14 9:30 p.m.•2 views

EUVD-2022-55152

In the Linux kernel, the following vulnerability has been resolved: mm: fix unexpected zeroed page mapping with zram swap Two processes under CLONEVM cloning, user process can be corrupted by seeing zeroed page unexpectedly. CPU A CPU B doswappage doswappage SWPSYNCHRONOUSIO path SWPSYNCHRONOUSIO...

5.5CVSS4.8AI score0.0027EPSS

Exploits0References7

ATTACKERKB•added 2025/10/14 12:27 p.m.•5 views

CVE-2025-11709

A compromised web process was able to trigger out of bounds reads and writes in a more privileged process using manipulated WebGL textures. This vulnerability was fixed in Firefox 144, Firefox ESR 115.29, Firefox ESR 140.4, Thunderbird 144, and Thunderbird 140.4...

9.8CVSS7.2AI score0.00385EPSS

Exploits0References7

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2021-2523

Malware in sbrugna...

6.4CVSS6.7AI score0.00381EPSS

Exploits0References32

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-6265

Malware in sbrugna...

5.5CVSS5.5AI score0.00663EPSS

Exploits0References2