CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

ATTACKERKB•added 2026/04/30 4:30 p.m.•5 views

CVE-2025-13890

REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2025-12494. Reason: This candidate is a reservation duplicate of CVE-2025-12494. Notes: All CVE users should reference CVE-2025-12494 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

4.3CVSS5.3AI score0.0021EPSS

OSV•added 2026/04/30 3:31 p.m.•5 views

MINI-5QR2-H4X4-GCWV

Bulletin has no description...

9.1CVSS7.3AI score0.00522EPSS

OSV•added 2026/04/30 3:30 p.m.•4 views

MINI-X7CC-5XWV-828G

Bulletin has no description...

8.8CVSS7.4AI score0.08123EPSS

OSV•added 2026/04/30 3:30 p.m.•4 views

MINI-QWH7-FPXH-63G2

Bulletin has no description...

6.1CVSS4.8AI score0.0024EPSS

EUVD•added 2026/04/30 3:25 p.m.•5 views

EUVD-2025-209595

Improper Restriction of XML External Entity Reference vulnerability in Connext Professional Core Libraries allows Serialized Data External Linking.This issue affects Connext Professional: from 7.4.0 before 7.7.0, from 7.0.0 before 7.3.1.1, from 6.1.0 before 6.1., from 6.0.0 before 6.0., from 5.3....

8.8CVSS5.2AI score0.00205EPSS

OSV•added 2026/04/30 2:0 p.m.•5 views

MINI-329M-XFPR-3PV4

Bulletin has no description...

5AI score

Circl•added 2026/04/30 1:55 p.m.•4 views

CVE-2026-0206

creationtimestamp| type| source ---|---|--- 2026-04-30 13:55:17+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mkprcb5i6n2c 2026-05-01 02:58:40+00:00| seen| https://bsky.app/profile/getpokemon7.bsky.social/post/3mkr52zptik2e...

4.9CVSS4.8AI score0.00504EPSS

Exploits0References2

Circl•added 2026/04/30 8:49 a.m.•6 views

CVE-2026-37525

creationtimestamp| type| source ---|---|--- 2026-04-30 08:49:16+00:00| seen| https://gist.github.com/sgInnora/8526eedcfd826d05ef1fc45d8f405643...

7.8CVSS4.8AI score0.00138EPSS

Circl•added 2026/04/30 8:49 a.m.•6 views

CVE-2026-37505

creationtimestamp| type| source ---|---|--- 2026-04-30 08:49:12+00:00| seen| https://gist.github.com/sgInnora/1330e1a82caa79906eec55eeff2c99b9...

4.9CVSS4.8AI score0.00244EPSS

OSV•added 2026/04/30 1:30 a.m.•4 views

MINI-F8GH-JFJR-4P2F

Bulletin has no description...

6.5CVSS4.8AI score0.00317EPSS

OSV•added 2026/04/30 1:17 a.m.•7 views

MINI-F4PC-R8G8-GPPR

Bulletin has no description...

7.5CVSS4.8AI score0.0044EPSS

OSV•added 2026/04/30 12:17 a.m.•4 views

MINI-JX26-2WHC-5QJH

Bulletin has no description...

7.5CVSS4.8AI score0.00209EPSS

Positive Technologies•added 2026/04/30 12:0 a.m.•4 views

PT-2026-36190

Name of the Vulnerable Software and Affected Versions IBM Langflow Desktop versions 1.0.0 through 1.8.4 Description An unauthenticated user can view images belonging to other users. This is possible due to an indirect object reference through a user-controlled key. Recommendations At the moment,...

7.5CVSS5.8AI score0.0034EPSS

Exploits0References6

Redos•added 2026/04/30 12:0 a.m.•6 views

ROS-20260430-73-0011

Vulnerability in golang related to incorrect reference definition before accessing a file. Exploitation of the vulnerability may allow an attacker to escalate his privileges...

6.4CVSS5.2AI score0.00292EPSS

Tenable Nessus•added 2026/04/30 12:0 a.m.•7 views

Amazon Linux 2 : rclone, --advisory ALAS2-2026-3264 (ALAS-2026-3264)

"The version of rclone installed on the remote host is prior to 1.55.1-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2026-3264 advisory. gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper...

9.1CVSS7.7AI score0.00522EPSS

Exploits1References4

OSV•added 2026/04/29 11:46 p.m.•3 views

MINI-V2M4-4P26-PFFG

Bulletin has no description...

7.5CVSS5.7AI score0.00283EPSS

OSV•added 2026/04/29 9:1 p.m.•3 views

MINI-6XH8-HCHH-WJ29

Bulletin has no description...

7.5CVSS4.8AI score0.00531EPSS