CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

NVD•added 2024/07/31 4:15 p.m.•13 views

CVE-2024-41950

Haystack is an end-to-end LLM framework that allows you to build applications powered by LLMs, Transformer models, vector search and more. Haystack clients that let their users create and run Pipelines from scratch are vulnerable to remote code executions. Certain Components in Haystack use Jinja...

7.5CVSS0.03008EPSS

Exploits0References6

Veracode•added 2024/07/22 5:22 p.m.•13 views

SQL Injection

1Panel is vulnerable to SQL Injection. The vulnerability is due to insufficient filtering of inputs, leading to arbitrary file writes and remote code executions RCEs...

9.8CVSS8.3AI score0.84212EPSS

Exploits1References3Affected Software1

CNVD•added 2023/10/13 12:0 a.m.•18 views

Microsoft Windows Layer 2 Tunneling Protocol Remote Code Execution Vulnerability (CNVD-2023-81883)

Microsoft Windows is a set of operating systems for use on personal devices from the American company Microsoft. A remote code execution vulnerability exists in the Microsoft Windows Layer 2 Tunneling Protocol, which can be exploited by an attacker to remotely execute code...

8.1CVSS7.8AI score0.00218EPSS

Exploits0References1

GithubExploit•added 2021/12/14 8:31 a.m.•459 views

Exploit for Uncontrolled Resource Consumption in Siemens 6Bk1602-0Aa12-0Tp0_Firmware

PoC exploit for CVE-2021-44228, a remote code execution vulnerab...

10CVSS9.3AI score0.94358EPSS

Exploits341

Veracode•added 2019/10/08 3:24 p.m.•15 views

Prototype Pollution

react-particles-js is vulnerable to prototype pollution attacks. Attackers can manipulates attributes to overwrite, or pollute existing properties relating to an Object by injecting malicious values through proto attribute . Using this flaw the attackers can trigger denial of service DoS attacks...

6.2AI score

Exploits0

CISA•added 2014/06/10 12:0 a.m.•10 views

Microsoft Releases June 2014 Security Bulletin

Microsoft has released updates to address vulnerabilities in Windows, Office, Internet Explorer, Lync, and Lync Server as part of the Microsoft Security Bulletin Summary for June 2014. Some of these vulnerabilities could allow remote code executions. US-CERT encourages users and administrators to...

7.4AI score

Exploits0References1

CISA•added 2014/05/13 12:0 a.m.•8 views

Microsoft Releases May 2014 Security Bulletin

Microsoft has released updates to address vulnerabilities in Windows, Office, Internet Explorer, Server Software, Office Services, Web Apps, and Productivity Software as part of the Microsoft Security Bulletin Summary for May 2014. These vulnerabilities could allow remote code executions. US-CERT...

7.3AI score

Exploits0References1

CISA•added 2014/04/08 12:0 a.m.•8 views

Microsoft Releases April 2014 Security Bulletin

Microsoft has released updates to address vulnerabilities in Microsoft Office, Office Services, Web Apps, Windows and Internet Explorer as part of the Microsoft Security Bulletin Summary for April, 2014. These vulnerabilities could allow remote code executions. US-CERT encourages users and...

7.3AI score

Exploits0References1

Symantec•added 2012/01/24 8:0 a.m.•29 views

Symantec pcAnywhere Multiple Security Updates

SUMMARY Symantec pcAnywhere is susceptible to local file tampering elevation of privilege attempts and remote code execution attempts. It is possible to run arbitrary code on a targeted system in the context of the application which is normally System. Symantec pcAnywhere is also susceptible to...

10CVSS0.2AI score0.56994EPSS

Exploits13Affected Software1