CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Positive Technologies•added 2026/06/09 12:0 a.m.•15 views

PT-2026-48239

6.1AI score

Positive Technologies•added 2026/06/09 12:0 a.m.•7 views

PT-2026-47916

Name of the Vulnerable Software and Affected Versions Remote Desktop Client affected versions not specified Description A heap-based buffer overflow allows an unauthorized attacker to execute arbitrary code over a network, which can affect the system. A heap-based buffer overflow occurs when an...

7.6CVSS6.5AI score0.00434EPSS

Exploits0References6

Zero Day Initiative•added 2026/06/09 12:0 a.m.•9 views

Adobe USD-Fileformat-plugins Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe USD-Fileformat-plugins. Interaction with the USD library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within t...

7.8CVSS6AI score0.00281EPSS

CNNVD•added 2026/06/09 12:0 a.m.•8 views

Logseq 操作系统命令注入漏洞

Logseq is an open-source knowledge management and collaboration platform developed by Logseq. Version Logseq v0.10.15 contains a vulnerability related to operating system command injection. This vulnerability stems from the IPC handler allowing renderer processes to execute shell commands, and...

8.7CVSS6.4AI score0.0027EPSS

6.3CVSS6.4AI score0.00215EPSS

TYPO3 CMS 代码问题漏洞

TYPO3 CMS is a content management system developed under the TYPO3 open source framework. Code vulnerabilities existed in versions prior to TYPO3 CMS 10.4.57, as well as in versions 11.0.0 to 11.5.51, 12.0.0 to 12.4.46, 13.0.0 to 13.4.31, and 14.0.0 to 14.3.3. These vulnerabilities stemmed from...

Tenable Nessus•added 2026/06/09 12:0 a.m.•39 views

Veeam Backup and Replication < 12.3.2.4854 (kb4869)

The version of Veeam Backup and Replication installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the kb4869 advisory. - A vulnerability allowing remote code execution RCE on the Backup Server by an authenticated domain user...

9.4CVSS9.4AI score0.02042EPSS

Zero Day Initiative•added 2026/06/09 12:0 a.m.•8 views

Progress Software Kemp LoadMaster dolistapikeys Uninitialized Memory Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Progress Software Kemp LoadMaster. Authentication is required to exploit this vulnerability. The specific flaw exists within the dolistapikeys method. The issue results from the lack of proper...

7.2CVSS8.2AI score0.01869EPSS

Veeam•added 2026/06/09 12:0 a.m.•10 views

Vulnerability Resolved in Veeam Backup & Replication 12.3.2.4854

All vulnerabilities documented in this article were resolved in Veeam Backup & Replication 12.3.2.4854. This vulnerability does not affect any version 13.x build of Veeam Backup & Replication due to architectural changes starting in version 13. Veeam Software Security Commitment Veeam® is committ...

9.4CVSS8.7AI score0.02042EPSS

Exploits0Affected Software1

Tenable Nessus•added 2026/06/09 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2026-11688

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in SVG in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted...

8.8CVSS6.1AI score0.00256EPSS

Tenable Nessus•added 2026/06/09 12:0 a.m.•10 views

KB5094041: Windows Server 2012 R2 Security Update (June 2026)

The remote Windows host is missing security update 5094041. It is, therefore, affected by multiple vulnerabilities - Integer overflow or wraparound in Windows HTTP.sys allows an unauthorized attacker to execute code over a network. CVE-2026-47291 - Heap-based buffer overflow in Remote Desktop...

9.8CVSS6.6AI score0.21506EPSS

Exploits1References66

Redos•added 2026/06/09 12:0 a.m.•7 views

ROS-20260609-73-0014

The vulnerability of the ngxhttprewritemodule module in NGINX Plus and NGINX Open Source web servers is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9.2CVSS6.3AI score0.61469EPSS

Exploits39

7.5CVSS5.9AI score0.0055EPSS

Microsoft Remote Desktop Client 资源管理错误漏洞

Microsoft Remote Desktop Client is a remote desktop client developed by Microsoft Corporation. There is a resource management vulnerability in Microsoft Remote Desktop Client. Attackers can exploit this vulnerability to execute code remotely. The following products and versions are affected:...

8.8CVSS5.6AI score0.00602EPSS

Microsoft Remote Desktop Client 资源管理错误漏洞

Microsoft Remote Desktop Client is a remote desktop client developed by Microsoft Corporation. There is a resource management vulnerability in Microsoft Remote Desktop Client. Attackers can exploit this vulnerability to execute code. The following products and versions are affected: Windows 10...

7.8CVSS6AI score0.00411EPSS

Microsoft Windows NTFS 缓冲区错误漏洞

Microsoft Windows NTFS is a file system provided by the American company Microsoft for managing computer files. This file system features error alerts, disk self-repair functions, and logging capabilities. There is an input validation vulnerability in Microsoft Windows NTFS. Attackers can exploit...

CNNVD•added 2026/06/09 12:0 a.m.•10 views

Microsoft azure kubernetes service 路径遍历漏洞

Microsoft Azure Kubernetes Service is a service provided by Microsoft Corporation for deploying, managing, and scaling containerized applications. Microsoft Azure Kubernetes Service has a path traversal vulnerability. Attackers can exploit this vulnerability to execute code remotely...

8.8CVSS6AI score0.00336EPSS