CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

894 matches found

CVE•added 2025/12/08 9:22 a.m.•14 views

CVE-2025-27019

CVE-2025-27019 affects Infinera MTC-9 where the Remote Shell Service (RSH) in firmware version R22.1.1.0275 contains a misconfiguration that allows an attacker to exploit password-less user accounts to obtain full system access via a reverse shell. The advisory notes impact on MTC-9 from R22.1.1....

9.8CVSS6.5AI score0.00059EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2025/12/08 12:0 a.m.•3 views

PT-2025-49541

Name of the Vulnerable Software and Affected Versions Infinera MTC-9 versions R22.1.1.0275 through R22.1.1.0275 Description The Remote Shell Service RSH in Infinera MTC-9 allows an attacker to gain system access. This is achieved by exploiting password-less user accounts and activating a reverse...

9.8CVSS7.8AI score0.00059EPSS

Exploits0References8

CNNVD•added 2025/12/08 12:0 a.m.•2 views

Infinera MTC-9 安全漏洞

Infinera MTC-9 is a modular controller from Infinera USA. A security vulnerability exists in Infinera MTC-9 version R22.1.1.0275 through versions prior to R23.0, which stems from a misconfiguration of the remote shell service that could result in system access...

9.8CVSS7.7AI score0.00059EPSS

Exploits0References1

GithubExploit•added 2025/12/07 3:52 p.m.•185 views

Exploit for OS Command Injection in Clam_Anti-Virus Clamav

Sendmail + ClamAV-Milter Exploit CVE-2007-4560 Python RCE e...

7.6CVSS7.1AI score0.88269EPSS

Exploits12

The Hacker News•added 2025/11/28 4:18 p.m.•9 views

North Korean Hackers Deploy 197 npm Packages to Spread Updated OtterCookie Malware

The North Korean threat actors behind the Contagious Interview campaign have continued to flood the npm registry with 197 more malicious packages since last month. According to Socket, these packages have been downloaded over 31,000 times, and are designed to deliver a variant of OtterCookie that...

6.8AI score

Exploits0

GithubExploit•added 2025/11/25 5:43 p.m.•119 views

Exploit for CVE-2025-13597

AI Feeds extractTo$extractDir; $rootInsideZip = $extractD...

7AI score0.00618EPSS

Exploits3

Tenable Nessus•added 2025/10/27 12:0 a.m.•3 views

Siemens RUGGEDCOM ROS Devices Protection Mechanism Failure (CVE-2025-41224)

The affected products do not properly enforce interface access restrictions when changing from management to non-management interface configurations until a system reboot occurs, despite configuration being saved. This could allow an attacker with network access and credentials to gain access to...

8.8CVSS5.4AI score0.00355EPSS

Exploits0References4

NVD•added 2025/10/21 5:15 p.m.•1 views

CVE-2025-11534

The affected Raisecom devices allow SSH sessions to be established without completing user authentication. This could allow attackers to gain shell access without valid credentials...

9.3CVSS0.00097EPSS

Exploits3References2

CNNVD•added 2025/10/21 12:0 a.m.•1 views

Raisecomm RAX701-GC-WP-01 P200R002C52和Raisecomm RAX701-GC-WP-01 P200R002C53 安全漏洞

The Raisecomm RAX701-GC-WP-01 P200R002C52 and the Raisecomm RAX701-GC-WP-01 P200R002C53 are both intelligent network node terminals from a Chinese Raisecomm company. A security vulnerability exists in the Raisecomm RAX701-GC-WP-01 P200R002C52 and the Raisecomm RAX701-GC-WP-01 P200R002C53, which...

9.3CVSS6.5AI score0.00097EPSS

Exploits3References3