CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

17009 matches found

Qualys Blog•added 2025/12/11 5:0 p.m.•6 views

Scale AI Securely with Qualys TotalAI’s Streamlined Onboarding, Deeper Risk Detection, and Compliance-Ready Reporting

Executive Summary Enterprises are entering a phase where AI systems function as decision engines that shape customer interactions, operational workflows, and business outcomes. This creates a new class of risk that is behavioral, contextual, and dynamic, driven by how models interpret instruction...

6.8AI score

Exploits0

IBM Security Bulletins•added 2025/12/11 9:51 a.m.•12 views

Security Bulletin: Multiple vulnerabilities in IBM® SDK, Java™ Technology Edition affect IBM Tivoli Network Configuration Manager ( CVE-2025-53066, CVE-2025-53057).

Summary Multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 8, used by IBM Tivoli Network Configuration Manager IP Edition Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Products and Versions Affected Products| Versions...

7.5CVSS6.6AI score0.00633EPSS

Exploits0Affected Software1

Tenable Nessus•added 2025/12/11 12:0 a.m.•7 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : go1.24 (SUSE-SU-2025:4337-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:4337-1 advisory. go1.24.11 released 2025-12-02 includes two security fixes to the crypto/x509 package, as well as...

7.5CVSS5.7AI score0.00451EPSS

Exploits2References9

RedhatCVE•added 2025/12/10 5:58 a.m.•5 views

CVE-2022-50644

In the Linux kernel, the following vulnerability has been resolved: clk: ti: dra7-atl: Fix reference leak in ofdra7atlclkprobe pmruntimegetsync will increment pm usage counter. Forgetting to putting operation will result in reference leak. Add missing pmruntimeputsync in some error paths...

5.8AI score0.00199EPSS

Exploits0References4

RedhatCVE•added 2025/12/10 4:24 a.m.•10 views

CVE-2023-53812

In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: fix decoder disable pm crash Can't call pmruntimedisable when the architecture support sub device for 'dev-pm.dev' is NUll, or will get below crash log. 10.771551 pc : rawspinlockirq+0x4c/0xa0 10.771556 l...

5.9AI score0.00156EPSS

Exploits0References4

Snyk•added 2025/12/10 1:58 a.m.•1 views

Malicious Package

Overview modules-runtime is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score

Exploits0References2

Snyk•added 2025/12/10 1:58 a.m.•2 views

Malicious Package

Overview ecmascript-runtime-client is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

9.8CVSS6.8AI score

Exploits0References2

OSSF Malicious Packages•added 2025/12/10 1:58 a.m.•6 views

Malicious code in ecmascript-runtime-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2749802bf68a2c601d1c2e22b4a398e096fca7b10d248305df538e8364390259 The package ecmascript-runtime-client was found to contain malicious code. Source: ghsa-malware...

6.9AI score

Exploits0References1

EUVD•added 2025/12/10 1:58 a.m.•3 views

EUVD-2025-202362

Malicious code in ecmascript-runtime-client npm...

6.6AI score

Exploits0References1

OSV•added 2025/12/10 1:58 a.m.•4 views

MAL-2025-192409 Malicious code in ecmascript-runtime-client (npm)

6.8AI score

Exploits0References1

EUVD•added 2025/12/10 1:58 a.m.•4 views

EUVD-2025-202361

Malicious code in modules-runtime npm...

6.6AI score

Exploits0References1

OSSF Malicious Packages•added 2025/12/10 1:58 a.m.•6 views

Malicious code in modules-runtime (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e707f153606cc933eafdfa4c883bf1092791f4fe0e80278d963dda8dd5291a46 The package modules-runtime was found to contain malicious code. Source: ghsa-malware e0c351f7e54009deb9f1a8fa206a6cc720b4a472a7b969018b50ae235fcac91...

6.9AI score

Exploits0References1

OSV•added 2025/12/10 1:58 a.m.•3 views

MAL-2025-192413 Malicious code in modules-runtime (npm)

6.8AI score

Exploits0References1

SUSE CVE•added 2025/12/10 12:39 a.m.•4 views

SUSE CVE-2022-50644

3.3CVSS6.4AI score0.00199EPSS

Exploits0References9

SUSE CVE•added 2025/12/10 12:35 a.m.•1 views

SUSE CVE-2023-53812

6.6AI score0.00156EPSS

Exploits0References3

Microsoft Secure•added 2025/12/09 9:41 p.m.•12 views

Shai-Hulud 2.0: Guidance for detecting, investigating, and defending against the supply chain attack

The Shai‑Hulud 2.0 supply chain attack represents one of the most significant cloud-native ecosystem compromises observed recently. Attackers maliciously modified hundreds of publicly available packages, targeting developer environments, continuous integration and continuous delivery CI/CD...

7.4AI score

Exploits0

RedhatCVE•added 2025/12/09 8:27 a.m.•7 views

CVE-2025-66479

Anthropic Sandbox Runtime is a lightweight sandboxing tool for enforcing filesystem and network restrictions on arbitrary processes at the OS level, without requiring a container. Prior to 0.0.16, due to a bug in sandboxing logic, sandbox-runtime did not properly enforce a network sandbox if the...

1.8CVSS7.2AI score0.00136EPSS

Exploits0References1

EUVD•added 2025/12/09 3:31 a.m.•6 views

EUVD-2022-55712

5.9AI score0.00199EPSS

Exploits0References10

OSV•added 2025/12/09 1:16 a.m.•3 views

DEBIAN-CVE-2023-53812

5.2AI score0.00156EPSS

Exploits0References1