CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6727 matches found

CVE•added 2025/10/06 4:52 p.m.•15 views

CVE-2025-36355

CVE-2025-36355 affects IBM Security Verify Access and IBM Security Verify Access Docker. A locally authenticated user could execute malicious scripts from outside the software’s control sphere in versions 10.0.0.0–10.0.9.0 and 11.0.0.0–11.0.1.0. IBM’s bulletin notes remediation via updates: IBM S...

8.5CVSS6.4AI score0.00152EPSS

Exploits0References1Affected Software2

EUVD•added 2025/10/06 4:52 p.m.•17 views

EUVD-2025-32575

IBM Security Verify Access and IBM Security Verify Access Docker 10.0.0.0 through 10.0.9.0 and 11.0.0.0 through 11.0.1.0 could allow a locally authenticated user to execute malicious scripts from outside of its control sphere...

8.5CVSS6.3AI score0.00152EPSS

Exploits0References2

CVE•added 2025/10/06 4:9 p.m.•16 views

CVE-2025-61769

CVE-2025-61769 concerns Emlog, an open source PHP/MySQL CMS. The issue is a cross-site scripting (XSS) vulnerability present in Emlog up to and including version 2.5.22, exploitable via the file upload function where an authenticated user can upload an SVG containing JavaScript that is later exec...

6.1CVSS5.4AI score0.00257EPSS

Exploits1References2Affected Software1

Positive Technologies•added 2025/10/06 12:0 a.m.•5 views

PT-2025-40953

Name of the Vulnerable Software and Affected Versions Tesla Telematics Control Unit TCU firmware versions prior to 2025.14 Description The Tesla Telematics Control Unit TCU firmware is susceptible to an authentication bypass. The TCU operates the Android Debug Bridge adbd with root privileges...

8.6CVSS6.8AI score0.00549EPSS

Exploits0References8

Rockylinux•added 2025/10/04 12:11 a.m.•4 views

git security update

An update is available for git. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Git is a distributed revision control system with a decentralized architecture. A...

8.6CVSS7.5AI score0.02775EPSS

Exploits9

OSV•added 2025/10/04 12:11 a.m.•10 views

RLSA-2025:8607 Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: thunderbird: Out-of-bounds access when resolving Promise objects CVE-2025-4918 firefox: thunderbird: Out-of-bounds access when optimizing linear sums CVE-2025-4919 firefox: thunderbird: Clickjacking...

8.8CVSS7.4AI score0.08917EPSS

Exploits1References10

OSV•added 2025/10/04 12:11 a.m.•5 views

RLSA-2025:11462 Important: git security update

Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to wo...

8.3CVSS7.9AI score0.02775EPSS

Exploits9References8

Tenable Nessus•added 2025/10/04 12:0 a.m.•3 views

RockyLinux 9 : git (RLSA-2025:11462)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:11462 advisory. git: Git does not sanitize URLs when asking for credentials interactively CVE-2024-50349 git: Newline confusion in credential helpers can lead to...

8.6CVSS8.4AI score0.02775EPSS

Exploits9References15

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-1594

Malicious code in bioql PyPI...

5.4CVSS5.6AI score0.00398EPSS

Exploits1References3

EUVD•added 2025/10/03 8:7 p.m.•6 views

EUVD-2025-20347

Malicious code in bioql PyPI...

6.1CVSS6.6AI score0.00217EPSS

Exploits0References2