CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

RedhatCVE•added 2025/10/17 8:40 a.m.•5 views

CVE-2025-0277

HCL BigFix Mobile 3.3 and earlier are vulnerable to certain insecure directives within the Content Security Policy CSP. An attacker could trick users into performing actions by not properly restricting the sources of scripts and other content...

6.5CVSS6.8AI score0.00025EPSS

Exploits0References1

NVD•added 2025/10/16 9:15 a.m.•6 views

CVE-2025-0277

6.5CVSS0.00025EPSS

Exploits0References1

OSV•added 2025/10/16 9:15 a.m.•2 views

CVE-2025-0276

HCL BigFix Modern Client Management MCM 3.3 and earlier are vulnerable to certain insecure directives within the Content Security Policy CSP. An attacker could trick users into performing actions by not properly restricting the sources of scripts and other content...

6.1CVSS5.8AI score

Exploits0References1

NVD•added 2025/10/16 9:15 a.m.•5 views

CVE-2025-0276

6.5CVSS0.00025EPSS

Exploits0References1

Cvelist•added 2025/10/16 8:27 a.m.•4 views

CVE-2025-0277 HCL BigFix Mobile is affected by an insecure Content Security Policy (CSP)

6.5CVSS0.00025EPSS

Exploits0References1

CVE•added 2025/10/16 8:27 a.m.•7 views

CVE-2025-0277

CVE-2025-0277 affects HCL BigFix Mobile 3.3 and earlier. The issue arises from insecure directives in the Content Security Policy (CSP) , enabling an attacker to trick users into performing actions by insufficiently restricting sources of scripts and other content. What is vulnerable: CSP configu...

6.5CVSS6.4AI score0.00025EPSS

Exploits0References1Affected Software2

EUVD•added 2025/10/16 8:27 a.m.•1 views

EUVD-2025-34725

6.5CVSS6.3AI score0.00025EPSS

Exploits0References2

Vulnrichment•added 2025/10/16 8:27 a.m.•1 views

CVE-2025-0277 HCL BigFix Mobile is affected by an insecure Content Security Policy (CSP)

6.5CVSS6.4AI score0.00025EPSS

Exploits0References1

Vulnrichment•added 2025/10/16 8:25 a.m.•4 views

CVE-2025-0276 HCL BigFix Modern Client Management (MCM) is affected by an insecure Content Security Policy (CSP)

6.5CVSS6.4AI score0.00025EPSS

Exploits0References1

Cvelist•added 2025/10/16 8:25 a.m.•6 views

CVE-2025-0276 HCL BigFix Modern Client Management (MCM) is affected by an insecure Content Security Policy (CSP)

6.5CVSS0.00025EPSS

Exploits0References1

EUVD•added 2025/10/16 8:25 a.m.•1 views

EUVD-2025-34727

6.5CVSS6.3AI score0.00025EPSS

Exploits0References2

ATTACKERKB•added 2023/07/26 2:15 p.m.•2 views

CVE-2022-43711

Interactive Forms IAF in GX Software XperienCentral versions 10.29.1 until 10.33.0 was vulnerable to cross site scripting attacks XSS because the CSP header uses eval in the script-src...

6.1CVSS5AI score0.00343EPSS

Exploits0References3

SUSE CVE•added 2023/02/15 5:27 a.m.•1 views

SUSE CVE-2014-4650

The CGIHTTPServer module in Python 2.7.5 and 3.3.4 does not properly handle URLs in which URL encoding is used for path separators, which allows remote attackers to read script source code or conduct directory traversal attacks and execute unintended code via a crafted character sequence, as...

5.3CVSS8.8AI score0.07232EPSS

Exploits5References40

CNVD•added 2016/10/24 12:0 a.m.•1 views

Cgiemail Source Code Disclosure Vulnerability

CGIEmail is a WEB-based mail processing system. A source code disclosure vulnerability exists in Cgiemail version 1.6, which allows an attacker to retrieve the source code of a script file e.g., PL, CGI, and BAT from the server by sending a specially crafted request that contains square brackets...

6.9AI score

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by