CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

408 matches found

Tenable Nessus•added 2026/02/11 12:0 a.m.•2 views

IBM WebSphere Application Server 8.5.5.28 < 8.5.5.30 / 9.0.5.24 < 9.0.5.27 (7260217)

The version of IBM WebSphere Application Server running on the remote host is affected by a vulnerability as referenced in the 7260217 advisory. - IBM WebSphere Application Server 9.0, and 8.5 could provide weaker than expected security during system administration of security settings...

4.9CVSS5.8AI score0.00014EPSS

Exploits0References2

OSV•added 2026/02/04 12:31 p.m.•0 views

GHSA-4J3G-RWWQ-4P54 Neo4j Enterprise and Community vulnerable to a potential information disclosure

Neo4j Enterprise and Community editions versions prior to 2026.01.3 and 5.26.21 are vulnerable to a potential information disclosure by a user who has ability to access the local log files. The "obfuscateliterals" option in the query logs does not redact error information, exposing unredacted dat...

4.8CVSS5.9AI score0.00006EPSS

Exploits0References3

RedhatCVE•added 2026/01/09 9:10 a.m.•6 views

CVE-2017-18702

NETGEAR R6220 devices before 1.1.0.60 are affected by incorrect configuration of security settings...

5.4CVSS7.1AI score0.00073EPSS

Exploits0References1

RedhatCVE•added 2026/01/08 3:15 a.m.•3 views

CVE-2025-7048

On affected platforms running Arista EOS with MACsec configuration, a specially crafted packet can cause the MACsec process to terminate unexpectedly. Continuous receipt of these packets with certain MACsec configurations can cause longer term disruption of dataplane traffic...

5.3CVSS6.9AI score0.00011EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:43 a.m.•6 views

CVE-1999-0610

An incorrect configuration of the Webcart CGI program could disclose private information...

5CVSS7AI score0.0061EPSS

Exploits0References1

Github Security Blog•added 2025/12/26 6:26 p.m.•5 views

Self-hosted n8n has Legacy Code node that enables arbitrary file read/write

Impact In self-hosted n8n instances where the Code node runs in legacy non-task-runner JavaScript execution mode, authenticated users with workflow editing access can invoke internal helper functions from within the Code node. This allows a workflow editor to perform actions on the n8n host with...

7.1CVSS6.9AI score0.00014EPSS

Exploits0References3Affected Software1

RedhatCVE•added 2025/12/10 8:36 a.m.•1 views

CVE-2025-41746

An XSS vulnerability in pxcportSecCfg.php can be used by an unauthenticated remote attacker to trick an authenticated user to send a manipulated POST request to the device in order to change parameters available via web based management WBM. The vulnerability does not provide access to system-lev...

7.1CVSS6.3AI score0.00125EPSS

Exploits0References1

EUVD•added 2025/12/09 6:30 p.m.•1 views

EUVD-2025-201896

7.1CVSS5.8AI score0.00125EPSS

Exploits0References2

OSV•added 2025/12/09 4:17 p.m.•0 views

CVE-2025-41746

7.1CVSS5.8AI score0.00125EPSS

Exploits0References1

IBM Security Bulletins•added 2025/12/05 1:37 p.m.•3 views

Security Bulletin: Security Configuration vulnerability in WebSphere Application Server Liberty affects IBM Spectrum Protect Operations Center (CVE-2024-56339)

Summary IBM WebSphere Application Server Liberty is vulnerable to a security configuration attack which can affect IBM Spectrum Protect formerly Tivoli Storage Manager Operations Center. Vulnerability Details CVEID:CVE-2024-56339 DESCRIPTION: IBM WebSphere Application Server 9.0 and WebSphere...

7.5CVSS6AI score0.00038EPSS

Exploits0Affected Software1

CVE•added 2025/12/04 9:43 p.m.•8 views

CVE-2025-12195

CVE-2025-12195 describes an out-of-bounds write vulnerability in the WatchGuard Fireware OS CLI. An authenticated privileged user can trigger arbitrary code execution by sending specially crafted IPSec configuration CLI commands. Affected versions span Fireware OS 11.0–11.12.4+541730, 12.0–12.11....

8.6CVSS6.9AI score0.00158EPSS

Exploits0References1Affected Software1

EUVD•added 2025/11/08 12:31 a.m.•2 views

EUVD-2025-38342

Improper Authorization in Elastic Cloud Enterprise can lead to Privilege Escalation where the built-in readonly user can call APIs that should not be allowed. The list of APIs that are affected by this issue is: post:/platform/configuration/security/service-accounts...

8.8CVSS6.3AI score0.00059EPSS

Exploits0References2

IBM Security Bulletins•added 2025/10/31 7:39 p.m.•2 views

Security Bulletin: Multiple vulnerabilities in IBM WebSphere Application Server Liberty affect IBM InfoSphere Information Server

Summary There are multiple vulnerabilities in IBM® WebSphere Application Server Liberty that is used by IBM InfoSphere Information Server. These are addressed. Vulnerability Details CVEID:CVE-2025-36047 DESCRIPTION: IBM WebSphere Application Server Liberty 18.0.0.2 through 25.0.0.8 is vulnerable ...

7.5CVSS7AI score0.01278EPSS

Exploits1Affected Software1

EUVD•added 2025/10/07 12:30 a.m.•0 views

EUVD-2020-28459

Malware in sbrugna...

8.8CVSS8.6AI score0.00203EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2002-2028

Malware in sbrugna...

7.5CVSS6.4AI score0.016EPSS

Exploits0References5