CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2026/01/07 12:0 a.m.•1 views

Fujitsu Security Solution AuthConductor Client Basic 访问控制错误漏洞

Fujitsu Security Solution AuthConductor Client Basic is a client component of an authentication system from Fujitsu Japan. An access control error vulnerability exists in Fujitsu Security Solution AuthConductor Client Basic V2 2.0.25.0 and earlier versions, which stems from the presence of a sour...

8.5CVSS7.9AI score0.00005EPSS

Positive Technologies•added 2026/01/07 12:0 a.m.•1 views

PT-2026-1555

Name of the Vulnerable Software and Affected Versions Fujitsu Security Solution AuthConductor Client Basic V2 versions 2.0.25.0 and earlier Description An origin validation error exists in the software. Successful exploitation could allow an attacker who has access to the Windows system where the...

8.5CVSS7.4AI score0.00005EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-59287

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00021EPSS

OpenVAS•added 2025/07/18 12:0 a.m.•22 views

Moodle XSS Vulnerability (MSA-25-0029)

Moodle is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:moodle:moodle";...

6.1AI score

Patchstack•added 2025/07/16 11:0 a.m.•4 views

WordPress Maya Business <= 1.2.0 - Insecure Direct Object References (IDOR) Vulnerability

Insecure Direct Object References IDOR Vulnerability discovered by ch4r0n in WordPress Plugin Maya Business versions = 1.2.0...

7.5CVSS6.7AI score0.00058EPSS

Exploits0Affected Software1

Packet Storm News•added 2025/06/22 12:0 a.m.•2 views

LiSec-RTF: Reinforcing RPL Resilience against Routing Table Falsification Attack in 6LoWPAN

Routing Protocol for Low-Power and Lossy Networks RPL is an energy-efficient routing solution for IPv6 over Low-Power Wireless Personal Area Networks 6LoWPAN, recommended for resource-constrained devices. While RPL offers significant benefits, its security vulnerabilities pose challenges,...

7.2AI score

Exploits0

OpenVAS•added 2025/06/12 12:0 a.m.•4 views

Google Chrome Security Update (stable-channel-update-for-desktop_10-2025-06) - Mac OS X

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

8.8CVSS8.6AI score0.00152EPSS

Patchstack•added 2025/06/11 11:58 a.m.•4 views

WordPress eForm - WordPress Form Builder < 4.19.1 - Cross Site Scripting (XSS) Vulnerability

WordPress eForm - WordPress Form Builder 4.19.1 - Cross Site Scripting XSS Vulnerability discovered by Dave Jong Patchstack in WordPress Plugin eForm - WordPress Form Builder versions 4.19.1...

7.1CVSS6AI score0.00185EPSS

Exploits0Affected Software1

OpenVAS•added 2025/06/11 12:0 a.m.•7 views

.NET Core RCE Vulnerability (Jun 2025)

This host is missing an important security update according to Microsoft security update June 2025. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

7.5CVSS7.5AI score0.0028EPSS

OpenVAS•added 2025/06/04 12:0 a.m.•4 views

Google Chrome Security Update (stable-channel-update-for-desktop-2025-06) - Mac OS X

8.8CVSS8.9AI score0.03827EPSS

Exploits3References3

OpenVAS•added 2025/05/27 12:0 a.m.•6 views

FlatPress <= 1.3.1 XSS Vulnerability (CVE-2025-44108)

FlatPress is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

4.8CVSS6.3AI score0.00313EPSS

Exploits1References3

OpenVAS•added 2025/05/23 12:0 a.m.•7 views

Node.js < 20.19.2, 21.x < 22.15.1, 23.x < 23.11.1, 24.x < 24.0.2 DoS Vulnerability - Mac OS X

Node.js is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:nodejs:node.js";...

7.5CVSS7.4AI score0.00302EPSS

OpenVAS•added 2025/05/16 12:0 a.m.•10 views

Debian: Security Advisory (DSA-5919-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS6.4AI score0.00326EPSS

OpenVAS•added 2025/03/21 12:0 a.m.•18 views

Tenable Nessus Agent Privilege Escalation Vulnerability (TNS-2025-02, TNS-2025-03)

Tenable Nessus Agent is prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.8CVSS6.8AI score0.00068EPSS

Tenable Nessus•added 2025/03/05 12:0 a.m.•13 views

Linux Distros Unpatched Vulnerability : CVE-2023-52818

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: drm/amd: Fix UBSAN array-index-out-of- bounds for SMU7 For pptable structs that use flexible...

7.8CVSS6.2AI score0.00015EPSS

Tenable Nessus•added 2025/02/24 12:0 a.m.•2 views

Siemens APOGEE PXC and TALON TC Series Out-of-Bounds Read (CVE-2024-54090)

Affected devices contain an out-of-bounds read in the memory dump function. This could allow an attacker with Medium MED or higher privileges to cause the device to enter an insecure cold start state. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot...

8.7CVSS5.5AI score0.00074EPSS

Tenable Nessus•added 2025/02/20 12:0 a.m.•6 views

Siemens SIPROTEC 5 Devices Use of Default Credentials (CVE-2024-54015)

Affected devices do not properly validate SNMP GET requests. This could allow an unauthenticated, remote attacker to retrieve sensitive information of the affected devices with SNMPv2 GET requests using default credentials. This plugin only works with Tenable.ot. Please visit...

8.7CVSS5.6AI score0.00141EPSS

CNVD•added 2025/02/17 12:0 a.m.•6 views

Fortinet FortiClientMac Authorization Issues Vulnerability (CNVD-2025-03517)

Fortinet FortiClientMac is a mobile endpoint security solution from Fortinet. The solution provides IPsec and SSL encryption, WAN optimization, endpoint compliance and two-factor authentication when connected to a FortiGate firewall appliance. Fortinet FortiClientMac suffers from an authorization...

8.4CVSS7.2AI score0.00028EPSS