CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

With the evolution of modern software development, CI/CD pipeline governance has emerged as a critical factor in maintaining both agility and compliance. As we enter the age of artificial intelligence AI, the importance of robust pipeline governance has only intensified. With that said, we'll...

7.2AI score

Exploits0

UbuntuCve•added 2024/10/21 8:15 p.m.•4 views

CVE-2022-48973

In the Linux kernel, the following vulnerability has been resolved: gpio: amd8111: Fix PCI device reference count leak foreachpcidev is implemented by pcigetdevice. The comment of pcigetdevice says that it will increase the reference count for the returned pcidev and also decrease the reference...

5.5CVSS6.3AI score0.00235EPSS

Exploits0References10

UbuntuCve•added 2024/10/21 8:15 p.m.•9 views

CVE-2022-49019

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: nixge: fix NULL dereference In function nixgehwdmabdrelease dereference of NULL pointer priv-rxbdv is possible for the case of its allocation failure in nixgehwdmabdinit. Move for loop with priv-rxbdv dereference...

5.5CVSS6.3AI score0.00233EPSS

Exploits0References7

UbuntuCve•added 2024/07/29 3:15 p.m.•10 views

CVE-2024-41033

In the Linux kernel, the following vulnerability has been resolved: cachestat: do not flush stats in recency check syzbot detects that cachestat is flushing stats, which can sleep, in its RCU read section see 1. This is done in the workingsettestrecent step which checks if the folio's eviction is...

5.5CVSS5.9AI score0.00288EPSS

Exploits0References14

Chainguard•added 2024/06/10 6:38 p.m.•3 views

GHSA-99PG-GRM5-QQ3V vulnerabilities

Vulnerabilities for packages: dive...

7.3AI score

Exploits0

OSV•added 2024/05/23 5:58 a.m.•2 views

BELL-CVE-2023-52798

Bulletin has no description...

8.8CVSS6.2AI score0.01EPSS

Exploits0References1

RedHat Linux•added 2024/05/22 11:48 a.m.•415 views

Important: Red Hat Security Advisory: bind and dhcp security update

An update for bind and dhcp is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

7.5CVSS7AI score0.99995EPSS

Exploits1References4

GithubExploit•added 2024/03/29 9:54 a.m.•302 views

Exploit for Server-Side Request Forgery in Anyscale Ray

PoC for a remote command execution vulnerability in Ray framew...

9.8CVSS8.2AI score0.81512EPSS

Exploits6

OSV•added 2024/03/01 12:0 a.m.•11 views

ASB-A-314791341

Bulletin has no description...

9.8CVSS7.2AI score0.00353EPSS

Exploits0References2

Qualys Blog•added 2024/01/30 5:12 p.m.•10 views

Advancing Cybersecurity Management With Qualys Cloud Agent

In the first part of our series, we discussed the significant enhancements in Reduced Activity Periods RAP and Enhanced Capabilities for VDI in the Qualys Cloud Agent. In this second part of the series, we continue our exploration into the other two pivotal enhancements of this upgrade: 1. Agent...

7.1AI score

Exploits0

Tenable Nessus•added 2023/12/11 12:0 a.m.•13 views

HTTP NTLM Information Disclosure

Windows New Technology LAN Manager NTLM is a suite of Microsoft security protocols designed to offer authentication, integrity and confidentiality to users. In Windows environments, NTLM authentication is often supported over HTTP in order to protect access to specific resources. During the...

7.2AI score

Exploits0References2

The Hacker News•added 2023/09/14 11:36 a.m.•36 views

Avoid These 5 IT Offboarding Pitfalls

Employee offboarding is no one's favorite task, yet it is a critical IT process that needs to be executed diligently and efficiently. That's easier said than done, especially considering that IT organizations have less visibility and control over employees' IT use than ever. Today, employees can...

6.5AI score

Exploits0

BDU FSTEC•added 2023/07/18 12:0 a.m.•1 views

The vulnerability in the implementation of the TLS protocol in the Quarkus Java framework allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the TLS protocol implementation in the Quarkus Java framework is related to the insufficient encryption security when using the quarkus.http.ssl.protocols configuration. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

7.7CVSS6.9AI score0.00708EPSS

Exploits0References4Affected Software1

HackRead•added 2023/06/26 3:27 p.m.•12 views

Fintech’s Crucial Role in Reducing Cyber Threats

By Owais Sultan Fintech can reduce cyber threats by implementing robust encryption and authentication measures, enhancing security protocols to safeguard financial transactions and customer data. This is a post from HackRead.com Read the original post: Fintech’s Crucial Role in Reducing Cyber...

7.1AI score

Exploits0

Cvelist•added 2023/06/23 1:1 a.m.•28 views

CVE-2023-36191

...

Exploits0

F5 Networks•added 2023/02/21 7:42 p.m.•34 views

K3082: Multiple vulnerabilities in OpenSSL - CAN-2004-0081, CAN-2004-0079, CAN-2004-0112

Security Advisory Description Note : Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of the F...

9.2AI score

Exploits0

Fedora•added 2022/11/10 10:54 p.m.•41 views

[SECURITY] Fedora 37 Update: curl-7.85.0-2.fc37

curl is a command line tool for transferring data with URL syntax, supporting FTP, FTPS, HTTP, HTTPS, SCP, SFTP, TFTP, TELNET, DICT, LDAP, LDAPS, FILE, IMA P, SMTP, POP3 and RTSP. curl supports SSL certificates, HTTP POST, HTTP PUT, FTP uploading, HTTP form based upload, proxies, cookies,...

9.8CVSS8.9AI score0.04325EPSS

Exploits2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by