CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2026/03/04 2:16 p.m.•0 views

CVE-2025-40896

4.8CVSS5.8AI score0.00032EPSS

CNNVD•added 2026/02/12 12:0 a.m.•1 views

SolaX Power Pocket 安全漏洞

SolaX Power Pocket is a monitoring data collection tool developed by SolaX Energy in China. There is a security vulnerability in SolaX Power Pocket, which stems from the lack of server certificate verification when connecting to the SolaX Cloud MQTTS server. This vulnerability could allow a...

9.4CVSS5.9AI score0.00012EPSS

RedhatCVE•added 2026/01/09 9:50 a.m.•2 views

CVE-2020-24560

An incomplete SSL server certification validation vulnerability in the Trend Micro Security 2019 v15 consumer family of products could allow an attacker to combine this vulnerability with another attack to trick an affected client into downloading a malicious update instead of the expected one...

7.5CVSS6.8AI score0.00221EPSS

RedhatCVE•added 2026/01/09 9:27 a.m.•4 views

CVE-2023-45613

In JetBrains Ktor before 2.3.5 server certificates were not verified...

9.1CVSS6.9AI score0.00003EPSS

CVE•added 2025/10/31 3:48 p.m.•5 views

CVE-2025-12553

CVE-2025-12553 affects Azure Access Technology BLU-IC2 and BLU-IC4 (through 1.19.5). The vulnerability comes from disabled email server certificate verification, enabling potential MITM exposure. Affected versions: BLU-IC2 and BLU-IC4 up to 1.19.5. The PT-2025-44648 note provides practical remedi...

10CVSS6.6AI score0.00047EPSS

Exploits0References1Affected Software1

Cvelist•added 2025/10/31 3:48 p.m.•2 views

CVE-2025-12553 Server Certificate Verification Disabled

Email Server Certificate Verification Disabled.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5...

10CVSS0.00047EPSS

Vulnrichment•added 2025/10/31 3:48 p.m.•3 views

CVE-2025-12553 Server Certificate Verification Disabled

Email Server Certificate Verification Disabled.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5...

10CVSS6.6AI score0.00047EPSS

7.5CVSS6.8AI score0.00157EPSS

EUVD-2021-24193

Malware in sbrugna...

Exploits0References7

5.9CVSS7AI score0.00126EPSS

EUVD-2018-8041

Malware in sbrugna...

Exploits0References3

9.8CVSS9.4AI score0.0022EPSS

EUVD-2021-26783

Malware in sbrugna...

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-0029

Malware in sbrugna...

8.8CVSS8.6AI score0.00102EPSS

Exploits0References10

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2021-27130

Malware in sbrugna...

6.8CVSS6.5AI score0.00126EPSS

5.9CVSS7.7AI score0.01749EPSS

EUVD-2016-3153

Malware in sbrugna...

Exploits0References35

5.9CVSS5.9AI score0.00128EPSS

EUVD-2018-8033

Malware in sbrugna...

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2022-37171

Malicious code in bioql PyPI...

4.8CVSS5.2AI score0.00105EPSS

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-33068

Malicious code in bioql PyPI...

4.8CVSS5.6AI score0.00241EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•0 views

EUVD-2022-6112

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00127EPSS

Exploits1References5

RedhatCVE•added 2025/05/23 9:58 a.m.•3 views

CVE-2024-27440

The Toyoko Inn official App for iOS versions prior to 1.13.0 and Toyoko Inn official App for Android versions prior 1.3.14 don't properly verify server certificates, which allows a man-in-the-middle attacker to spoof servers and obtain sensitive information via a crafted certificate...

4.8CVSS5.8AI score0.0011EPSS

RedhatCVE•added 2025/05/23 5:53 a.m.•2 views

CVE-2023-22367

Ichiran App for iOS versions prior to 3.1.0 and Ichiran App for Android versions prior to 3.1.0 improperly verify server certificates, which may allow a remote unauthenticated attacker to eavesdrop on an encrypted communication via a man-in-the-middle attack...

5.9CVSS6.9AI score0.00252EPSS