CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

355 matches found

Vulnrichment•added 2026/06/09 5:4 p.m.•10 views

CVE-2026-45501 Microsoft Exchange Server Spoofing Vulnerability

...

6.5CVSS5.4AI score0.00308EPSS

Exploits0References1

NVD•added 2026/05/13 7:17 p.m.•12 views

CVE-2026-41132

CKAN is an open-source DMS data management system for powering data hubs and data portals. Prior to 2.10.10 and 2.11.5, the configured SMTP server may be spoofed with any certificate e.g. self-signed, leaving credentials and all emails sent open to MITM attacks. This vulnerability is fixed in...

8.7CVSS0.00194EPSS

Exploits0References1

ATTACKERKB•added 2026/05/13 6:53 p.m.•4 views

CVE-2026-41132

8.7CVSS5.8AI score0.00194EPSS

Exploits0References2Affected Software1

CVE•added 2026/05/13 6:53 p.m.•18 views

CVE-2026-41132

CVE-2026-41132 affects CKAN prior to versions 2.10.10 and 2.11.5, where the SMTP connection lacks certificate validation. This allows a MITM attacker to spoof the SMTP server and potentially access credentials and email contents. The issue is mitigated by upgrading CKAN to 2.10.10 or 2.11.5 (or n...

8.7CVSS5.8AI score0.00194EPSS

Exploits0References1Affected Software1

RedhatCVE•added 2026/01/09 10:12 a.m.•9 views

CVE-2019-11014

The VStarCam vstc.vscam.client library and vstc.vscam shared object, as used in the Eye4 application for Android, iOS, and Windows, do not prevent spoofing of the camera server. An attacker can create a fake camera server that listens for the client looking for a camera on the local network. When...

10CVSS6.5AI score0.02329EPSS

Exploits1References1

RedhatCVE•added 2026/01/07 9:42 a.m.•7 views

CVE-1999-0395

A race condition in the BackWeb Polite Agent Protocol allows an attacker to spoof a BackWeb server...

5.1CVSS6.8AI score0.00885EPSS

Exploits0References1

Vulnrichment•added 2025/12/09 5:56 p.m.•6 views

CVE-2025-64672 Microsoft SharePoint Server Spoofing Vulnerability

...

8.8CVSS6.6AI score0.00992EPSS

Exploits0References1

Positive Technologies•added 2025/10/14 12:0 a.m.•2 views

PT-2025-42130

Name of the Vulnerable Software and Affected Versions JDBC Driver for SQL Server affected versions not specified Description An improper input validation issue exists in the JDBC Driver for SQL Server. This allows an unauthorized attacker to perform spoofing attacks over a network. The issue...

8.1CVSS6.8AI score0.0067EPSS

Exploits0References4