CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

62 matches found

NVD•added 2026/06/16 12:16 p.m.•11 views

CVE-2026-10828

A format string vulnerability has been found in the "alias" parameter of the Serial Param configuration page in the NPort W2150A-W4/W2250A-W4 Series version 1.5 and prior. This vulnerability stems from insufficient input validation and improper handling of externally supplied format strings. An...

6.9CVSS0.0031EPSS

Exploits0References1

OSV•added 2026/05/06 2:43 p.m.•6 views

BIT-JAVA-2022-21626

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Security. Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Easily exploitable vulnerabili...

5.3CVSS6.5AI score0.01746EPSS

Exploits0References8

OSV•added 2026/05/06 2:41 p.m.•8 views

BIT-JAVA-MIN-2020-14578

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u261 and 8u251; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols ...

4.3CVSS6.6AI score0.04044EPSS

Exploits0References12

OSV•added 2026/03/02 2:37 p.m.•5 views

CVE-2025-50187 Chamilo: Evaluation of untrusted user input leads to Remote Code Execution

Chamilo is a learning management system. Prior to version 1.11.28, parameter from SOAP request is evaluated without filtering which leads to Remote Code Execution. This issue has been patched in version 1.11.28...

9.8CVSS5.9AI score0.00879EPSS

Exploits1References4

RedhatCVE•added 2026/01/09 12:7 p.m.•6 views

CVE-2018-6785

In Jiangmin Antivirus 16.0.0.100, the driver file KSysCall.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x9A008254...

7.8CVSS7.4AI score0.00406EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 10:54 a.m.•7 views

CVE-2022-23403

Improper input validation in the IntelR Data Center Manager software before version 4.1 may allow an authenticated user to potentially enable denial of service via local access...

5.5CVSS6.5AI score0.00186EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:11 a.m.•13 views

CVE-2022-35964

TensorFlow is an open source platform for machine learning. The implementation of BlockLSTMGradV2 does not fully validate its inputs. This results in a a segfault that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit...

7.5CVSS6.6AI score0.00409EPSS

Exploits0References1

OSV•added 2025/11/24 3:15 p.m.•5 views

CVE-2025-12978

Fluent Bit inhttp, insplunk, and inelasticsearch input plugins contain a flaw in the tagkey validation logic that fails to enforce exact key-length matching. This allows crafted inputs where a tag prefix is incorrectly treated as a full match. A remote attacker with authenticated or exposed acces...

5.4CVSS7AI score

Exploits0References1