CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

90 matches found

Veracode•added 2026/05/14 6:34 p.m.•6 views

Authentication Bypass

s3-proxy is vulnerable to Authentication Bypass. The vulnerability is due to inconsistent URL path interpretation between the authentication middleware and bucket handler, which allows an attacker to bypass access controls and perform unauthorized operations on protected S3 objects...

9.4CVSS5.8AI score0.00194EPSS

Exploits0References5Affected Software1

RedhatCVE•added 2026/01/09 9:27 a.m.•10 views

CVE-2023-45660

Nextcloud mail is an email app for the Nextcloud home server platform. In affected versions a missing check of origin, target and cookies allows for an attacker to abuse the proxy endpoint to denial of service a third server. It is recommended that the Nextcloud Mail is upgraded to 2.2.8 or 3.3.0...

4.3CVSS6.7AI score0.0013EPSS

Exploits0References1

NVD•added 2025/12/09 4:18 p.m.•1 views

CVE-2025-66631

CSLA .NET is a framework designed for the development of reusable, object-oriented business layers for applications. Versions 5.5.4 and below allow the use of WcfProxy. WcfProxy uses the now-obsolete NetDataContractSerializer NDCS and is vulnerable to remote code execution during deserialization...

9.8CVSS0.02819EPSS

Exploits0References3

CNNVD•added 2025/12/03 12:0 a.m.•3 views

OpenVPN 安全漏洞

OpenVPN is a software package for creating encrypted tunnels for Virtual Private Networks VPNs from US-based OpenVPN, which uses the OpenSSL library to encrypt data and control information, and allows created VPNs to be authenticated using public keys, electronic certificates, or...

5.6CVSS7.5AI score0.00011EPSS

Exploits0References3

Cvelist•added 2025/11/11 5:59 p.m.•3 views

CVE-2025-59514 Microsoft Streaming Service Proxy Elevation of Privilege Vulnerability

...

7.8CVSS0.00061EPSS

Exploits0References1

Vulnrichment•added 2025/11/11 5:59 p.m.•0 views

CVE-2025-59514 Microsoft Streaming Service Proxy Elevation of Privilege Vulnerability

...

7.8CVSS6.6AI score0.00061EPSS

Exploits0References1

Kaspersky•added 2025/11/11 12:0 a.m.•3 views

KLA90057 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information, bypass security restrictions, execute arbitrary code, read local files, cause denial of service. Below is a...

9.8CVSS7.7AI score0.00203EPSS

Exploits2References29