CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2025-19131

Malicious code in bioql PyPI...

8.1CVSS8AI score0.01128EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•6 views

EUVD-2025-19133

Malicious code in bioql PyPI...

5.9CVSS5.8AI score0.00394EPSS

Exploits0References1

RedhatCVE•added 2025/06/27 6:18 p.m.•17 views

CVE-2025-6444

ServiceStack GetErrorResponse Improper Input Validation NTLM Relay Vulnerability. This vulnerability allows remote attackers to relay NTLM credentials on affected installations of ServiceStack. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

5.9CVSS6.7AI score0.00394EPSS

Exploits0References1

NVD•added 2025/06/25 6:15 p.m.•5 views

CVE-2025-6444

5.9CVSS0.00394EPSS

Exploits0References1

NVD•added 2025/06/25 6:15 p.m.•4 views

CVE-2025-6445

ServiceStack FindType Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of ServiceStack. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

8.1CVSS0.01128EPSS

Exploits0References2

CVE•added 2025/06/25 5:42 p.m.•64 views

CVE-2025-6445

CVE-2025-6445 affects ServiceStack via the FindType method, where lack of validation of a user-supplied path in file operations enables remote code execution in the context of the current process. Documented by multiple connected sources (e.g., ZDI advisory ZDI-25-416; Red Hat CVE entry) with att...

8.1CVSS7.8AI score0.01128EPSS

Exploits0References2Affected Software1

Zero Day Initiative•added 2025/06/23 12:0 a.m.•4 views

ServiceStack GetErrorResponse Improper Input Validation NTLM Relay Vulnerability

This vulnerability allows remote attackers to relay NTLM credentials on affected installations of ServiceStack. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the implementation o...

5.9CVSS6.7AI score0.00394EPSS

Exploits0References1

Zero Day Initiative•added 2025/06/23 12:0 a.m.•4 views

ServiceStack FindType Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of ServiceStack. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the implementation o...

8.1CVSS7.5AI score0.01128EPSS

Exploits0References1

Positive Technologies•added 2025/06/23 12:0 a.m.•4 views

PT-2025-26618 · Unknown · Servicestack

Name of the Vulnerable Software and Affected Versions: ServiceStack affected versions not specified Description: This issue allows remote attackers to relay NTLM credentials on affected installations of ServiceStack. The specific flaw exists within the implementation of the GetErrorResponse metho...

5.9CVSS5.5AI score0.00394EPSS

Exploits0References5

Positive Technologies•added 2025/06/23 12:0 a.m.•3 views

PT-2025-26619 · Unknown · Servicestack

Name of the Vulnerable Software and Affected Versions: ServiceStack affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of ServiceStack. The specific flaw exists within the implementation of the FindType method, which...

8.1CVSS8.2AI score0.01128EPSS

Exploits0References6

RedhatCVE•added 2025/05/22 3:6 p.m.•14 views

CVE-2020-28042

ServiceStack before 5.9.2 mishandles JWT signature verification unless an application has a custom ValidateToken function that establishes a valid minimum length for a signature...

5.3CVSS6.9AI score0.02325EPSS

Exploits1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by