CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7908 matches found

Snyk•added 2025/10/24 2:13 a.m.•4 views

Malicious Package

Overview mender-setup is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score

Exploits0References2

OSV•added 2025/10/24 2:13 a.m.•5 views

MAL-2025-48577 Malicious code in mender-setup (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 95b2a0aeb7e210157ad59facfa9c0e679873c34a71078e93e3410440365970a9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score

Exploits0References1

OSSF Malicious Packages•added 2025/10/24 2:13 a.m.•5 views

Malicious code in mender-setup (npm)

6.9AI score

Exploits0References1

EUVD•added 2025/10/24 2:13 a.m.•4 views

EUVD-2025-35762

Malicious code in mender-setup npm...

6.6AI score

Exploits0References1

CVE•added 2025/10/24 12:0 a.m.•29 views

CVE-2025-52099

CVE-2025-52099 describes an integer overflow in SQLite3 v3.50.0 that can enable a remote denial of service via the setupLookaside function. The root cause is an overflow during memory allocation in sqlite3_db_config-related code, leading to potential exploitation that can crash the application. P...

6.4AI score0.00047EPSS

Exploits0

CVE•added 2025/10/24 12:0 a.m.•19 views

CVE-2025-60552

CVE-2025-60552 affects the D-Link DIR600L router (DIR600L Ax FW116WWb01). A buffer overflow is triggered in the function formTcpipSetup via the input noted in the curTime parameter, due to improper input length validation. Reported impact is denial of service, with CVSSv3.1 indicating Network acc...

7.5CVSS7.5AI score0.0034EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2025/10/24 12:0 a.m.•2 views

CVE-2025-52099

...

6.1AI score0.00047EPSS

Exploits0

EUVD•added 2025/10/23 6:31 p.m.•9 views

EUVD-2025-35696

Audiofile v0.3.7 was discovered to contain a NULL pointer dereference via the ModuleState::setup function...

7.5CVSS6.7AI score0.0033EPSS

Exploits1References2

NVD•added 2025/10/23 4:16 p.m.•5 views

CVE-2025-50950

Audiofile v0.3.7 was discovered to contain a NULL pointer dereference via the ModuleState::setup function...

7.5CVSS0.0033EPSS

Exploits1References1

OSV•added 2025/10/23 4:16 p.m.•7 views

AZL-68814 CVE-2025-50950 affecting package audiofile 0.3.6-27

Audiofile v0.3.7 was discovered to contain a NULL pointer dereference via the ModuleState::setup function...

7.5CVSS5.8AI score0.0033EPSS

Exploits1References1

OSV•added 2025/10/23 4:16 p.m.•8 views

AZL-68885 CVE-2025-50950 affecting package audiofile 0.3.6-27

Audiofile v0.3.7 was discovered to contain a NULL pointer dereference via the ModuleState::setup function...

7.5CVSS5.8AI score0.0033EPSS

Exploits1References1

OSV•added 2025/10/23 4:16 p.m.•4 views

DEBIAN-CVE-2025-50950

Audiofile v0.3.7 was discovered to contain a NULL pointer dereference via the ModuleState::setup function...

7.5CVSS5.2AI score0.0033EPSS

Exploits1References1

OSV•added 2025/10/23 4:16 p.m.•3 views

CVE-2025-50950

Audiofile v0.3.7 was discovered to contain a NULL pointer dereference via the ModuleState::setup function...

7.5CVSS5.8AI score

Exploits0References1

OSV•added 2025/10/23 4:16 p.m.•3 views

UBUNTU-CVE-2025-50950

Audiofile v0.3.7 was discovered to contain a NULL pointer dereference via the ModuleState::setup function...

7.5CVSS5.8AI score0.0033EPSS

Exploits1References3

Vulnrichment•added 2025/10/23 12:0 a.m.•5 views

CVE-2025-50950

Audiofile v0.3.7 was discovered to contain a NULL pointer dereference via the ModuleState::setup function...

6.9AI score0.0033EPSS

Exploits1References1

CNNVD•added 2025/10/23 12:0 a.m.•5 views

AudioFile 安全漏洞

AudioFile is a simple C++ library containing only header files by the individual developer Adam Stark in the UK. It is used to read and write audio files. A security vulnerability exists in AudioFile version v0.3.7, which stems from a null pointer dereference in the ModuleState::setup function...

7.5CVSS6.5AI score0.0033EPSS

Exploits1References1

CNVD•added 2025/10/23 12:0 a.m.•5 views

ChurchCRM Deserialization Vulnerability

ChurchCRM is ChurchCRM open source an open source CRM system for churches. ChurchCRM 5.18.0 and earlier versions exist deserialization vulnerability , the vulnerability stems from the file setup/routes/setup.php in the parameter DBPASSWORD/ROOTPATH/URL in the receipt of user-submitted serialized...

8.1CVSS7.6AI score0.00672EPSS

Exploits1References1

Cvelist•added 2025/10/23 12:0 a.m.•14 views

CVE-2025-50950

Audiofile v0.3.7 was discovered to contain a NULL pointer dereference via the ModuleState::setup function...

0.0033EPSS

Exploits1References1

Positive Technologies•added 2025/10/23 12:0 a.m.•6 views

PT-2025-43528

Name of the Vulnerable Software and Affected Versions Audiofile version 0.3.7 Description The software contains a NULL pointer dereference within the ModuleState::setup function. This can lead to unexpected behavior or a denial of service. Recommendations Update to a newer version that contains a...

7.5CVSS6.5AI score0.0033EPSS

Exploits1References5

CVE•added 2025/10/23 12:0 a.m.•25 views

CVE-2025-50950

CVE-2025-50950 affects the Audiofile library (v0.3.7) with a NULL pointer dereference in ModuleState::setup. The issue is confirmed by multiple advisories (Red Hat RHSA-2025:23457, Amazon ALAS2-2025-3087, EU/NVD entries) and assigns a CVSS v3.1 base score of 7.5 (High) with network attack vector,...

7.5CVSS6.9AI score0.0033EPSS

Exploits1References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by