CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

22 matches found

EUVD•added 2026/04/12 9:30 p.m.•1 views

EUVD-2026-21740

Varnish Enterprise before 6.0.16r12 allows a "workspace overflow" denial of service daemon panic for shared VCL. The headerplus.writereq0 function from vmodheaderplus updates the underlying req0, which is normally the original read-only request from which req is derived readable and writable from...

4CVSS5.9AI score0.0006EPSS

Exploits0References2

CNNVD•added 2026/04/12 12:0 a.m.•2 views

Varnish Enterprise 安全漏洞

Varnish Enterprise is a high-performance caching software developed by the Varnish company. It is designed for handling high-traffic scenarios and optimizing business operations. Versions of Varnish Enterprise prior to 6.0.16r12 contained security vulnerabilities. These vulnerabilities stemmed fr...

7.5CVSS5.9AI score0.0006EPSS

Exploits0References1

RedHat Linux•added 2025/07/14 1:19 a.m.•3 views

sudo: LPE via host option

A privilege escalation vulnerability was found in Sudo. In certain configurations, unauthorized users can gain elevated system privileges via the Sudo host option -h or --host. When using the default sudo security policy plugin sudoers, the host option is intended to be used in conjunction with t...

8.8CVSS7.2AI score0.30014EPSS

Exploits12References6

OSV•added 2025/06/03 5:15 p.m.•0 views

UBUNTU-CVE-2025-30167

Jupyter Core is a package for the core common functionality of Jupyter projects. When using Jupyter Core prior to version 5.8.0 on Windows, the shared %PROGRAMDATA% directory is searched for configuration files SYSTEMCONFIGPATH and SYSTEMJUPYTERPATH, which may allow users to create configuration...

7.3CVSS5.8AI score0.00062EPSS

Exploits0References3

RedHat Linux•added 2024/05/23 3:28 p.m.•49 views

Important: Red Hat Security Advisory: Red Hat OpenStack Platform 16.2 (etcd) security update

An update for etcd is now available for Red Hat OpenStack Platform 16.2 Train. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabilit...

7.5CVSS7.1AI score0.944EPSS

Exploits20References10

RedHat Linux•added 2023/10/20 2:51 p.m.•60 views

Important: Red Hat Security Advisory: Red Hat OpenStack Platform 16.1.9 (collectd-libpod-stats, etcd) security update

An update for collectd-libpod-stats and etcd is now available for Red Hat OpenStack Platform 16.1.9 Train. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.5CVSS7.1AI score0.944EPSS

Exploits19References4

RedHat Linux•added 2023/10/20 2:51 p.m.•56 views

Important: Red Hat Security Advisory: Red Hat OpenStack Platform 17.1.1 security update

An update for collectd-libpod-stats, etcd, and python-octavia-tests-tempest is now available for Red Hat OpenStack Platform 17.1.1. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detaile...

7.5CVSS7.1AI score0.944EPSS

Exploits19References5

Vulnrichment•added 2023/01/14 12:47 a.m.•8 views

CVE-2023-22495 Izanami is vulnerable to Authorization Bypass

Izanami is a shared configuration service well-suited for micro-service architecture implementation. Attackers can bypass the authentication in this application when deployed using the official Docker image. Because a hard coded secret is used to sign the authentication token JWT, an attacker cou...

9.8CVSS9.8AI score0.00437EPSS

Exploits1References2

Github Security Blog•added 2022/05/13 1:31 a.m.•22 views

Jenkins Config File Provider Plugin XSS vulnerability

An cross-site scripting vulnerability exists in Jenkins Config File Provider Plugin 3.4.1 and earlier in src/main/resources/lib/configfiles/configfiles.jelly that allows attackers with permission to define shared configuration files to execute arbitrary JavaScript when a user attempts to delete t...

4.8CVSS6.6AI score0.00064EPSS

Exploits0References6Affected Software1

Tenable Nessus•added 2021/12/11 12:0 a.m.•38 views

RHEL 8 : Red Hat OpenStack Platform 16.1 (etcd) (RHSA-2021:5072)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:5072 advisory. A highly-available key value store for shared configuration Security Fixes: net/http: panic in ReadRequest and ReadResponse when reading a...

7.5CVSS7.2AI score0.00039EPSS

Exploits3References11

RedHat Linux•added 2021/09/15 1:41 p.m.•36 views

Moderate: Red Hat Security Advisory: Red Hat OpenStack Platform 16.2 (etcd) security update

An update for etcd is now available for Red Hat OpenStack Platform 16.2 Train. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

7.5CVSS6.7AI score0.00039EPSS

Exploits3References5

Snyk•added 2021/01/14 1:2 p.m.•3 views

Prototype Pollution

Overview Affected versions of this package are vulnerable to Prototype Pollution. If an attacker submits a malicious INI file to an application that parses it with loadSharedConfigFiles , they will pollute the prototype on the application. This can be exploited further depending on the context. P...

9.8CVSS9AI score0.01661EPSS

Exploits1References2

OpenVAS•added 2020/02/28 12:0 a.m.•13 views

Fedora: Security Advisory for etcd (FEDORA-2020-279c61dd70)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score

Exploits0References2