CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

219 matches found

Snyk•added 2026/05/21 9:35 p.m.•9 views

Server-side Request Forgery (SSRF)

Overview pydantic-ai-slim is an Agent Framework / shim to use Pydantic with LLMs, slim package Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via incomplete blocklist in isprivateip function when forcedownload='allow-local' is enabled. An attacker can access...

8.6CVSS6.6AI score0.00018EPSS

Exploits1References2

EUVD•added 2026/05/12 6:30 p.m.•8 views

EUVD-2026-29524

Integer overflow in the UEFI firmware for the Slim Bootloader may allow an escalation of privilege. System software adversary with a privileged user combined with a low complexity attack may enable local code execution. This result may potentially occur via local access when attack requirements a...

8.7CVSS5.9AI score0.0002EPSS

Exploits0References2

Vulnrichment•added 2026/05/12 4:34 p.m.•5 views

CVE-2026-20753

8.7CVSS5.9AI score0.0002EPSS

Exploits0References1

Positive Technologies•added 2026/05/12 12:0 a.m.•9 views

PT-2026-40087

8.7CVSS5.9AI score0.0002EPSS

Exploits0References2

CNNVD•added 2026/05/12 12:0 a.m.•4 views

Intel Slim Bootloader 输入验证错误漏洞

Intel Slim Bootloader is a lightweight security bootloader designed by Intel Corporation for the Intel platform. There is an input validation vulnerability in Intel Slim Bootloader, which stems from an integer overflow issue in the UEFI firmware. This vulnerability may lead to privilege escalatio...

8.7CVSS6.1AI score0.0002EPSS

Exploits0References1

Intel•added 2026/05/12 12:0 a.m.•8 views

Intel® Slim Bootloader Advisory

Summary: A potential security vulnerability in the Intel® Slim Bootloader may allow escalation of privilege. Intel is releasing firmware updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2026-20753 Description: Integer overflow in the UEFI firmware for the Slim...

8.7CVSS5.9AI score0.0002EPSS

Exploits0

OSV•added 2026/03/03 5:51 p.m.•1 views

MAL-2026-1225 Malicious code in urllib-slim (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 acbcedbcc1d5bafffbb66128eae99b1fdc6c8e62b65bedd8f62ee2790919d972 During installation, the package starts obfuscated code that downloads and runs remote executables in specific environments. In some packages in the campaign,...

5.9AI score

Exploits0References5

OSSF Malicious Packages•added 2026/03/03 5:51 p.m.•10 views

Malicious code in urllib-slim (PyPI)

5.9AI score

Exploits0References5

Snyk•added 2026/02/06 6:51 p.m.•2 views

Cross-site Scripting (XSS)

Overview pydantic-ai-slim is an Agent Framework / shim to use Pydantic with LLMs, slim package Affected versions of this package are vulnerable to Cross-site Scripting XSS via the version query parameter used in constructing the CDN URL for serving frontend HTML. An attacker can execute arbitrary...

8.2CVSS5.5AI score0.00016EPSS

Exploits0References3

vulnersOsv•added 2026/02/06 6:32 p.m.•1 views

adept-ai (>=0.2.0 <=0.2.3), agent-runtimes (=0.0.9) +70 more potentially affected by CVE-2026-25580 via pydantic-ai-slim (>=0.0.26 <=1.55.0)

pydantic-ai-slim PYPI version =0.0.26, =0.2.0, =0.2.0, =0.1.4a1, =0.1.0, =0.3.0, =0.0.10, =1.1.0, =0.0.2, =0.1.0, =0.1.0, =0.1.1a0, =0.1.11, =1.55.0 and more Source cves: CVE-2026-25580 Source advisory: SNYK:PYTHON-PYDANTICAISLIM-15248301...

8.6CVSS6.5AI score0.00018EPSS

Exploits1

Snyk•added 2026/02/06 6:32 p.m.•2 views

Server-side Request Forgery (SSRF)

Overview pydantic-ai-slim is an Agent Framework / shim to use Pydantic with LLMs, slim package Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via the downloaditem function. An attacker can access internal network resources, retrieve sensitive cloud metadata, ...

9.3CVSS5.7AI score0.00018EPSS

Exploits1References2

vulnersOsv•added 2026/02/06 6:32 p.m.•2 views

adept-ai (>=0.2.0 <=0.2.3), agent-runtimes (=0.0.9) +70 more potentially affected by CVE-2026-25580 via pydantic-ai-slim (>=0.0.26 <=1.55.0)

8.6CVSS6.5AI score0.00018EPSS

Exploits1

Redos•added 2026/01/20 12:0 a.m.•2 views

ROS-20260120-7329

A vulnerability in the slimdotransfer function of the driver drivers/slimbus/messaging.c of the Linux kernel is related to incorrect resource release. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

7.8CVSS6.7AI score0.00008EPSS

Exploits0

F5 Networks•added 2025/12/31 5:49 a.m.•5 views

K000158952: Intel UEFI vulnerability CVE-2025-35968

Security Advisory Description Protection mechanism failure in the UEFI firmware for the Slim Bootloader within firmware may allow an escalation of privilege. Startup code and smm adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This resul...

7.1CVSS6.8AI score0.00013EPSS

Exploits0

RedhatCVE•added 2025/11/13 1:0 a.m.•4 views

CVE-2025-35968

Protection mechanism failure in the UEFI firmware for the Slim Bootloader within firmware may allow an escalation of privilege. Startup code and smm adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via...

7.1CVSS6.8AI score0.00013EPSS

Exploits0References1

EUVD•added 2025/11/11 6:30 p.m.•2 views

EUVD-2025-93472

7.1CVSS6.3AI score0.00013EPSS

Exploits0References2

NVD•added 2025/11/11 5:15 p.m.•1 views

CVE-2025-35968

7.1CVSS0.00013EPSS

Exploits0References1

CVE•added 2025/11/11 4:51 p.m.•7 views

CVE-2025-35968

CVE-2025-35968 is an Intel Slim Bootloader UEFI firmware vulnerability described as a protection mechanism failure that could allow privilege escalation. The issue can be exploited by a local attacker with privileged access and high attack complexity, without user interaction, potentially impacti...

7.1CVSS6.5AI score0.00013EPSS

Exploits0References1

Vulnrichment•added 2025/11/11 4:51 p.m.•2 views

CVE-2025-35968

7.1CVSS6.5AI score0.00013EPSS

Exploits0References1