CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

144 matches found

CVE-2026-39312

SoftEtherVPN is a an open-source cross-platform multi-protocol VPN Program. In 5.2.5188 and earlier, a pre-authentication denial-of-service vulnerability exists in SoftEther VPN Developer Edition 5.2.5188 and likely earlier versions of Developer Edition. An unauthenticated remote attacker can cra...

7.5CVSS5.5AI score0.00389EPSS

Exploits1References1

The Hacker News•added 2026/05/20 12:51 p.m.•17 views

Webworm Deploys EchoCreep and GraphWorm Backdoors Using Discord and MS Graph API

Cybersecurity researchers have flagged fresh activity from a China-aligned threat actor known as Webworm in 2025, deploying custom backdoors that employ Discord and Microsoft Graph API for command-and-control C2 or C&C communications. Webworm, first publicly documented by Broadcom-owned Symantec ...

5.9AI score

Exploits0

NVD•added 2026/04/07 5:16 p.m.•2 views

CVE-2026-39312

7.5CVSS0.00389EPSS

Exploits1References1

Cvelist•added 2026/04/07 4:52 p.m.•17 views

CVE-2026-39312 Pre-Auth EAP-TLS DoS on SoftEther VPN Developer Edition

7.5CVSS0.00389EPSS

Exploits1References1

Vulnrichment•added 2026/04/07 4:52 p.m.•2 views

CVE-2026-39312 Pre-Auth EAP-TLS DoS on SoftEther VPN Developer Edition

7.5CVSS6AI score0.00389EPSS

Exploits1References1

ATTACKERKB•added 2026/04/07 4:52 p.m.•2 views

CVE-2026-39312

7.5CVSS6AI score0.00389EPSS

Exploits1References2Affected Software1

EUVD•added 2026/04/07 4:52 p.m.•2 views

EUVD-2026-19804

7.5CVSS6AI score0.00389EPSS

Exploits1References1

CVE•added 2026/04/07 4:52 p.m.•5 views

CVE-2026-39312

CVE-2026-39312 affects SoftEtherVPN Developer Edition 5.2.5188 and earlier. It is a pre-authentication denial-of-service where an unauthenticated remote attacker can crash the vpnserver by sending a malformed EAP-TLS packet over raw L2TP (UDP/1701), terminating all active VPN sessions. The root c...

7.5CVSS6AI score0.00389EPSS

Exploits1References1Affected Software1

CNNVD•added 2026/04/07 12:0 a.m.•3 views

SoftEther VPN 安全漏洞

SoftEther VPN is a free, open-source, cross-platform, and multi-protocol VPN software developed by SoftEther. It provides secure, flexible, and efficient network connections, allowing users to bypass geographical restrictions. SoftEther VPN versions 5.2.5188 and earlier contain security...

7.5CVSS5.8AI score0.00389EPSS

Exploits1References1

Positive Technologies•added 2026/04/07 12:0 a.m.•2 views

PT-2026-30923

7.5CVSS6AI score0.00389EPSS

Exploits1References2

RedhatCVE•added 2026/01/09 10:9 a.m.•6 views

CVE-2019-11868

See.sys, up to version 4.25, in SoftEther VPN Server versions 4.29 or older, allows a user to call an IOCTL specifying any kernel address to which arbitrary bytes are written to...

7.8CVSS6.9AI score0.00126EPSS

Exploits0References1

The Hacker News•added 2025/10/21 7:23 a.m.•7 views

Hackers Used Snappybee Malware and Citrix Flaw to Breach European Telecom Network

A European telecommunications organization is said to have been targeted by a threat actor that aligns with a China-nexus cyber espionage group known as Salt Typhoon. The organization, per Darktrace, was targeted in the first week of July 2025, with the attackers exploiting a Citrix NetScaler...

7AI score

Exploits0

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2019-3528

Malware in sbrugna...

7.8CVSS7.6AI score0.00126EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-35508

Malicious code in bioql PyPI...

5.3CVSS6.8AI score0.00307EPSS

Exploits1References2