CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2257 matches found

The Hacker News•added 2022/04/18 12:58 p.m.•28 views

Researchers Share In-Depth Analysis of PYSA Ransomware Group

An 18-month-long analysis of the PYSA ransomware operation has revealed that the cybercrime cartel followed a five-stage software development cycle from August 2020, with the malware authors prioritizing features to improve the efficiency of its workflows. This included a user-friendly tool like ...

6.8AI score

Exploits0

OpenVAS•added 2022/04/13 12:0 a.m.•16 views

SUSE: Security Advisory (SUSE-SU-2022:1160-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.5AI score0.00813EPSS

Exploits0References4

CNNVD•added 2022/04/12 12:0 a.m.•3 views

Microsoft Azure 日志信息泄露漏洞

Microsoft Azure is a suite of open, enterprise-grade cloud computing platforms from Microsoft Corporation USA. A log information disclosure vulnerability exists in the Microsoft Azure SDK. No information about this vulnerability is available at this time, please stay tuned to CNNVD or vendor...

6.5CVSS6.8AI score0.0047EPSS

Exploits0References5

OSV•added 2022/04/04 8:15 p.m.•2 views

CVE-2021-32994

Softing OPC UA C++ SDK Software Development Kit versions from 5.59 to 5.64 exported library functions don't properly validate received extension objects, which may allow an attacker to crash the software by sending a variety of specially crafted packets to access several unexpected memory locatio...

7.5CVSS5.8AI score0.00122EPSS

Exploits0References1

Cvelist•added 2022/04/04 7:45 p.m.•17 views

CVE-2021-32994 Softing OPC-UA C++ SDK Improper Restriction of Operations within the Bounds of a Memory Buffer

7.5CVSS7.6AI score0.00122EPSS

Exploits0References1

CNVD•added 2022/04/02 12:0 a.m.•13 views

Accusoft ImageGear out-of-bounds write vulnerability (CNVD-2022-35419)

Accusoft ImageGear is a software development kit SDK for image processing from Accusoft, USA. Accusoft ImageGear suffers from an out-of-bounds write vulnerability that can be exploited by an attacker to potentially cause memory corruption via a compiled file in the wrong format...

8.1CVSS7AI score0.00237EPSS

Exploits1References1

OpenVAS•added 2022/03/30 12:0 a.m.•19 views

SUSE: Security Advisory (SUSE-SU-2022:1023-1)

7.5CVSS7.5AI score0.00089EPSS

Exploits1References4

OpenVAS•added 2022/03/16 12:0 a.m.•20 views

SUSE: Security Advisory (SUSE-SU-2022:0860-1)

7.5CVSS7.1AI score0.07539EPSS

Exploits2References8

AlmaLinux•added 2022/03/15 9:10 a.m.•19 views

java-11-openjdk bug fix and enhancement update

The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Bug Fixes: The previous OpenJDK 11 release, 11.0.14, was found to contain a regression introduced by improvements to the HTTP client. It caused both the :authority' and...

1.4AI score

Exploits0

OpenVAS•added 2022/03/15 12:0 a.m.•12 views

SUSE: Security Advisory (SUSE-SU-2022:0828-1)

5.5CVSS6.6AI score0.00074EPSS

Exploits1References4

OpenVAS•added 2022/03/12 12:0 a.m.•15 views

SUSE: Security Advisory (SUSE-SU-2022:0811-1)

8.8CVSS7.6AI score0.04022EPSS

Exploits0References6

OSV•added 2022/03/11 11:15 p.m.•1 views

CVE-2021-42577

An issue was discovered in Softing OPC UA C++ SDK before 5.70. A malformed OPC/UA message abort packet makes the client crash with a NULL pointer dereference...

7.5CVSS7.1AI score0.00409EPSS

Exploits0References2

NVD•added 2022/03/10 5:42 p.m.•8 views

CVE-2021-32025

An elevation of privilege vulnerability in the QNX Neutrino Kernel of affected versions of QNX Software Development Platform versions 6.4.0 to 7.0, QNX Momentics all 6.3.x versions, QNX OS for Safety versions 1.0.0 to 1.0.2, QNX OS for Safety versions 2.0.0 to 2.0.1, QNX for Medical versions 1.0....

8.1CVSS0.00034EPSS

Exploits0References1

Prion•added 2022/03/10 5:42 p.m.•14 views

Privilege escalation

7.2CVSS7.6AI score0.00034EPSS

Exploits0References1Affected Software4

OpenVAS•added 2022/03/10 12:0 a.m.•14 views

SUSE: Security Advisory (SUSE-SU-2022:0777-1)

9.6CVSS8.7AI score0.02853EPSS

Exploits2References6

CNNVD•added 2022/03/10 12:0 a.m.•3 views

PDFTron SDK 资源管理错误漏洞

PDFTron SDK is a very comprehensive MS Office and PDF software development kit SDK from PDFTron Canada. A security vulnerability exists in PDFTron SDK 9.2.0, which stems from the fact that a carefully crafted PDF can overwrite the RIP with data previously allocated on the heap...

7.8CVSS7.3AI score0.00246EPSS

Exploits0References3

CVE•added 2022/03/09 8:37 p.m.•82 views

CVE-2021-32025

CVE-2021-32025 is an elevation of privilege vulnerability in the QNX Neutrino Kernel affecting multiple QNX platforms (Software Development Platform 6.4.0–7.0, Momentics 6.3.x, OS for Safety 1.0.0–1.0.2 and 2.0.0–2.0.1, OS for Medical 1.0.0–1.1.1, and OS for Medical 2.0.0). An unprivileged attack...

8.1CVSS7.6AI score0.00034EPSS

Exploits0References1Affected Software4

OpenVAS•added 2022/03/03 12:0 a.m.•16 views

SUSE: Security Advisory (SUSE-SU-2022:0677-1)

6.5CVSS6.9AI score0.00366EPSS

Exploits0References4

CNVD•added 2022/02/28 12:0 a.m.•11 views

Accusoft ImageGear Heap Buffer Overflow Vulnerability (CNVD-2022-35421)

Accusoft ImageGear is a software development kit SDK for image processing from Accusoft, U.S. Accusoft ImageGear suffers from a heap buffer overflow vulnerability, which can be exploited by attackers to build files that could result in a heap buffer overflow...

9.8CVSS5.3AI score0.0042EPSS

Exploits1References1

CNVD•added 2022/02/28 12:0 a.m.•13 views

Accusoft ImageGear Heap Buffer Overflow Vulnerability (CNVD-2022-35420)

9.8CVSS5.3AI score0.0042EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by