CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-41561

Malicious code in bioql PyPI...

8.8CVSS6.4AI score0.06328EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 3:32 a.m.•4 views

CVE-2024-45711

SolarWinds Serv-U is vulnerable to a directory traversal vulnerability where remote code execution is possible depending on privileges given to the authenticated user. This issue requires a user to be authenticated and this is present when software environment variables are abused. Authentication...

8.8CVSS7.6AI score0.06328EPSS

Exploits0References1

NVD•added 2024/10/16 8:15 a.m.•15 views

CVE-2024-45711

8.8CVSS0.06328EPSS

Exploits0References1

CVE•added 2024/10/16 7:27 a.m.•79 views

CVE-2024-45711

CVE-2024-45711 affects SolarWinds Serv-U FTP Server. The vulnerability is a directory traversal that can lead to remote code execution when an authenticated user abuses environment variables. Authentication is required, and impact is conditioned on privileges granted to the user. Several connecte...

8.8CVSS8.2AI score0.06328EPSS

Exploits0References1Affected Software1

BDU FSTEC•added 2023/08/11 12:0 a.m.•5 views

The vulnerability of the AppSandbox component in macOS operating systems allows a hacker to bypass the protective mechanisms of the isolated software environment.

The vulnerability of the AppSandbox component in macOS operating systems is related to security configuration errors. Exploiting this vulnerability could allow an attacker to bypass the security measures of the isolated software environment...

8.6CVSS7.2AI score0.00752EPSS

Exploits0References4Affected Software1

Citrix•added 2023/03/21 12:0 a.m.•8 views

The certificate authority is invalid or incorrect

EPA scan error. "Access Denied: your device does not meet requirements for logging on" "The certificate authority is invalid or incorrect." from nspex.txt...

7.2AI score

Exploits0

BDU FSTEC•added 2023/02/17 12:0 a.m.•4 views

The vulnerability of the Apex-VUZ education automation system, related to the use of strictly encrypted user data, allows a perpetrator to gain full access to the software environment.

The vulnerability of the Apex-VUZ education automation system is related to the use of strictly encrypted user data. Exploiting this vulnerability could allow a malicious actor to gain full access to the software environment...

10CVSS5.5AI score

Exploits0Affected Software1

BDU FSTEC•added 2020/12/28 12:0 a.m.•3 views

The vulnerability of the command-line interface of the Cisco Connected Mobile Experiences software allows a hacker to escalate their privileges and gain access to the isolated software environment.

The vulnerability of the command-line interface of the Cisco Connected Mobile Experiences software relates to errors in privilege management. Exploiting this vulnerability can allow attackers to enhance their privileges and gain access to the isolated software environment...

5.2CVSS6.1AI score0.00282EPSS

Exploits0References3Affected Software1

Citrix•added 2016/08/30 12:0 a.m.•7 views

Changing delivery group icons with storefront 3.0 or above in the environment.

...

7.2AI score

Exploits0