CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

FastCGI Perl bindings. Security Fixes: perl-fcgi: FCGI versions 0.44 through 0.82, for Perl, include a vulnerable version of the FastCGI fcgi2 aka fcgi library CVE-2025-40907 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...

5.3CVSS5.8AI score0.00758EPSS

Exploits1References4

OSV•added 2025/05/29 1:15 a.m.•1 views

MINI-2Q7H-H855-V268

Bulletin has no description...

3.7CVSS5.7AI score0.00144EPSS

Exploits0

Tenable Nessus•added 2025/05/24 12:0 a.m.•11 views

Fedora 41 : thunderbird (2025-ee55907675)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-ee55907675 advisory. Update to 128.10.2 https://www.thunderbird.net/en-US/thunderbird/128.10.2esr/releasenotes/ ---- Update to 128.10.1...

9.8CVSS8.2AI score0.00994EPSS

Exploits1References3

OSV•added 2025/04/17 5:58 a.m.•1 views

BELL-CVE-2025-22020

Bulletin has no description...

7.8CVSS7.5AI score0.00035EPSS

Exploits0References1

OSV•added 2025/04/02 5:58 a.m.•1 views

BELL-CVE-2025-21913

Bulletin has no description...

5.5CVSS7.5AI score0.00018EPSS

Exploits0References1

Veracode•added 2025/04/02 3:21 a.m.•5 views

Authorization Bypass

org.springframework.security, spring-security-core is vulnerable to Authorization Bypass. The vulnerability is due to improper method security annotation detection due to issues in locating annotations on parameterized types or methods, allowing an attacker to access methods or resources without...

5.3CVSS7.1AI score0.00033EPSS

Exploits0References4Affected Software1

OSV•added 2025/04/01 9:39 p.m.•7 views

GO-2025-3581 github.com/jaredallard/archives Has Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

github.com/jaredallard/archives Has Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal'...

6CVSS7AI score0.00102EPSS

Exploits0References1

OSV•added 2025/03/31 4:6 p.m.•3 views

CGA-QP47-27C2-6FC3

Bulletin has no description...

6.8CVSS7.2AI score0.51201EPSS

Exploits3

OSV•added 2025/03/31 4:2 p.m.•7 views

CGA-VWP2-PMQG-5G9H

Bulletin has no description...

7.5CVSS7.2AI score0.01827EPSS

Exploits0

OSV•added 2025/03/31 4:0 p.m.•9 views

CGA-JWH5-XCC2-839F

Bulletin has no description...

4.4CVSS7.2AI score0.00024EPSS

Exploits2

OpenVAS•added 2025/03/31 12:0 a.m.•13 views

Ubuntu: Security Advisory (USN-7391-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.5AI score0.02038EPSS

Exploits1References4

OSV•added 2025/03/27 12:0 a.m.•7 views

OPENSUSE-SU-2025:14933-1 corosync-3.1.9-2.1 on GA media

These are all security issues fixed in the corosync-3.1.9-2.1 package on the GA media of openSUSE Tumbleweed...

9.8CVSS9.6AI score0.00157EPSS

Exploits1References2