CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

276208 matches found

RedHat Linux•added 2026/03/09 1:57 a.m.•2 views

firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the Telemetry component in External Software

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape due to incorrect boundary conditions in the Telemetry component in External Software...

10CVSS5.7AI score0.00487EPSS

Exploits0References6

RedHat Linux•added 2026/03/09 1:56 a.m.•2 views

firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the Telemetry component in External Software

10CVSS5.7AI score0.00487EPSS

Exploits0References6

RedHat Linux•added 2026/03/09 1:52 a.m.•1 views

firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the Telemetry component in External Software

10CVSS5.7AI score0.00487EPSS

Exploits0References6

RedHat Linux•added 2026/03/09 1:50 a.m.•3 views

firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the Telemetry component in External Software

10CVSS5.7AI score0.00487EPSS

Exploits0References6

CVE•added 2026/03/09 12:0 a.m.•9 views

CVE-2025-70047

CVE-2025-70047 affects Nexusoft NexusInterface v3.2.0-beta.2. The issue is CWE-400: Uncontrolled Resource Consumption, with a CVSS v3.1 base score of 7.5 (HIGH) and network attack vector, low attack complexity, no privileges required, no user interaction, and availability impact. Root cause detai...

7.5CVSS5.8AI score0.00346EPSS

Exploits0References3Affected Software1

ATTACKERKB•added 2026/03/09 12:0 a.m.•3 views

CVE-2025-70059

An issue pertaining to CWE-400: Uncontrolled Resource Consumption was discovered in YMFE yapi v1.12.0 and allows attackers to cause a denial of service...

5.8AI score0.00339EPSS

Exploits0References4

Spring Security Advisories•added 2026/03/09 12:0 a.m.•6 views

This Week in Spring - March 9th, 2026

Hi Spring fans! Welcome to another rip-roaring installment of This Week in Spring! I'm writing this in an Uber en route to the airport to get to awsome Atlanta, GA, for Devnexus 2026! Who's goin'? You goin'? We - the Spring team - will be there in force! Come say hi at the boothes or come see our...

5.8AI score

Exploits0

CNNVD•added 2026/03/09 12:0 a.m.•4 views

Delta Electronics COMMGR2 安全漏洞

Delta Electronics COMMGR2 is an automation equipment communication management software from Delta Electronics China. Delta Electronics COMMGR2 suffers from a stack buffer overflow vulnerability that is caused by incorrect boundary checking. An attacker could exploit this vulnerability to execute...

9.8CVSS6.5AI score0.00963EPSS

Exploits0References1

CNNVD•added 2026/03/09 12:0 a.m.•7 views

Delta Electronics COMMGR2 安全漏洞

Delta Electronics COMMGR2 is an automation equipment communication management software from Delta Electronics China. A denial of service vulnerability exists in Delta Electronics COMMGR2, which can be exploited by an attacker to cause a denial of service...

9.8CVSS5.8AI score0.00963EPSS

Exploits0References1

Positive Technologies•added 2026/03/09 12:0 a.m.•5 views

PT-2026-24059

Software installed and run as a non-privileged user may conduct improper GPU system calls to gain write permission to read-only wrapped user-mode memory. This is caused by improper handling of the memory protections for the user-mode wrapped memory resource...

5.8AI score0.00124EPSS

Exploits0References2

CNNVD•added 2026/03/09 12:0 a.m.•5 views

SourceCodester Sales and Inventory System SQL注入漏洞

The SourceCodester Sales and Inventory System is an open-source sales and inventory management system developed by SourceCodester. Version 1.0 of the SourceCodester Sales and Inventory System contains a SQL injection vulnerability. This vulnerability arises from incorrect operations with the sell...

8.8CVSS6.7AI score0.00368EPSS

Exploits1References6

OpenVAS•added 2026/03/09 12:0 a.m.•2 views

SUSE: Security Advisory (SUSE-SU-2026:20575-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS5.8AI score0.00291EPSS

Exploits0References4

OpenVAS•added 2026/03/09 12:0 a.m.•1 views

SUSE: Security Advisory (SUSE-SU-2026:20581-1)

6CVSS5.8AI score0.0056EPSS

Exploits0References8

EUVD•added 2026/03/08 3:30 p.m.•3 views

EUVD-2026-10240

A vulnerability was determined in SourceCodester Pet Grooming Management Software 1.0. This affects an unknown part of the file adduser.php of the component User Creation Handler. Executing a manipulation can lead to improper authorization. The attack may be launched remotely. The exploit has bee...

6.5CVSS6.3AI score0.00254EPSS

Exploits1References6

NVD•added 2026/03/08 2:15 p.m.•6 views

CVE-2026-3737

6.5CVSS0.00254EPSS

Exploits1References5

NVD•added 2026/03/08 2:15 p.m.•8 views

CVE-2026-3738

A vulnerability was identified in SourceCodester Pet Grooming Management Software 1.0. This vulnerability affects unknown code of the component Financial Report Page. The manipulation leads to improper authorization. Remote exploitation of the attack is possible. The exploit is publicly available...

6.5CVSS0.00254EPSS

Exploits1References5

OSSF Malicious Packages•added 2026/03/08 2:13 p.m.•7 views

Malicious code in pyutils-helper (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 8b1055c03077c874d21f69aa9403cebd070e2b7398e27b44310c977219bc0e7a Importing the module starts a silent cryptocurrency mining in the background for a hardcoded wallet. --- Category: MALICIOUS - The campaign has clearly malicio...

5.8AI score

Exploits0References1