CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13714 matches found

Tenable Nessus•added 2025/06/26 12:0 a.m.•7 views

GitLab 17.2 < 17.11.5 / 18.0 < 18.0.3 / 18.1 < 18.1.1 (CVE-2025-5315)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Missing Authorization in GitLab CVE-2025-5315 Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenabl...

4.3CVSS5.5AI score0.00216EPSS

Exploits0References4

OpenVAS•added 2025/06/26 12:0 a.m.•3 views

Debian: Security Advisory (DSA-5950-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.5AI score0.03057EPSS

Exploits0References2

OpenVAS•added 2025/06/26 12:0 a.m.•2 views

Fedora: Security Advisory (FEDORA-2025-1605ec3e86)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score

Exploits0References2

NVD•added 2025/06/25 5:15 p.m.•5 views

CVE-2025-52894

OpenBao exists to provide a software solution to manage, store, and distribute sensitive data including secrets, certificates, and keys. OpenBao before v2.3.0 allowed an attacker to perform unauthenticated, unaudited cancellation of root rekey and recovery rekey operations, effecting a denial of...

7.5CVSS0.00331EPSS

Exploits0References4

AlpineLinux•added 2025/06/25 4:59 p.m.•4 views

CVE-2025-52894

7.5CVSS7.1AI score0.00331EPSS

Exploits0

AlpineLinux•added 2025/06/25 4:54 p.m.•5 views

CVE-2025-52893

OpenBao exists to provide a software solution to manage, store, and distribute sensitive data including secrets, certificates, and keys. OpenBao before v2.3.0 may leak sensitive information in logs when processing malformed data. This is separate from the earlier HCSEC-2025-09 / CVE-2025-4166. Th...

4.5CVSS6.8AI score0.00275EPSS

Exploits0

Kaspersky•added 2025/06/25 12:0 a.m.•6 views

KLA85379 RCE vulnerability in WinRAR

Code execution vulnerability was found in WinRAR. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories WinRAR 7.12 Final released ZDI-25-409 CVE-2025-6218 Related products WinRAR CVE list CVE-2025-6218 critical Solution Update to the latest version Downloa...

7.8CVSS8.2AI score0.86192EPSS

Exploits8References5

OpenVAS•added 2025/06/25 12:0 a.m.•9 views

Debian: Security Advisory (DLA-4228-1)

7.7CVSS7.5AI score0.01313EPSS

Exploits1References2

OpenVAS•added 2025/06/25 12:0 a.m.•1 views

Debian: Security Advisory (DLA-4227-1)

9.8CVSS7.5AI score0.02822EPSS

Exploits1References2

OpenVAS•added 2025/06/25 12:0 a.m.•9 views

Google Chrome Security Update (stable-channel-update-for-desktop_24-2025-06) - Windows

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

5.4CVSS7.1AI score0.00177EPSS

Exploits0References1

OpenVAS•added 2025/06/25 12:0 a.m.•3 views

Mozilla Firefox ESR Security Update (mfsa_2025-52) - Windows

Mozilla Firefox ESR is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefoxesr";...

9.8CVSS7.2AI score0.03057EPSS

Exploits0References1

OpenVAS•added 2025/06/25 12:0 a.m.•4 views

Mozilla Firefox ESR Security Update (mfsa_2025-52) - Mac OS X

9.8CVSS7.2AI score0.03057EPSS

Exploits0References1

OpenVAS•added 2025/06/24 12:0 a.m.•4 views

Debian: Security Advisory (DLA-4224-1)

5CVSS9.9AI score0.00511EPSS

Exploits0References2

OpenVAS•added 2025/06/24 12:0 a.m.•8 views

Ubuntu: Security Advisory (USN-7584-1)

9.9CVSS8.8AI score0.89462EPSS

Exploits29References4

OSV•added 2025/06/23 9:0 p.m.•6 views

CVE-2025-52561 HTMLSanitizer.jl Possible XSS

HTMLSanitizer.jl is a Whitelist-based HTML sanitizer. Prior to version 0.2.1, when adding the style tag to the whitelist, content inside the tag is incorrectly unescaped, and closing tags injected as content are interpreted as real HTML, enabling tag injection and JavaScript execution. This could...

6.9CVSS6.2AI score0.00714EPSS

Exploits0References5

OpenVAS•added 2025/06/23 12:0 a.m.•3 views

Debian: Security Advisory (DSA-5946-1)

3.3CVSS7.5AI score0.00144EPSS

Exploits0References2

OpenVAS•added 2025/06/23 12:0 a.m.•4 views

Fedora: Security Advisory (FEDORA-2025-31830e02b0)

8.2CVSS6.6AI score0.00389EPSS

Exploits0References4

OpenVAS•added 2025/06/23 12:0 a.m.•6 views

Fedora: Security Advisory (FEDORA-2025-4fed640c91)

8.8CVSS8.8AI score0.08794EPSS

Exploits0References4

OpenVAS•added 2025/06/23 12:0 a.m.•4 views

D-Link DIR-867 Buffer Overflow Vulnerability (Jun 2025)

D-Link DIR-867 devices are prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9CVSS7.5AI score0.00656EPSS

Exploits0References4

OpenVAS•added 2025/06/23 12:0 a.m.•6 views

Fedora: Security Advisory (FEDORA-2025-eef56e1ee1)

8.8CVSS8.7AI score0.00736EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by