CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13714 matches found

OpenVAS•added 2025/06/05 12:0 a.m.•5 views

Wireshark Security Update (wnpa-sec-2025-02) - Linux

Wireshark is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"...

7.8CVSS7.3AI score0.00299EPSS

Exploits1References1

Patchstack•added 2025/06/04 5:54 p.m.•12 views

WordPress WP User Frontend Pro plugin <= 4.1.3 - Authenticated (Subscriber+) Arbitrary File Upload vulnerability

Authenticated Subscriber+ Arbitrary File Upload vulnerability discovered by Foxyyy in WordPress Plugin WP User Frontend Pro versions = 4.1.3...

8.8CVSS6.7AI score0.00779EPSS

Exploits1References1Affected Software1

Wired Threat Level•added 2025/06/04 10:0 a.m.•18 views

The Texting Network for the End of the World

Everyone knows what it’s like to lose cell service. A burgeoning open source project called Meshtastic is filling the gap for when you’re in the middle of nowhere—or when disaster strikes...

7.2AI score

Exploits0

CNNVD•added 2025/06/04 12:0 a.m.•4 views

Acronis Cyber Protect 加密问题漏洞

Acronis Cyber Protect is an all-in-one cyber protection solution for business and enterprise from Acronis Switzerland. Combining backup, anti-malware, cybersecurity and endpoint management capabilities such as vulnerability assessment, URL filtering, patch management, etc. Acronis Cyber Protect i...

5.9CVSS5.9AI score0.00065EPSS

Exploits0References1

OpenVAS•added 2025/06/04 12:0 a.m.•7 views

Fedora: Security Advisory (FEDORA-2025-d636dbcc45)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.00394EPSS

Exploits0References5

OpenVAS•added 2025/06/04 12:0 a.m.•15 views

Python Multiple Vulnerabilities (Jun 2025) - Mac OS X

Python is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:python:python"; ifdescription...

9.4CVSS7.5AI score0.01184EPSS

Exploits14References20

OpenVAS•added 2025/06/04 12:0 a.m.•3 views

SUSE: Security Advisory (SUSE-SU-2024:4089-1)

7.5AI score

Exploits0References4

OpenVAS•added 2025/06/04 12:0 a.m.•4 views

Google Chrome Security Update (stable-channel-update-for-desktop-2025-06) - Mac OS X

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

8.8CVSS8.9AI score0.06463EPSS

Exploits3References3

OpenVAS•added 2025/06/04 12:0 a.m.•2 views

SUSE: Security Advisory (SUSE-SU-2025:1582-1)

7.5AI score

Exploits0References4

Japan Vulnerability Notes•added 2025/06/03 12:0 a.m.•11 views

JVN#37075430: TimeWorks vulnerable to path traversal

The web server module of TimeWorks provided by Keiyo System Co., LTD contains the following vulnerability. Path traversal CWE-22 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N Base Score 6.9 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N Base Score 5.3 CVE-2025-41428 Impact Arbitra...

6.9CVSS7.1AI score0.00574EPSS

Exploits0

Vulnrichment•added 2025/06/02 11:16 a.m.•8 views

CVE-2025-48957 AstrBot Has Path Traversal Vulnerability in /api/chat/get_file

AstrBot is a large language model chatbot and development framework. A path traversal vulnerability present in versions 3.4.4 through 3.5.12 may lead to information disclosure, such as API keys for LLM providers, account passwords, and other sensitive data. The vulnerability has been addressed in...

7.5CVSS7.5AI score0.00618EPSS

Exploits1References4

OpenVAS•added 2025/06/02 12:0 a.m.•6 views

Fedora: Security Advisory (FEDORA-2025-23ccf778c9)

4.5CVSS7.1AI score0.00581EPSS

Exploits0References3

OpenVAS•added 2025/06/02 12:0 a.m.•3 views

Fedora: Security Advisory (FEDORA-2025-34badbe9b9)

7.5AI score

Exploits0References2

OpenVAS•added 2025/06/02 12:0 a.m.•10 views

Fedora: Security Advisory (FEDORA-2025-db6e9bb7fb)

7.5CVSS7.1AI score0.01051EPSS

Exploits0References3

OpenVAS•added 2025/06/02 12:0 a.m.•8 views

Debian: Security Advisory (DLA-4198-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS7.1AI score0.00405EPSS

Exploits5References2

OpenVAS•added 2025/06/02 12:0 a.m.•6 views

Debian: Security Advisory (DLA-4194-1)

9.8CVSS7AI score0.08272EPSS

Exploits1References2

OpenVAS•added 2025/06/02 12:0 a.m.•2 views

Debian: Security Advisory (DLA-4195-1)

5.9CVSS7.1AI score0.00276EPSS

Exploits0References2

OpenVAS•added 2025/06/02 12:0 a.m.•86 views

Roundcube Webmail RCE Vulnerability (Jun 2025) - Linux

Roundcube Webmail is prone to an authenticated remote code execution RCE vulnerability via php object deserialization. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

9.9CVSS8.9AI score0.89462EPSS

Exploits29References5

OpenVAS•added 2025/06/02 12:0 a.m.•4 views

Mageia: Security Advisory (MGASA-2025-0171)

7.5CVSS7.2AI score0.00824EPSS

Exploits0References4

OpenVAS•added 2025/06/02 12:0 a.m.•4 views

Debian: Security Advisory (DLA-4205-1)

7.8CVSS6.9AI score0.00291EPSS

Exploits0References2

Rows per page