CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14823 matches found

Positive Technologies•added 2025/10/06 12:0 a.m.•2 views

PT-2025-40940

Name of the Vulnerable Software and Affected Versions OpenSSH versions prior to 10.1 Description OpenSSH contains a flaw where the '0' character within an ssh:// URI can be processed, potentially leading to code execution when a ProxyCommand is utilized. This occurs because the presence of a null...

8.6CVSS9.5AI score0.01962EPSS

Exploits2References66

CVE•added 2025/10/06 12:0 a.m.•1369 views

CVE-2025-61984

CVE-2025-61984 affects OpenSSH before 10.1. It allows control characters in usernames originating from untrusted sources (command line or %-sequence expansion in a config file), potentially enabling code execution when a ProxyCommand is used. A config file that provides a complete literal usernam...

3.6CVSS7.3AI score0.00221EPSS

Exploits2References8

OPENSUSE Linux•added 2025/10/06 12:0 a.m.•4 views

Security update for afterburn (important)

openSUSE Security Update: Security update for afterburn Announcement ID: openSUSE-SU-2025:0386-1 Rating: important References: 1244675 1250471 Cross-References: CVE-2025-5791 CVSS scores: CVE-2025-5791 SUSE: 8.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N Affected Products:...

8.4CVSS7.1AI score0.00153EPSS

Exploits0References2

Tenable Nessus•added 2025/10/06 12:0 a.m.•6 views

RockyLinux 10 : podman (RLSA-2025:7462)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:7462 advisory. go-jose: Go JOSE's Parsing Vulnerable to Denial of Service CVE-2025-27144 golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of...

8.7CVSS7.2AI score0.00868EPSS

Exploits0References5

OSSF Malicious Packages•added 2025/10/04 1:46 a.m.•4 views

Malicious code in @igh/server-updater-ssh (npm)

The package contains malicious code...

7AI score

Exploits0

OSV•added 2025/10/04 1:46 a.m.•3 views

MAL-2025-48352 Malicious code in @igh/server-updater-ssh-l2 (npm)

The package contains malicious code...

7AI score

Exploits0

OSV•added 2025/10/04 1:46 a.m.•2 views

MAL-2025-48351 Malicious code in @igh/server-updater-ssh (npm)

The package contains malicious code...

7AI score

Exploits0

OSV•added 2025/10/04 12:11 a.m.•4 views

RLSA-2025:7391 Important: podman security update

The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes. Security Fixes: go-jose: Go JOSE's Parsing Vulnerable to Denial of Service CVE-2025-27144...

7.5CVSS6.6AI score0.00868EPSS

Exploits0References3

Rockylinux•added 2025/10/04 12:11 a.m.•3 views

podman security update

An update is available for podman. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The podman tool manages pods, container images, and containers. It is part of...

8.7CVSS6.8AI score0.00868EPSS

Exploits0