CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

449 matches found

RedhatCVE•added 2025/11/14 12:1 a.m.•1 views

CVE-2025-60685

A stack buffer overflow exists in the ToToLink A720R Router firmware V4.1.5cu.614B20230630 within the sysconf binary sub401EE0 function. The binary reads the /proc/stat file using fgets into a local buffer and subsequently parses the line using sscanf into a single-byte variable with the %s forma...

5.1CVSS8AI score0.00026EPSS

Exploits1References1

NVD•added 2025/11/13 4:15 p.m.•1 views

CVE-2025-60685

5.1CVSS0.00026EPSS

Exploits1References3

Vulnrichment•added 2025/11/13 12:0 a.m.•1 views

CVE-2025-60685

7.6AI score0.00026EPSS

Exploits1References3

Positive Technologies•added 2025/11/13 12:0 a.m.•1 views

PT-2025-46846

A stack buffer overflow exists in the ToToLink A720R Router firmware V4.1.5cu.614 B20230630 within the sysconf binary sub 401EE0 function. The binary reads the /proc/stat file using fgets into a local buffer and subsequently parses the line using sscanf into a single-byte variable with the %s...

7.9AI score0.00026EPSS

Exploits1References4

Cvelist•added 2025/11/13 12:0 a.m.•3 views

CVE-2025-60685

0.00026EPSS

Exploits1References3

Tenable Nessus•added 2025/11/05 12:0 a.m.•1 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990117)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990117 advisory. In the Linux kernel, the following vulnerability has been resolved: block: prevent division by zero in blkrqstatsum The expression dst-nrsamples + src-nrsamples may...

5.5CVSS6.2AI score0.00015EPSS

Exploits0References3

EUVD•added 2025/10/21 12:31 p.m.•2 views

EUVD-2022-55027

In the Linux kernel, the following vulnerability has been resolved: RDMA/nldev: Prevent underflow in nldevstatsetcounterdynamicdoit This code checks "index" for an upper bound but it does not check for negatives. Change the type to unsigned to prevent underflows...

5.5CVSS5.4AI score0.00111EPSS

Exploits0References4

RedhatCVE•added 2025/10/09 1:13 a.m.•2 views

CVE-2025-61786

Deno is a JavaScript, TypeScript, and WebAssembly runtime. In versions prior to 2.5.3 and 2.2.15, Deno.FsFile.prototype.stat and Deno.FsFile.prototype.statSync are not limited by the permission model check --deny-read=./. It's possible to retrieve stats from files that the user do not have explic...

3.3CVSS6.5AI score0.00023EPSS

Exploits1References1

OSV•added 2025/10/08 5:56 p.m.•5 views

GHSA-QQ26-84MH-26J9 Deno's --deny-read check does not prevent permission bypass

Summary Deno.FsFile.prototype.stat and Deno.FsFile.prototype.statSync are not limited by the permission model check --deny-read=./. It's possible to retrieve stats from files that the user do not have explicit read access to the script is executed with --deny-read=./ Similar APIs like Deno.stat a...

3.3CVSS6.7AI score0.00023EPSS

Exploits1References7

Github Security Blog•added 2025/10/08 5:56 p.m.•3 views

Deno's --deny-read check does not prevent permission bypass

3.3CVSS6.7AI score0.00023EPSS

Exploits1References7Affected Software1

NVD•added 2025/10/08 1:15 a.m.•2 views

CVE-2025-61786

3.3CVSS0.00023EPSS

Exploits1References5

CVE•added 2025/10/08 12:49 a.m.•6 views

CVE-2025-61786

CVE-2025-61786 affects the Deno runtime: prior to versions 2.5.3 and 2.2.15, Deno.FsFile.prototype.stat and Deno.FsFile.prototype.statSync bypass the permission check when --deny-read=./ is used, allowing retrieval of file stats from files the user does not have explicit read access to. The vulne...

3.3CVSS6.2AI score0.00023EPSS

Exploits1References5Affected Software1

OSV•added 2025/10/08 12:49 a.m.•3 views

CVE-2025-61786 Deno's --deny-read check does not prevent permission bypass

3.3CVSS6.3AI score0.00023EPSS

Exploits1References7

EUVD•added 2025/10/08 12:49 a.m.•2 views

EUVD-2025-33180

3.3CVSS6AI score0.00023EPSS

Exploits1References6

Vulnrichment•added 2025/10/08 12:49 a.m.•1 views

CVE-2025-61786 Deno's --deny-read check does not prevent permission bypass

3.3CVSS6.2AI score0.00023EPSS

Exploits1References5

AlpineLinux•added 2025/10/08 12:49 a.m.•3 views

CVE-2025-61786

3.3CVSS6.6AI score0.00023EPSS

Exploits1References5

Cvelist•added 2025/10/08 12:49 a.m.•6 views

CVE-2025-61786 Deno's --deny-read check does not prevent permission bypass

3.3CVSS0.00023EPSS

Exploits1References5

Positive Technologies•added 2025/10/08 12:0 a.m.•4 views

PT-2025-41209

Name of the Vulnerable Software and Affected Versions Deno versions prior to 2.5.3 Deno versions prior to 2.2.15 Description Deno is a JavaScript, TypeScript, and WebAssembly runtime. The Deno.FsFile.prototype.stat and Deno.FsFile.prototype.statSync functions do not enforce the --deny-read=./...

3.3CVSS6.4AI score0.00023EPSS

Exploits1References10

Redos•added 2025/10/08 12:0 a.m.•1 views

ROS-20251008-04

The dumpisomsaps function file applications/mp4box/filedump.c, line 1743 does not check the pointers to NULL before accessing track structure fields, which allows an attacker to generate an MP4 file with a corrupted track there is no mandatory Sample Description Box - stsd. MP4 file with corrupte...

7.4AI score

Exploits0

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2019-0233

Malware in sbrugna...

8.1CVSS8AI score0.00163EPSS

Exploits0References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by