CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

153 matches found

ManageEngine OpManager SumPDU 12.1 - 12.5.232 - Java Deserialization

Zoho ManageEngine OpManager Stable build before 125203 and Released build before 125233 allows Remote Code Execution via the Smart Update Manager SUM servlet. id: CVE-2020-28653 info: name: ManageEngine OpManager SumPDU 12.1 - 12.5.232 - Java Deserialization author: iamnoooob,pdresearch severity:...

9.8CVSS7AI score0.93064EPSS

Exploits5References1

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: block, bfq: Fixed an error of dividing by zero when the “wsum” is zero. When the weighted sum is zero, the calculation of the limit causes a division by zero error. This issue has been fixed by continuing to the next level of...

5.8AI score0.00023EPSS

Exploits0References1

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerabilities have been resolved: jffs2: fixed a memory leak in jffs2domountfs. If jffs2buildfilesystem in jffs2domountfs returns an error, we can observe the following kmemleak report: -------------------------------------------- Unreferenced object...

5.5CVSS6.3AI score0.00013EPSS

Exploits0References1

EUVD•added 2026/05/07 9:30 p.m.•6 views

EUVD-2026-28433

A malicious module proxy can exploit a flaw in the go command's validation of module checksums to bypass checksum database validation. This vulnerability affects any user using an untrusted module proxy GOMODPROXY or checksum database GOSUMDB. A malicious module proxy can serve altered versions o...

5.8AI score0.00008EPSS

Exploits0References5

CVE•added 2026/05/07 7:41 p.m.•17 views

CVE-2026-42501

CVE-2026-42501 affects the Go toolchain download path via untrusted module proxies (GOMODPROXY) or checksum databases (GOSUMDB). The flaw allows a malicious module proxy to bypass checksum database validation when the Go toolchain is downloaded/selected (via GOTOOLCHAIN, go.work, or go.mod toolch...

7.5CVSS5.8AI score0.00008EPSS

Exploits0References4Affected Software1

Debian CVE•added 2026/05/07 7:41 p.m.•6 views

CVE-2026-42501

7.5CVSS5.8AI score0.00008EPSS

Exploits0

OSV•added 2026/05/07 7:21 p.m.•6 views

GO-2026-4984 Malicious module proxy can bypass checksum database in cmd/go

7.5CVSS5.8AI score0.00008EPSS

Exploits0References3

Packet Storm News•added 2026/03/11 12:0 a.m.•5 views

Adversarial Reinforcement Learning for Detecting False Data Injection Attacks in Vehicular Routing

In modern transportation networks, adversaries can manipulate routing algorithms using false data injection attacks, such as simulating heavy traffic with multiple devices running crowdsourced navigation applications, to mislead vehicles toward suboptimal routes and increase congestion. To addres...

5.9AI score

Exploits0

EUVD•added 2026/02/04 4:8 p.m.•3 views

EUVD-2026-5467

In the Linux kernel, the following vulnerability has been resolved: ALSA: ctxfi: Fix potential OOB access in audio mixer handling In the audio mixer handling code of ctxfi driver, the conf field is used as a kind of loop index, and it's referred in the index callbacks amixerindex and sumindex. As...

5.3AI score0.00018EPSS

Exploits0References4

CVE•added 2026/01/13 7:27 p.m.•6 views

CVE-2025-68703

CVE-2025-68703 affects the Jervis library used with Jenkins Job DSL and shared pipelines. Prior to version 2.2, the salt for PBKDF2 is derived from the SHA-256 hash of the passphrase, causing two encryption operations using the same password to yield the same derived key. This design enables pre-...

8.7CVSS6.5AI score0.00014EPSS

Exploits0References2Affected Software1

Filippo.io•added 2026/01/05 8:6 p.m.•6 views

go.sum Is Not a Lockfile

I need everyone to stop looking at go.sum, especially to analyze dependency graphs. It is not a “lockfile,”1 and it has zero semantic effects on version resolution. There is truly no use case for ever parsing it outside of cmd/go. go.sum is only a local cache for the Go Checksum Database. It’s a...

7AI score

Exploits0

SUSE CVE•added 2025/12/31 12:27 a.m.•1 views

SUSE CVE-2023-54242

In the Linux kernel, the following vulnerability has been resolved: block, bfq: Fix division by zero error on zero wsum When the weighted sum is zero the calculation of limit causes a division by zero error. Fix this by continuing to the next level. This was discovered by running as root: stress-...

5.5CVSS6.5AI score0.00023EPSS

Exploits0References9

EUVD•added 2025/12/30 3:30 p.m.•2 views

EUVD-2023-60399

6AI score0.00023EPSS

Exploits0References4

NVD•added 2025/12/30 1:16 p.m.•5 views

CVE-2023-54242

0.00023EPSS

Exploits0References3

UbuntuCve•added 2025/12/30 1:16 p.m.•1 views

CVE-2023-54242

5.7AI score0.00023EPSS

Exploits0References5

OSV•added 2025/12/30 1:16 p.m.•3 views

UBUNTU-CVE-2023-54242

5.7AI score0.00023EPSS

Exploits0References6

Cvelist•added 2025/12/30 12:11 p.m.•20 views

CVE-2023-54242 block, bfq: Fix division by zero error on zero wsum

0.00023EPSS

Exploits0References3

OSV•added 2025/12/30 12:11 p.m.•2 views

CVE-2023-54242 block, bfq: Fix division by zero error on zero wsum

6.4AI score0.00023EPSS

Exploits0References6

Debian CVE•added 2025/12/30 12:11 p.m.•2 views

CVE-2023-54242

5.2AI score0.00023EPSS

Exploits0

CVE•added 2025/12/30 12:11 p.m.•6 views

CVE-2023-54242

CVE-2023-54242 affects the Linux kernel in the block bfq I/O elevator. The issue is a division by zero when the weighted sum (wsum) equals zero, causing an invalid calculation of the limit during bfq_limit_depth. The vulnerability could trigger a divide error as observed in a stress-ng stress tes...

6.1AI score0.00023EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by