CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux - уязвимость в chromium

Insufficient policy enforcement in the File System API of Google Chrome prior to version 88.0.4324.96 allowed a remote attacker to bypass filesystem restrictions through a crafted HTML page...

6.5CVSS7AI score0.00883EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2018-16967

Malware in sbrugna...

7.5CVSS8.4AI score0.01014EPSS

Exploits0References9

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-1999-0968

Malware in sbrugna...

10CVSS6.4AI score0.05512EPSS

Exploits0References3

Positive Technologies•added 2024/01/26 12:0 a.m.•2 views

PT-2024-1419 · Miro · Miro Desktop

Name of the Vulnerable Software and Affected Versions: Miro Desktop version 0.8.18 Description: The issue is related to incorrect code generation management in the Miro digital collaboration platform on macOS, which may allow a remote attacker to execute arbitrary code. The exploitation involves ...

9.8CVSS7.8AI score0.00819EPSS

Exploits2References14

CNNVD•added 2022/11/30 12:0 a.m.•2 views

Google Chrome 安全漏洞

Google Chrome is a web browser from Google, Inc. A security vulnerability exists in Google Chrome caused by insufficient policy enforcement in the file system API. An attacker could exploit this vulnerability to bypass security restrictions...

8.8CVSS8.5AI score0.00059EPSS

CNNVD•added 2021/04/09 12:0 a.m.•3 views

Samsung SMR 访问控制错误漏洞

Samsung SMR is a system patch package from Samsung South Korea. It provides patches for Samsung mobile applications. A security vulnerability exists in SELinux policy SMR APR-2021 Release 1 prior to APR-2021 Release 1, which stems from an improper SELinux policy, and can be exploited by a local...

4CVSS5.6AI score0.00012EPSS

Exploits0References3

CNNVD•added 2021/01/20 12:0 a.m.•3 views

Google Chromium 安全漏洞

Chrome is a simple and efficiently designed web browsing tool developed by Google that is characterized by its simplicity and speed. A file system API policy enforcement deficiency vulnerability exists in versions of Google Chrome prior to 88.0.4324.96. A remote attacker can bypass file system...

6.5CVSS7AI score0.06374EPSS

seebug.org•added 2016/06/21 12:0 a.m.•15 views

Days thaw letter TopADS system policy.mds.php arguments t_name SQL injection vulnerability

No description provided by source...

7.1AI score

CNVD•added 2015/08/19 12:0 a.m.•2 views

Cisco FireSIGHT Management Center System Policy Deletion Vulnerability

The Cisco FireSIGHT Management Center centrally manages the network security and operational functions of Cisco ASA and Cisco FirePOWER Network Security Appliances with FirePOWER Services. A security vulnerability exists in Cisco FireSIGHT Management Center that allows a remote user to send a...

6.4CVSS6.9AI score0.00696EPSS

Cisco•added 2015/08/13 5:38 p.m.•19 views

Cisco FireSIGHT Management Center System Policy Deletion Vulnerability

A vulnerability in the web interface function to delete a system policy configured in the Cisco FireSIGHT Management Center application could allow unauthenticated, remote attackers to delete a system policy other than their own. The vulnerability is due to improper input validation of certain...

5.8CVSS6.3AI score0.00696EPSS

securityvulns•added 2006/11/09 12:0 a.m.•30 views

Cisco Security Advisory: Multiple Vulnerabilities in Cisco Secure Desktop

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Multiple Vulnerabilities in Cisco Secure Desktop Advisory ID: cisco-sa-20061108-csd Revision 1.0 For Public Release 2006 November 08 1600 UTC GMT - ----------------------------------------------------------------------- Summar...

6.7AI score

seebug.org•added 2006/11/09 12:0 a.m.•66 views

Cisco Secure Desktop多个安全漏洞

Cisco Secure Desktop CSD可以通过加密降低远程用户注销或SSL VPN会话超时后Cookies、浏览器历史记录、临时文件和下载内容在系统上所遗留的风险。 CSD受以下漏洞的影响：生成的浏览器导致信息泄漏 +-------------------------------------- 如果在创建了SSL VPN会话之后，所自动生成的用于显示主页的Internet浏览器使用了CSD所维护库文件之外目录来储存其会话信息的话，就会出现这个漏洞。这个漏洞还允许用户将在这个Internet浏览会话期间所下载的文件保存到CSD库文件之外，导致在SSL...

7AI score

NVD•added 2006/11/08 10:7 p.m.•11 views

CVE-2006-5807

Cisco Secure Desktop CSD before 3.1.1.45 allows local users to escape out of the secure desktop environment by using certain applications that switch to the default desktop, aka "System Policy Evasion"...

4.6CVSS6.3AI score0.0011EPSS

Cvelist•added 2006/11/08 10:0 p.m.•13 views

CVE-2006-5807

6.3AI score0.0011EPSS

CVE•added 2006/11/08 10:0 p.m.•40 views

CVE-2006-5807

CVE-2006-5807 affects Cisco Secure Desktop (CSD) prior to version 3.1.1.45. The issue allows local users to escape the secure desktop environment by launching certain applications that switch to the default desktop, referred to as System Policy Evasion. The vulnerability is local in scope with pa...

4.6CVSS6.3AI score0.0011EPSS

Exploits0References7Affected Software1

Cvelist•added 2001/05/24 4:0 a.m.•23 views

CVE-2001-0355

Novell Groupwise 5.5 sp1 and sp2 allows a remote user to access arbitrary files via an implementation error in Groupwise system policies...

6.7AI score0.00394EPSS

CVE•added 2000/01/04 5:0 a.m.•42 views

CVE-1999-0987

CVE-1999-0987 affects Windows NT where a domain user logging in with a trailing space in the domain name can cause the system policy to download improperly. The CVSS v2 base score is 10.0 (HIGH) with network attack vector and no authentication required, indicating a severe impact on confidentiali...

10CVSS7AI score0.05512EPSS

Exploits0References1Affected Software1

Cvelist•added 2000/01/04 5:0 a.m.•20 views

CVE-1999-0987

Windows NT does not properly download a system policy if the domain user logs into the domain with a space at the end of the domain name...

6.6AI score0.05512EPSS

NVD•added 1999/11/18 5:0 a.m.•14 views

CVE-1999-0987

Windows NT does not properly download a system policy if the domain user logs into the domain with a space at the end of the domain name...

10CVSS6.6AI score0.05512EPSS