CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

139 matches found

NVD•added 2026/06/17 10:54 a.m.•6 views

CVE-2026-46955

Vulnerability in the Oracle Human Resources product of Oracle E-Business Suite component: Person. Supported versions that are affected are 12.2.3-12.2.15. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Human Resources. Successf...

7.5CVSS0.00156EPSS

Exploits0References1

RedhatCVE•added 2026/06/05 7:10 p.m.•8 views

CVE-2026-35230

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is 7.2.6. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle...

7.5CVSS7.1AI score0.00197EPSS

Exploits0References1

RedhatCVE•added 2026/06/05 7:10 p.m.•9 views

CVE-2026-35251

7.5CVSS7.3AI score0.00107EPSS

Exploits0References1

CNNVD•added 2026/05/28 12:0 a.m.•6 views

Oracle REST Data Services 安全漏洞

Oracle REST Data Services is a middleware tool provided by Oracle, Inc., in the United States, that exposes features of the Oracle database to applications through RESTful APIs. Versions 24.2.0 to 26.1.0 of Oracle REST Data Services have security vulnerabilities. These vulnerabilities stem from...

9.9CVSS5.8AI score0.00431EPSS

Exploits0References1

EUVD•added 2026/04/21 9:31 p.m.•7 views

EUVD-2026-24463

7.5CVSS5.7AI score0.00107EPSS

Exploits0References2

EUVD•added 2026/03/16 3:30 p.m.•2 views

EUVD-2026-12389

Identity based authorization bypass vulnerability IDOR that allows an attacker to modify the data of a legitimate user account, such as changing the victim's email address, validating the new email address, and requesting a new password. This could allow them to take complete control of other...

8.6CVSS5.8AI score0.0024EPSS

Exploits0References2

RedhatCVE•added 2026/01/09 8:51 a.m.•4 views

CVE-2021-2447

Vulnerability in the Oracle Secure Global Desktop product of Oracle Virtualization component: Server. The supported version that is affected is 5.6. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise Oracle Secure Global Deskto...

9.9CVSS7AI score0.01095EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:12 a.m.•19 views

CVE-2025-1908

An issue has been discovered in GitLab EE/CE that could allow an attacker to track users' browsing activities, potentially leading to full account take-over, affecting all versions from 16.6 before 17.9.7, 17.10 before 17.10.5, and 17.11 before 17.11.1...

7.7CVSS6.5AI score0.0034EPSS

Exploits1References1

Positive Technologies•added 2026/01/01 12:0 a.m.•4 views

PT-2026-34168

Name of the Vulnerable Software and Affected Versions Oracle VM VirtualBox version 7.2.6 Description An issue in the Core component of Oracle VM VirtualBox allows a high privileged attacker with logon access to the infrastructure where the software executes to compromise the system. Successful...

7.5CVSS7.6AI score0.00107EPSS

Exploits0References5

NVD•added 2025/12/10 9:16 p.m.•4 views

CVE-2020-36892

Eibiz i-Media Server Digital Signage 3.8.0 contains an unauthenticated privilege escalation vulnerability in the updateUser object that allows attackers to modify user roles. Attackers can exploit the /messagebroker/amf endpoint to elevate privileges and take over user accounts by manipulating ro...

9.8CVSS0.00918EPSS

Exploits1References4

NVD•added 2025/10/21 8:20 p.m.•8 views

CVE-2025-62589

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are 7.1.12 and 7.2.2. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromis...

8.2CVSS0.00191EPSS

Exploits0References1