CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSSF Malicious Packages•added 2026/04/29 8:0 a.m.•4 views

Malicious code in apple-internal-telemetry-service (npm)

Malicious npm package published by threat actor "raya4321" as part of a coordinated typosquatting campaign impersonating Apple internal infrastructure services authentication, PKI, telemetry, CloudKit, and cloud infrastructure. All packages in this campaign execute credential-theft payloads durin...

5.9AI score

Vulnrichment•added 2026/04/14 4:57 p.m.•2 views

CVE-2026-32181 Connected User Experiences and Telemetry Service Denial of Service Vulnerability

...

5.5CVSS5.8AI score0.00357EPSS

CVE•added 2026/04/14 4:57 p.m.•43 views

CVE-2026-32181

The CVE-2026-32181 entry describes a Denial of Service vulnerability in the Connected User Experiences and Telemetry Service. According to the metrics, it is a LOCAL, low-complexity attack requiring LOW privileges with no user interaction, and it can cause an availability impact (CVSSv3.1 base sc...

5.5CVSS5.7AI score0.00357EPSS

Exploits0References3Affected Software9

Cvelist•added 2026/04/14 4:57 p.m.•22 views

CVE-2026-32181 Connected User Experiences and Telemetry Service Denial of Service Vulnerability

...

5.5CVSS0.00357EPSS

Microsoft CVE•added 2026/04/14 2:0 p.m.•3 views

Connected User Experiences and Telemetry Service Denial of Service Vulnerability

Improper privilege management in Microsoft Windows allows an authorized attacker to deny service locally...

5.5CVSS6.2AI score0.00357EPSS

Exploits0

NVD•added 2026/03/13 7:54 p.m.•5 views

CVE-2026-32306

OneUptime is a solution for monitoring and managing online services. Prior to 10.0.23, the telemetry aggregation API accepts user-controlled aggregationType, aggregateColumnName, and aggregationTimestampColumnName parameters and interpolates them directly into ClickHouse SQL queries via the .appe...

9.9CVSS0.00603EPSS

Exploits1References1

EUVD•added 2025/10/07 12:30 a.m.•5 views

EUVD-2020-12262

Malware in sbrugna...

5.5CVSS6.3AI score0.01224EPSS

5.5CVSS7.3AI score0.01383EPSS

EUVD-2018-20227

Malware in sbrugna...

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2020-12461

Malware in sbrugna...

7.8CVSS6.7AI score0.00844EPSS

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2020-12123

Malware in sbrugna...

7.1CVSS6.3AI score0.03025EPSS

5.5CVSS6.3AI score0.01214EPSS

EUVD-2020-12007

Malware in sbrugna...

5.5CVSS6.1AI score0.00923EPSS

EUVD-2020-12010

Malware in sbrugna...

7.8CVSS7.1AI score0.00996EPSS

EUVD-2020-11924

Malware in sbrugna...

5.5CVSS5.5AI score0.01497EPSS

EUVD-2020-2332

Malware in sbrugna...

7.1CVSS7.1AI score0.00737EPSS

EUVD-2020-2410

Malware in sbrugna...

7.8CVSS7.1AI score0.00738EPSS

EUVD-2020-2412

Malware in sbrugna...

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2020-2216

Malware in sbrugna...

7.8CVSS7.4AI score0.00849EPSS

7.8CVSS7.3AI score0.00739EPSS

EUVD-2020-2316

Malware in sbrugna...

RedhatCVE•added 2025/05/22 5:41 p.m.•9 views

CVE-2020-1084

A Denial Of Service vulnerability exists when Connected User Experiences and Telemetry Service fails to validate certain function values.An attacker who successfully exploited this vulnerability could deny dependent security feature functionality.To exploit this vulnerability, an attacker would...

5.5CVSS6.6AI score0.01025EPSS