CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

17 matches found

CVE-2026-3870

A buffer overflow vulnerability in the UPnP AddPortMapping command in Zyxel VMG4005-B50B firmware versions through 5.13ABRL.5.4C0 could allow an adjacent attacker to trigger a temporary denial-of-service DoS condition affecting the UPnP function of the affected device...

6.5CVSS6AI score0.00016EPSS

Exploits0References2Affected Software1

Cvelist•added 2025/05/27 3:42 p.m.•8 views

CVE-2025-27701

In the function processcryptocmd, the values of ptrsi can be potentially equal to NULL which is valid value after calling slicemaparray. Later this values will be derefenced without prior NULL check, which can lead to local Temporary DoS or OOB Read, leading to information disclosure...

0.00026EPSS

Exploits0References1

OSV•added 2025/05/08 3:15 p.m.•1 views

AZL-61736 CVE-2025-4207 affecting package postgresql for versions less than 16.9-1

Buffer over-read in PostgreSQL GB18030 encoding validation allows a database input provider to achieve temporary denial of service on platforms where a 1-byte over-read can elicit process termination. This affects the database server and also libpq. Versions before PostgreSQL 17.5, 16.9, 15.13,...

5.9CVSS6.8AI score0.00326EPSS

Exploits0References1

RedHat Linux•added 2024/08/20 3:52 p.m.•21 views

Moderate: Red Hat Security Advisory: edk2 security update

An update for edk2 is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Red Hat Product Security has rated this update as havi...

6CVSS6.7AI score0.00033EPSS

Exploits0References2

Tenable Nessus•added 2024/08/20 12:0 a.m.•16 views

RHEL 8 : edk2 (RHSA-2024:5623)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:5623 advisory. EDK Embedded Development Kit is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU a...

6CVSS6.8AI score0.00033EPSS

Exploits0References5

RedHat Linux•added 2024/07/23 3:29 p.m.•23 views

Moderate: Red Hat Security Advisory: edk2 security update

An update for edk2 is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...

6CVSS6.7AI score0.00033EPSS

Exploits0References2

Prion•added 2023/07/17 7:15 a.m.•12 views

Sql injection

An SQL injection vulnerability exists in TapHome core HandleMessageUpdateDevicePropertiesRequest function before version 2023.2, allowing low privileged users to inject arbitrary SQL directives into an SQL query and execute arbitrary SQL commands and get full reading access. This may also lead to...

6.5CVSS7.9AI score0.00088EPSS

Exploits0References1Affected Software1

Cvelist•added 2022/05/18 4:34 p.m.•12 views

CVE-2022-25162

Improper Input Validation vulnerability in Mitsubishi Electric MELSEC iQ-F series FX5U-xMy/zx=32,64,80, y=T,R, z=ES,DS,ESS,DSS with serial number 17X or later and versions prior to 1.270, Mitsubishi Electric Mitsubishi Electric MELSEC iQ-F series FX5U-xMy/zx=32,64,80, y=T,R, z=ES,DS,ESS,DSS with...

5.6AI score0.00236EPSS

Exploits0References3

IBM Security Bulletins•added 2022/05/17 2:48 p.m.•18 views

Security Bulletin: IBM DataPower Gateway vulnerable to temporary DoS

Summary IBM has addressed the CVEs Vulnerability Details CVEID: CVE-2022-22356 DESCRIPTION: IBM MQ Appliance 9.2 CD and 9.2 LTS could allow an attacker to enumerate account credentials due to an observable discrepancy in valid and invalid login attempts. IBM X-Force ID: 220487. CVSS Base score: 5...

6.5CVSS1AI score0.00224EPSS

Exploits0Affected Software3