CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2026/06/15 3:30 a.m.•34 views

CVE-2026-12214 Qihoo 360 Total Security Nucleus Engine Monitoring Logic RpcStringBindingComposeW protection mechanism

8.5CVSS0.00124EPSS

Vulnrichment•added 2026/06/15 3:30 a.m.•7 views

CVE-2026-12214 Qihoo 360 Total Security Nucleus Engine Monitoring Logic RpcStringBindingComposeW protection mechanism

8.5CVSS7AI score0.00124EPSS

CVE•added 2026/06/15 3:30 a.m.•21 views

CVE-2026-12214

Qihoo 360 Total Security 6.0 contains a vulnerability in the RpcStringBindingComposeW function within the Nucleus Engine Monitoring Logic. Manipulating the NetworkAddr argument can cause protection mechanism failure, allowing a local attacker to exploit the issue. The exploit is publicly availabl...

8.5CVSS7.1AI score0.00124EPSS

Positive Technologies•added 2026/06/15 12:0 a.m.•10 views

PT-2026-49176

8.5CVSS7.1AI score0.00124EPSS

Exploits0References6

OSV•added 2026/02/03 6:16 p.m.•4 views

CVE-2025-69875

A vulnerability exists in Quick Heal Total Security 23.0.0 in the quarantine management component where insufficient validation of restore paths and improper permission handling allow a low-privileged local user to restore quarantined files into protected system directories. This behavior can be...

7.8CVSS5.7AI score0.00428EPSS

Exploits0References2

ATTACKERKB•added 2026/02/03 12:0 a.m.•1 views

CVE-2025-69875

5.5AI score0.00428EPSS

Exploits0References3

EUVD•added 2026/02/03 12:0 a.m.•4 views

EUVD-2025-206708

7.8CVSS5.5AI score0.00428EPSS

Exploits0References2

CVE•added 2026/02/03 12:0 a.m.•10 views

CVE-2025-69875

CVE-2025-69875 – Quick Heal Total Security 23.0.0 (quarantine management) : The issue is insufficient validation of restore paths and improper permission handling, allowing a low-privileged local user to restore quarantined files into protected system directories, potentially enabling privilege e...

7.8CVSS5.5AI score0.00428EPSS

Exploits0References2Affected Software1

RedhatCVE•added 2026/01/09 11:14 a.m.•6 views

CVE-2016-10898

The total-security plugin before 3.4.1 for WordPress has XSS...

6.1CVSS7.1AI score0.00913EPSS

RedhatCVE•added 2026/01/09 8:42 a.m.•8 views

CVE-2022-31467

A DLL hijacking vulnerability in the installed for Quick Heal Total Security prior to 12.1.1.27 allows a local attacker to achieve privilege escalation, leading to execution of arbitrary code, via the installer not restricting the search path for required DLLs and then not verifying the signature...

7.9CVSS6.9AI score0.00279EPSS

RedhatCVE•added 2026/01/09 8:42 a.m.•9 views

CVE-2022-31466

Time of Check - Time of Use TOCTOU vulnerability in Quick Heal Total Security prior to 12.1.1.27 allows a local attacker to achieve privilege escalation, potentially leading to deletion of system files. This is achieved through exploiting the time between detecting a file as malicious and when th...

7.9CVSS6.7AI score0.00153EPSS

OSV•added 2025/12/22 10:16 p.m.•4 views

CVE-2023-53973

Zillya Total Security 3.0.2367.0 contains a privilege escalation vulnerability that allows low-privileged users to copy files to unauthorized system locations using the quarantine module. Attackers can leverage symbolic link techniques to restore quarantined files to restricted directories,...

7.8CVSS5.8AI score0.00215EPSS

NVD•added 2025/12/22 10:16 p.m.•5 views

CVE-2023-53973

8.5CVSS0.00215EPSS

Vulnrichment•added 2025/12/22 9:35 p.m.•3 views

CVE-2023-53973 Zillya Total Security 3.0.2367.0 Local Privilege Escalation via Quarantine Module

8.5CVSS6.7AI score0.00215EPSS

Positive Technologies•added 2025/12/22 12:0 a.m.•3 views

PT-2025-52710

Name of the Vulnerable Software and Affected Versions Zillya Total Security version 3.0.2367.0 Description Zillya Total Security allows low-privileged users to copy files to unauthorized system locations through the quarantine module, leading to potential privilege escalation. Attackers can use...

8.5CVSS6.5AI score0.00215EPSS

Exploits1References8

CNNVD•added 2025/12/22 12:0 a.m.•2 views

Zillya Total Security 安全漏洞

Zillya Total Security is a network security protection suite from the Ukrainian company Zillya. A security vulnerability exists in Zillya Total Security version 3.0.2367.0, which stems from an elevation of privilege issue in the quarantine module that could cause a low-privileged user to copy fil...

8.5CVSS6.9AI score0.00215EPSS

RedhatCVE•added 2025/12/11 9:58 a.m.•6 views

CVE-2025-7073

A local privilege escalation vulnerability in Bitdefender Total Security 27.0.46.231 allows low-privileged attackers to elevate privileges. The issue arises from bdservicehost.exe deleting files from a user-writable directory C:\ProgramData\Atc\Feedback without proper symbolic link validation,...

8.8CVSS7.9AI score0.0014EPSS

NVD•added 2025/12/10 10:16 a.m.•10 views

CVE-2025-7073

A local privilege escalation vulnerability in Bitdefender Total Security versions prior to 27.0.47.241 allows low-privileged attackers to elevate privileges. The issue arises from bdservicehost.exe deleting files from a user-writable directory C:\ProgramData\Atc\Feedback without proper symbolic...

8.8CVSS0.0014EPSS