CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

588 matches found

Gryphon Tower - Cross-Site Scripting

Gryphon Tower router web interface contains a reflected cross-site scripting vulnerability in the url parameter of the /cgi-bin/luci/siteaccess/ page. An attacker can exploit this issue by tricking a user into following a specially crafted link, granting the attacker JavaScript execution in the...

6.1CVSS6.3AI score0.11461EPSS

Exploits1References4

AstraLinux•added 2026/05/03 11:59 p.m.•6 views

Astra Linux - уязвимость в ansible

A flaw was discovered in Ansible’s amazon.aws collection when using the towercallback parameter from the amazon.aws.ec2instance module. This flaw allows an attacker to exploit the issue, as the module handles the parameter insecurely, resulting in the password being leaked in the logs...

7.5CVSS6.9AI score0.00228EPSS

Exploits0References2

The Hacker News•added 2026/04/30 1:55 p.m.•17 views

ThreatsDay Bulletin: SMS Blaster Busts, OpenEMR Flaws, 600K Roblox Hacks and 25 More Stories

The internet is noisy this week. We are seeing some wild new tactics, like people using fake cell towers to send scam texts, while some developers are accidentally downloading tools that peek into their private files during a simple install. It is definitely a busy time to be online. Security is...

10CVSS8AI score0.94454EPSS

Exploits125

Tenable Nessus•added 2026/01/16 12:0 a.m.•2 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000551)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000551 advisory. The towerprobe function in drivers/usb/misc/legousbtower.c in the Linux kernel before 4.8.1 allows local users who are physically proximate for inserting a crafted U...

6.9CVSS6.7AI score0.00093EPSS

Exploits0References10

Tenable Nessus•added 2026/01/15 12:0 a.m.•1 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002822)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002822 advisory. The towerprobe function in drivers/usb/misc/legousbtower.c in the Linux kernel before 4.8.1 allows local users who are physically proximate for inserting a crafted U...

6.9CVSS6.7AI score0.00093EPSS

Exploits0References10

Chainguard•added 2026/01/07 7:17 p.m.•3 views

CVE-2025-69223 vulnerabilities

Vulnerabilities for packages: awx, py3-vllm-cuda-12.4, kserve, dask-kubernetes, open-webui, apache-beam-python-3.11-sdk, py3-cassandra-medusa, authentik, request-1276, airflow, kubeflow-pipelines-visualization-server, checkov, gitlab-cng...

7.5CVSS6.8AI score0.00057EPSS

Exploits0