CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2026/03/18 12:0 a.m.•6 views

xiaoheiFS 安全漏洞

xiaoheiFS is a self-hosted cloud service financial and operational system developed by Danvei’s individual developers. Versions of xiaoheiFS prior to 0.3.15 contain security vulnerabilities. These vulnerabilities stem from the standard plugin system, which allows administrators to upload ZIP file...

7.2CVSS6.2AI score0.00514EPSS

Exploits1References1

RedhatCVE•added 2026/01/29 3:26 a.m.•7 views

CVE-2026-24910

In Bun before 1.3.5, the default trusted dependencies list aka trust allow list can be spoofed by a non-npm package in the case of a matching name for file, link, git, or github...

5.9CVSS5.9AI score0.00003EPSS

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2008-1742

Malware in sbrugna...

7.8CVSS6.4AI score0.00803EPSS

Exploits1References7

EUVD•added 2025/10/07 12:30 a.m.•5 views

EUVD-2012-2476

Malware in sbrugna...

5CVSS6.4AI score0.00137EPSS

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2014-0768

Malware in sbrugna...

4.3CVSS6.4AI score0.00191EPSS

Exploits1References3

EUVD•added 2025/10/07 12:30 a.m.•9 views

EUVD-2014-0769

Malware in sbrugna...

4.3CVSS6.4AI score0.00098EPSS

RedhatCVE•added 2025/05/22 6:4 a.m.•7 views

CVE-2012-2490

Cisco IP Communicator 8.6 allows man-in-the-middle attackers to modify the Certificate Trust List via unspecified vectors, aka Bug ID CSCtz01471...

5CVSS6.8AI score0.00137EPSS

Rockylinux•added 2023/09/19 12:10 p.m.•38 views

ca-certificates bug fix and enhancement update

An update is available for ca-certificates. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The ca-certificates package contains a set of Certificate Authority C...

6.9AI score

Exploits0

Positive Technologies•added 2023/03/12 12:0 a.m.•1 views

PT-2023-35692 · Git +1 · Clamav

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash type of UNKNOWN READ. The crash state involves several function calls, including fp cmp mag, crtmgr trust list lookup, an...

6.9AI score

Rockylinux•added 2022/09/13 7:37 a.m.•28 views

ca-certificates bug fix and enhancement update

An update is available for ca-certificates. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The ca-certificates package contains a set of Certificate Authority C...

1.2AI score

Exploits0

Positive Technologies•added 2022/08/12 12:0 a.m.•3 views

PT-2022-37178 · Git +1 · Clamav

6.9AI score

CNVD•added 2021/11/01 12:0 a.m.•16 views

Huawei Emui and Magic UI Competitive Conditions Vulnerability

The Huawei Smartphone is a smartphone from the Chinese company Huawei. A security vulnerability exists in Huawei Emui and Magic UI, which can be exploited by an attacker to cause an anomaly when managing the system's trust list...

4.3CVSS4.1AI score0.00087EPSS

CNNVD•added 2021/10/28 12:0 a.m.•1 views

Huawei Smartphone 竞争条件问题漏洞

4.3CVSS5.9AI score0.00087EPSS

CNVD•added 2021/08/04 12:0 a.m.•26 views

Huawei HarmonyOS configuration settings vulnerability

Huawei HarmonyOS is an operating system from Huawei, a Chinese company that provides a microkernel-based, distributed operating system. A security vulnerability exists in Huawei HarmonyOS, which can be exploited by local attackers to cause a lack of trust in the underlying application trust list...

7.8CVSS2.9AI score0.00019EPSS

CNNVD•added 2021/08/03 12:0 a.m.•3 views

Huawei HarmonyOS 安全漏洞

7.8CVSS5.7AI score0.00019EPSS

Microsoft KB•added 2020/04/16 12:0 a.m.•3 views

An automatic updater of untrusted certificates is available for Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2

An automatic updater of untrusted certificates is available for Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2 INTRODUCTION An automatic updater of untrusted certificates is available for Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2. This...

6.4AI score

Exploits0

Tenable Nessus•added 2019/01/03 12:0 a.m.•14 views

Fedora 28 : ca-certificates (2018-6d91fc0518)

This is an update to version 2.24 of the Mozilla CA trust list, which has been published as part of the NSS 3.37 release. Please refer to the upstream release notes for the changes: https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS3.37 releasenotes Note that Tenable Network Securi...

5.5AI score

Kaspersky•added 2018/11/27 12:0 a.m.•56 views

KLA11376 Spoofing vulnerability in Microsoft Windows

A vulnerability was found in Microsoft Windows. Malicious users can exploit this vulnerability to spoof user interface. Technical details The certificates were inadvertently disclosed by the Sennheiser HeadSetup and HeadSetup Pro software. Original advisories ADV180029 Related products...

7AI score

Tenable Nessus•added 2018/01/15 12:0 a.m.•25 views

Fedora 27 : ca-certificates (2017-fba4c155be)

This is a cumulative update to the Mozilla CA certificates trust list version 2.20, which has been published as part of Mozilla NSS 3.34.1. It also includes the changes that were previously released as version 2.18 as part of NSS 3.34. For additional details, please refer to the release notes of...

5.4AI score