Lucene search
K

230 matches found

Cvelist
Cvelist
added 2025/11/12 12:0 a.m.12 views

CVE-2025-63667

Incorrect access control in SIMICAM v1.16.41-20250725, KEVIEW v1.14.92-20241120, ASECAM v1.14.10-20240725 allows attackers to access sensitive API endpoints without authentication...

0.00486EPSS
Exploits0References3
CVE
CVE
added 2025/10/30 11:30 p.m.79 views

CVE-2025-52665

Summary (CVE-2025-52665): UniFi Access Application versions 3.3.22–3.4.31 expose a misconfigured management API that lacks proper authentication, allowing potential unauthorized access by actors on the management network. The vulnerability was introduced in 3.3.22 and fixed in 4.0.21 and later. R...

10CVSS6.4AI score0.40972EPSS
In wildExploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/10/29 12:0 a.m.6 views

Aviatrix Controller Unrestricted Upload of File (CVE-2021-40870)

While the Aviatrix UI requires authentication, many API calls do not enforce a check for authentication. Some of these API calls allow an unauthenticated attacker to upload arbitrary files, including .php scripts, to the filesystem. These uploaded scripts will be processed by the web frontend,...

9.8CVSS8.5AI score0.93019EPSS
Exploits5References2
Positive Technologies
Positive Technologies
added 2025/10/24 12:0 a.m.12 views

PT-2025-43651

Name of the Vulnerable Software and Affected Versions Karmada Dashboard versions prior to 0.2.0 Description The Karmada Dashboard, a web-based control panel for the Karmada multi-cluster management project, contains an authentication bypass. Backend API endpoints, such as /api/v1/secret and...

8.7CVSS6.8AI score0.00607EPSS
Exploits0References18
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-7340

Malware in sbrugna...

5.3CVSS5.6AI score0.0058EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-22576

Malware in sbrugna...

7.5CVSS8.6AI score0.1271EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-7342

Malware in sbrugna...

5.3CVSS5.6AI score0.00568EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-6299

Malware in sbrugna...

7.5CVSS7.5AI score0.01031EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-7341

Malware in sbrugna...

5.3CVSS5.6AI score0.00568EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-7339

Malware in sbrugna...

5.3CVSS5.6AI score0.00562EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-48324

Malicious code in bioql PyPI...

7.5CVSS4.8AI score0.00345EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-38850

Malicious code in bioql PyPI...

9.1CVSS7.9AI score0.01333EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2025-23548

Malicious code in bioql PyPI...

5.3CVSS6.6AI score0.00344EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.14 views

EUVD-2023-54458

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00458EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-27998

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00964EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-9181

Malicious code in bioql PyPI...

7.5CVSS7.8AI score0.01339EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-8735

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00508EPSS
Exploits0References3
OSV
OSV
added 2025/09/29 9:15 p.m.4 views

CVE-2025-34216

Vasion Print formerly PrinterLogic Virtual Appliance Host prior to version 22.0.1026 and Application prior to version 20.0.2702 VA deployments only expose a set of unauthenticated REST API endpoints that return configuration files and clear‑text passwords. The same endpoints also disclose the...

9.8CVSS6.3AI score0.0076EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/09/29 12:0 a.m.5 views

PT-2025-39883

Name of the Vulnerable Software and Affected Versions Vasion Print versions prior to 22.0.1026 Vasion Print Application versions prior to 20.0.2702 Description Vasion Print formerly PrinterLogic Virtual Appliance Host and Application deployments expose unauthenticated REST API endpoints. These...

10CVSS7.9AI score0.0076EPSS
Exploits1References7
OSV
OSV
added 2025/09/15 11:34 a.m.4 views

CVE-2025-59358 Denial of Service via Unauthorized Access to Chaos Mesh debugging server

The Chaos Controller Manager in Chaos Mesh exposes a GraphQL debugging server without authentication to the entire Kubernetes cluster, which provides an API to kill arbitrary processes in any Kubernetes pod, leading to cluster-wide denial of service...

7.5CVSS6.2AI score0.00987EPSS
Exploits1References5
Rows per page
Query Builder