CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

313 matches found

Positive Technologies•added 2026/02/24 12:0 a.m.•5 views

PT-2026-21783

Name of the Vulnerable Software and Affected Versions NVIDIA Cumulus Linux and NVOS products affected versions not specified Description The software contains a flaw in the NVUE interface that allows a low-privileged user to execute unauthorized commands. Exploitation of this issue could result i...

8CVSS5.3AI score0.0051EPSS

Exploits0References6

EUVD•added 2026/02/04 8:31 p.m.•2 views

EUVD-2025-206777

IBM Common Cryptographic Architecture CCA 7.5.52 and 8.4.82 could allow an unauthenticated user to execute arbitrary commands with elevated privileges on the system...

9.8CVSS5.8AI score0.00506EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:36 a.m.•6 views

CVE-2024-34257

TOTOLINK EX1800T V9.1.0cu.2112B20220316 has a vulnerability in the apcliEncrypType parameter that allows unauthorized execution of arbitrary commands, allowing an attacker to obtain device administrator privileges...

9.8CVSS6.9AI score0.03848EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 8:40 a.m.•10 views

CVE-2022-26116

Multiple improper neutralization of special elements used in SQL commands 'SQL Injection' vulnerability CWE-89 in FortiNAC version 8.3.7 and below, 8.5.2 and below, 8.5.4, 8.6.0, 8.6.5 and below, 8.7.6 and below, 8.8.11 and below, 9.1.5 and below, 9.2.2 and below may allow an authenticated attack...

8.8CVSS7.7AI score0.00761EPSS

Exploits0References1

RedhatCVE•added 2025/12/31 12:2 a.m.•3 views

CVE-2025-66848

JD Cloud NAS routers AX1800 4.3.1.r4308 and earlier, AX3000 4.3.1.r4318 and earlier, AX6600 4.5.1.r4533 and earlier, BE6500 4.4.1.r4308 and earlier, ER1 4.5.1.r4518 and earlier, and ER2 4.5.1.r4518 and earlier contain an unauthorized remote command execution vulnerability...

9.8CVSS7.3AI score0.01011EPSS

Exploits0References1

GithubExploit•added 2025/12/27 1:31 p.m.•202 views

Exploit for Command Injection in Fit2Cloud 1Panel

CVE-2025-54424 CVE-2025-54424: 1Panel client vulnerability in...

9.8CVSS6AI score0.00864EPSS

Exploits5

NVD•added 2025/10/30 10:15 p.m.•8 views

CVE-2023-7317

Nagios XI versions prior to 2024R1 contain a missing access control vulnerability via the Web SSH Terminal. A remote, low-privileged attacker could access or interact with the terminal interface without sufficient authorization, potentially allowing unauthorized command execution or disclosure of...

9.4CVSS0.01385EPSS

Exploits0References3

CVE•added 2025/10/30 9:47 p.m.•11 views

CVE-2023-7317

CVE-2023-7317 affects Nagios XI prior to 2024R1 due to a missing access control in the Web SSH Terminal. A remote, low-privilege attacker could access/interact with the terminal without sufficient authorization, potentially leading to unauthorized command execution or disclosure of sensitive info...

9.4CVSS6.3AI score0.01385EPSS

Exploits0References3Affected Software1

OSV•added 2025/10/24 5:1 p.m.•2 views

CLSA-2025-1761325294 Fix CVE(s): CVE-2021-23240, CVE-2023-42465, CVE-2025-32462

SECURITY UPDATE: privilege escalation via symlinks - debian/patches/CVE-2021-23240.patch: fix opportunity for local unprivileged user to gain file ownership via symlinks. SECURITY UPDATE: unauthorized commands execution on unintended hosts - debian/patches/CVE-2025-32462.patch: restrict user from...

8.8CVSS5.9AI score0.03239EPSS

Exploits14References1

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-5061

Malware in sbrugna...

9CVSS7AI score0.00833EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2021-14843

Malware in sbrugna...

9CVSS8.6AI score0.06009EPSS

Exploits4References6