CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

17 matches found

EUVD•added 2025/10/07 12:30 a.m.•6 views

EUVD-2020-4172

Malware in sbrugna...

5.5CVSS5.6AI score0.00324EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•6 views

EUVD-2005-0346

Malware in sbrugna...

5CVSS6.4AI score0.02834EPSS

Exploits0References4

CNVD•added 2025/08/26 12:0 a.m.•2 views

Apartment Management System addfair.php File SQL Injection Vulnerability

Apartment Management System is an apartment management system. Apartment Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally-entered SQL statements for parameter IDs in the /fair/addfair.php file. An attacker can exploit this...

9.8CVSS8.2AI score0.00387EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 3:53 p.m.•7 views

CVE-2020-11832

In functions charginglimitcurrentwrite and charginglimittimewrite in /SM8250QMaster/android/vendor/oppocharger/oppo/oppocharger.c have not checked the parameters, which causes a vulnerability...

5.5CVSS7AI score0.00324EPSS

Exploits1References1

OSV•added 2025/02/10 4:15 p.m.•4 views

DEBIAN-CVE-2025-21687

In the Linux kernel, the following vulnerability has been resolved: vfio/platform: check the bounds of read/write syscalls count and offset are passed from user space and not checked, only offset is capped to 40 bits, which can be used to read/write out of bounds of the device...

7.8CVSS5.9AI score0.00221EPSS

Exploits0References1

OSV•added 2024/07/17 9:30 a.m.•9 views

GHSA-7G94-HFQC-Q993 Apache StreamPark: Unchecked maven build params could trigger remote command execution

In streampark, the project module integrates Maven's compilation capabilities. The input parameter validation is not strict, allowing attackers to insert commands for remote command execution, The prerequisite for a successful attack is that the user needs to log in to the streampark system and...

4.7CVSS5.3AI score0.01516EPSS

Exploits0References4

OSV•added 2024/03/27 10:15 p.m.•3 views

DEBIAN-CVE-2024-0075

NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability where a user may cause a NULL-pointer dereference by accessing passed parameters the validity of which has not been checked. A successful exploit of this vulnerability may lead to denial of service and limited information...

6.1CVSS5.3AI score0.00205EPSS

Exploits0References1

OSV•added 2024/03/27 10:15 p.m.•1 views

UBUNTU-CVE-2024-0075

6.1CVSS5.8AI score0.00205EPSS

Exploits0References3

SUSE CVE•added 2024/03/01 3:47 a.m.•3 views

SUSE CVE-2024-0075

5.5CVSS6.6AI score0.00205EPSS

Exploits0References4

CNNVD•added 2023/12/15 12:0 a.m.•4 views

Apache StreamPark Command Injection Vulnerability

Apache StreamPark is a streaming media application development framework from the Apache Foundation. A command injection vulnerability exists in Apache StreamPark versions 2.0.0 through 2.1.2 and earlier, which stems from a lack of checking of compilation parameters and allows an attacker to inse...

7.2CVSS7.9AI score0.02299EPSS

Exploits0References2

CNVD•added 2023/08/29 12:0 a.m.•3 views

Tenda AC23 sub_4781A4 function stack buffer overflow vulnerability

Tenda AC23 is a home dual-band wireless router launched by Tenda, focusing on large home coverage and high-speed transmission, supporting 802.11acWave2 technology, dual-band concurrent rate up to 2033Mbps. The Tenda AC23 suffers from a stack buffer overflow vulnerability, which stems from the...

8.8CVSS8.4AI score0.00787EPSS

Exploits1References1

CNNVD•added 2023/06/15 12:0 a.m.•4 views

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google Inc. in the United States. Google Android suffers from a security vulnerability that stems from a lack of checks on the size of parameter values, which could lead to integer overflow, out-of-bounds heap access. An attacker...

9.8CVSS8.3AI score0.00316EPSS

Exploits0References2

CNNVD•added 2021/02/01 12:0 a.m.•4 views

Qualcomm IPC Input Validation Error Vulnerability

Qualcomm IPC is a Qualcomm Incorporated USA support component used in chips. A security vulnerability exists in Qualcomm IPC that stems from a lack of checking the validity and boundary compliance of parameters read from shared memory...

7.8CVSS7.1AI score0.00161EPSS

Exploits0References4

CNNVD•added 2020/12/31 12:0 a.m.•4 views

Oppo SM8250 Buffer Error Vulnerability

The Oppo SM8250 is a driver for the Snapdragon 855 chip from the Chinese company Oppo. A security vulnerability exists in the Oppo charger module that stems from /SM8250QMaster/android/vendor/oppocharger/oppo/oppocharger.c not checking parameters...

5.5CVSS5.8AI score0.00324EPSS

Exploits1References1

OSV•added 2017/09/21 3:29 p.m.•3 views

CVE-2017-8250

In all Qualcomm products with Android releases from CAF using the Linux kernel, user controlled variables "nrcmds" and "nrbos" number are passed across functions without any check. An integer overflow to buffer overflow with a smaller buffer allocated may occur when they are too large or negative...

7.8CVSS6AI score0.00404EPSS

Exploits0References2

BDU FSTEC•added 2016/08/23 12:0 a.m.•5 views

The vulnerability of the Android operating system, which allows a hacker to increase their privileges

The vulnerability of the MSM camera driver for the Qualcomm Android operating system is related to the lack of checks on incoming parameters. Exploiting this vulnerability can allow a malicious actor to enhance their privileges through a specially created application...

9.3CVSS7.2AI score0.00544EPSS

Exploits0References3Affected Software1