CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

CNNVD•added 2026/05/13 12:0 a.m.•4 views

Arqit Symmetric Key Agreement Platform 安全漏洞

The Arqit Symmetric Key Agreement Platform is a quantum-safe key negotiation platform developed by Arqit Corporation. Versions prior to 26.03 of the Arqit Symmetric Key Agreement Platform contained security vulnerabilities. These vulnerabilities stemmed from exposing the QKEY and internal system...

8.7CVSS5.8AI score0.00041EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•0 views

EUVD-2021-21879

Malware in sbrugna...

5.3CVSS5.6AI score0.00497EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2019-13493

Malware in sbrugna...

7.5CVSS6.2AI score0.00874EPSS

Exploits0References12

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2015-1290

Malware in sbrugna...

5CVSS6.1AI score0.00446EPSS

Exploits1References5

Veracode•added 2022/12/27 7:21 a.m.•18 views

Information Disclosure

github.com/usememos/memos is vulnerable to information disclosure. The vulnerability exists in multiple functions because of missing secure cookie attribute which allows an attacker to send an unencrypted request over the HTTP protocol...

6.5CVSS6AI score0.00137EPSS

Exploits1References4Affected Software1

Vulnrichment•added 2022/12/19 12:0 a.m.•3 views

CVE-2022-46401

The Microchip RN4870 module firmware 1.43 and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112 accepts PauseEncReqPlainText before pairing is complete...

7AI score0.0012EPSS

Exploits1References4

NVD•added 2021/10/27 1:15 a.m.•15 views

CVE-2021-35236

The Secure flag is not set in the SSL Cookie of Kiwi Syslog Server 9.7.2 and previous versions. The Secure attribute tells the browser to only send the cookie if the request is being sent over a secure channel such as HTTPS. This will help protect the cookie from being passed over unencrypted...

5.3CVSS0.00497EPSS

Exploits0References2

Cvelist•added 2021/10/27 12:57 a.m.•11 views

CVE-2021-35236 Missing Secure Flag From SSL Cookie

3.1CVSS5.5AI score0.00497EPSS

Exploits0References2

Positive Technologies•added 2021/10/27 12:0 a.m.•2 views

PT-2021-20858 · Unknown · Kiwi Syslog Server

Name of the Vulnerable Software and Affected Versions: Kiwi Syslog Server versions 9.7.2 and earlier Description: The Secure flag is not set in the SSL Cookie, which means the cookie can be sent over unencrypted requests if the application is accessible over both HTTP and HTTPS. This poses a risk...

5.3CVSS5AI score0.00497EPSS

Exploits0References5

Atlassian•added 2020/06/23 4:39 p.m.•26 views

MITM in Repository Import - CVE-2020-14171

Affected versions of Atlassian Bitbucket Server allow remote attackers to intercept unencrypted repository import requests via Man-in-the-Middle MITM attack. Affected versions: 4.9.0 = version 7.2.4 Fixed versions: 7.2.4 7.3.0...

6.5CVSS6.8AI score0.0024EPSS

Exploits0

OSV•added 2019/02/07 10:29 p.m.•15 views

CVE-2018-1340

Prior to 1.0.0, Apache Guacamole used a cookie for client-side storage of the user's session token. This cookie lacked the "secure" flag, which could allow an attacker eavesdropping on the network to intercept the user's session token if unencrypted HTTP requests are made to the same domain...

7.5CVSS6.6AI score

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by