CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2026/03/21 12:16 a.m.•3 views

CVE-2026-24060

Service information is not encrypted when transmitted as BACnet packets over the wire, and can be sniffed, intercepted, and modified by an attacker. Valuable information such as the File Start Position and File Data can be sniffed from network traffic using Wireshark's BACnet dissector filter. Th...

9.1CVSS0.002EPSS

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2018-3433

Malware in sbrugna...

4.3CVSS4.8AI score0.00229EPSS

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2018-3436

Malware in sbrugna...

6.6CVSS6.6AI score0.00229EPSS

OpenVAS•added 2025/09/25 12:0 a.m.•3 views

Do Not Install the rsync Service

The rsync service can synchronize data between servers or between local drive partitions. However, information leakage risks exist because rsync uses non-encrypted transmission protocols. If the rsync service is enabled and data is transmitted between servers over the network, attackers can...

6.5AI score

CNNVD•added 2025/08/18 12:0 a.m.•3 views

Santesoft Sante PACS Server 安全漏洞

Santesoft Sante PACS Server is a DICOM 3.0 compliant PACS server, Modality Worklist server, HTTP Web server for DICOM files, and CD/DVD burning and printing server from Santesoft Cyprus. Used to store, archive, manage, view and burn medical images. A security vulnerability exists in Santesoft San...

9.1CVSS6.7AI score0.0019EPSS

CNVD•added 2025/07/24 12:0 a.m.•2 views

IBM Engineering Systems Design Rhapsody Information Disclosure Vulnerability

IBM Engineering Systems Design Rhapsody is a model-driven development MDD environment for systems engineering and software development provided by IBM. An information disclosure vulnerability exists in IBM Engineering Systems Design Rhapsody, which arises from the transmission of sensitive...

7.5CVSS5.9AI score0.00097EPSS

CNNVD•added 2025/06/13 12:0 a.m.•1 views

Salt 安全漏洞

Salt is an automation, infrastructure management, data-driven orchestration and remote execution application from the Salt project. Salt has a security vulnerability that stems from vulnerability to replay attacks when TLS encrypted transmissions are not used...

2.7CVSS6.6AI score0.00214EPSS

CNNVD•added 2024/09/26 12:0 a.m.•3 views

goTenna Pro ATAK Plugin 安全漏洞

The goTenna Pro ATAK Plugin is a plugin for goTenna's device that creates a network for off-grid communication and situational awareness. A security vulnerability exists in goTenna Pro ATAK Plugin version 1.9.12 and earlier, which stems from frequent unencrypted location, place, and message...

5.3CVSS6.7AI score0.00128EPSS

CNNVD•added 2023/06/28 12:0 a.m.•2 views

Google Pixel 安全漏洞

Google Pixel is a smartphone from the American company Google Google. Google Pixel has a security vulnerability that stems from insecure defaults that may use unencrypted transmissions over cellular networks, which could lead to remote information leaks...

7.5CVSS7.3AI score0.00315EPSS

CNNVD•added 2023/06/28 12:0 a.m.•2 views

Google Pixel 安全漏洞

7.5CVSS7.3AI score0.00315EPSS

ThreatPost•added 2019/03/06 7:45 p.m.•63 views

RSA Conference 2019: The Sky's the Limit For Satellite Hacks

SAN FRANCISCO – The satellites orbiting the world are rife with vulnerabilities – and as more satellites go up, and antenna equipment becomes cheaper, they are becoming a lucrative target for threat actors back on earth, according to researchers. William Malik, vice president of infrastructure...

0.4AI score

Exploits0References4

BDU FSTEC•added 2018/08/14 12:0 a.m.•3 views

The vulnerability of Medtronic MiniMed medical equipment, related to insufficient protection of transmitted information, allows a perpetrator to disclose protected information.

The vulnerability of Medtronic MiniMed 508, 522, 523, 523K, 551, 722, 723, 723K, and 751 medical devices lies in the transmission of protected information in an unencrypted form. Exploiting this vulnerability could allow an intruder to disclose protected information...

6.5CVSS5.5AI score0.00474EPSS

OSV•added 2018/03/06 8:29 p.m.•3 views

CVE-2018-6019

Samsung Display Solutions App before 3.02 for Android allows man-in-the-middle attackers to spoof B2B content by leveraging failure to use encryption during information transmission...

5.9CVSS5.8AI score0.00267EPSS

Exploits1References1

CNVD•added 2017/11/09 12:0 a.m.•3 views

Philips Hue Bridge BSB002 public API security bypass vulnerability

Philips Hue Bridge BSB002 is a smart home lighting system from Philips in the Netherlands. public API is one of the public interfaces. A security vulnerability exists in the public API in the Philips Hue Bridge BSB002 using firmware version 1707040932, where the vulnerable program fails to encryp...

7.9CVSS6.8AI score0.00422EPSS