CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-12478

Malicious code in bioql PyPI...

3.1CVSS6.4AI score0.00061EPSS

Exploits1References5

OSV•added 2025/04/26 9:31 p.m.•0 views

GHSA-75V8-2H7P-7M2M Formidable relies on hexoid to prevent guessing of filenames for untrusted executable content

Formidable aka node-formidable 2.x before 2.1.3 and 3.x before 3.5.3 relies on hexoid to prevent guessing of filenames for untrusted executable content; however, hexoid is documented as not "cryptographically secure." Also, there is a scenario in which only the last two characters of a hexoid...

3.1CVSS6.7AI score0.00061EPSS

Exploits1References8

NVD•added 2025/04/26 9:15 p.m.•7 views

CVE-2025-46653

Formidable aka node-formidable 2.1.0 through 3.x before 3.5.3 relies on hexoid to prevent guessing of filenames for untrusted executable content; however, hexoid is documented as not "cryptographically secure." Also, there is a scenario in which only the last two characters of a hexoid string nee...

3.1CVSS0.00061EPSS

Exploits1References3

Cvelist•added 2024/07/10 6:40 p.m.•31 views

CVE-2024-5912 Cortex XDR Agent: Improper File Signature Verification Checks

An improper file signature check in Palo Alto Networks Cortex XDR agent may allow an attacker to bypass the Cortex XDR agent's executable blocking capabilities and run untrusted executables on the device. This issue can be leveraged to execute untrusted software without being detected or blocked...

6.8CVSS0.00013EPSS

Exploits0References1

CVE•added 2024/07/10 6:40 p.m.•79 views

CVE-2024-5912

CVE-2024-5912 affects Palo Alto Networks Cortex XDR agent where improper file signature verification checks may allow bypass of the agent’s executable blocking, enabling execution of untrusted executables on the device. The issue is tied to the Cortex XDR agent application itself and is described...

6.8CVSS6.8AI score0.00013EPSS

Exploits0References1