CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1260 matches found

Tenable Nessus•added 2025/08/18 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2024-21002

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JavaFX. Supported versions that are affected are...

2.5CVSS6.8AI score0.00354EPSS

Exploits0References2

Tenable Nessus•added 2025/08/13 12:0 a.m.•3 views

EulerOS 2.0 SP13 : emacs (EulerOS-SA-2025-1972)

According to the versions of the emacs package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In elisp-mode.el in GNU Emacs before 30.1, a user who chooses to invoke elisp-completion-at-point for code completion on untrusted Emacs Lisp source...

7.8CVSS8.1AI score0.00514EPSS

Exploits0References2

RedHat Linux•added 2025/08/12 8:35 a.m.•5 views

openjdk: Better Glyph drawing (Oracle CPU 2025-07)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: 2D. Supported versions that are affected are Oracle Java SE: 8u451, 8u451-perf, 11.0.27, 17.0.15, 21.0.7, 24.0.1; Oracle GraalVM for JDK: 17.0.15, 21.0.7 and 24.0.1;...

8.1CVSS7.2AI score0.01058EPSS

Exploits1References5

Amazon•added 2025/08/08 12:0 a.m.•6 views

Important: java-11-amazon-corretto

Issue Overview: Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: 2D. Supported versions that are affected are Oracle Java SE: 8u451, 8u451-perf, 11.0.27, 17.0.15, 21.0.7, 24.0.1; Oracle GraalVM for JDK: 17.0.15,...

8.6CVSS6.9AI score0.01058EPSS

Exploits1

Amazon•added 2025/08/08 12:0 a.m.•5 views

Important: java-24-amazon-corretto

8.6CVSS6.8AI score0.01058EPSS

Exploits1

Amazon•added 2025/08/04 12:0 a.m.•3 views

Important: java-1.8.0-openjdk

8.1CVSS6.5AI score0.01058EPSS

Exploits1

Tenable Nessus•added 2025/08/04 12:0 a.m.•4 views

Amazon Linux 2023 : java-1.8.0-amazon-corretto, java-1.8.0-amazon-corretto-devel (ALAS2023-2025-1106)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-1106 advisory. Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: 2D. Supported versions that are affected are Oracle Java SE:...

8.1CVSS6.5AI score0.01058EPSS

Exploits1References10

RedhatCVE•added 2025/08/02 8:22 p.m.•2 views

CVE-2025-54430

dedupe is a python library that uses machine learning to perform fuzzy matching, deduplication and entity resolution quickly on structured data. Before commit 3f61e79, a critical severity vulnerability has been identified within the .github/workflows/benchmark-bot.yml workflow, where a issuecomme...

9.1CVSS6.4AI score0.0032EPSS

Exploits0References1

Tenable Nessus•added 2025/07/31 12:0 a.m.•3 views

Amazon Linux 2 : java-17-amazon-corretto (ALAS-2025-2936)

The version of java-17-amazon-corretto installed on the remote host is prior to 17.0.16+8-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2936 advisory. Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product...

8.6CVSS6.6AI score0.01058EPSS

Exploits1References10

NVD•added 2025/07/30 2:15 p.m.•2 views

CVE-2025-54430

9.1CVSS0.0032EPSS

Exploits0References2

OSV•added 2025/07/29 2:30 p.m.•10 views

CLSA-2025-1753799434 java-1.8.0-openjdk: Fix of 19 CVEs

Security fixes from OpenJDK 8u452-b09: - CVE-2025-21587: JSSE issue allowing remote access or modification of sensitive data - CVE-2025-30698: allows limited data access and partial DoS via untrusted Java code - CVE-2025-30691: allows limited data access via untrusted code using compiler APIs -...

7.4CVSS6.9AI score0.01372EPSS

Exploits0References1

OSV•added 2025/07/27 9:30 a.m.•4 views

GHSA-6V92-R5MX-H5FX smolagents has Sandbox Escape Vulnerability in the local_python_executor.py Module

A sandbox escape vulnerability was identified in huggingface/smolagents version 1.14.0, allowing attackers to bypass the restricted execution environment and achieve remote code execution RCE. The vulnerability stems from the localpythonexecutor.py module, which inadequately restricts Python code...

9.9CVSS7.9AI score0.17516EPSS

Exploits1References4

Positive Technologies•added 2025/07/27 12:0 a.m.•3 views

PT-2025-30998 · Hugging Face · Smolagents

Name of the Vulnerable Software and Affected Versions: huggingface/smolagents versions prior to 1.17.0 Description: A sandbox escape vulnerability exists in the local python executor.py module, allowing attackers to bypass the restricted execution environment and achieve remote code execution RCE...

10CVSS7.9AI score0.17516EPSS

Exploits1References12

RedHat Linux•added 2025/07/21 9:9 a.m.•2 views

openjdk: Better Glyph drawing (Oracle CPU 2025-07)

8.1CVSS7.2AI score0.01058EPSS

Exploits1References5

RedHat Linux•added 2025/07/21 9:7 a.m.•3 views

openjdk: Improve HTTP client header handling (Oracle CPU 2025-07)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Networking. Supported versions that are affected are Oracle Java SE: 8u451-perf, 11.0.27, 17.0.15, 21.0.7, 24.0.1; Oracle GraalVM for JDK: 17.0.15, 21.0.7 and 24.0.1...

8.6CVSS6.9AI score0.00501EPSS

Exploits0References5

RedHat Linux•added 2025/07/21 5:45 a.m.•4 views

openjdk: Better Glyph drawing (Oracle CPU 2025-07)

8.1CVSS7.2AI score0.01058EPSS

Exploits1References5

RedHat Linux•added 2025/07/18 8:45 a.m.•3 views

openjdk: Better Glyph drawing (Oracle CPU 2025-07)

8.1CVSS7.2AI score0.01058EPSS

Exploits1References5

RedHat Linux•added 2025/07/17 4:43 p.m.•14 views

openjdk: Glyph out-of-memory access and crash (Oracle CPU 2025-07)