CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

41 matches found

EUVD•added 2026/05/15 8:33 p.m.•5 views

EUVD-2026-30627

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.5, the tool update endpoint POST /api/v1/tools/id/id/update is missing the workspace.tools permission check that is present on the tool create endpoint. This allows a user who has been...

7.2CVSS6.2AI score0.00081EPSS

Exploits1References1

Positive Technologies•added 2026/05/14 12:0 a.m.•6 views

PT-2026-41187

Name of the Vulnerable Software and Affected Versions Open WebUI versions prior to 0.9.5 Description An Insecure Direct Object Reference IDOR exists in the Channels feature, which allows any member of a channel to modify messages sent by other members, including administrators. In the update...

4.3CVSS5.8AI score0.00036EPSS

Exploits1References7

OSV•added 2026/05/06 2:45 p.m.•3 views

BIT-JAVA-2025-0509 Signing Checks Bypass

A security issue was found in Sparkle before version 2.6.4. An attacker can replace an existing signed update with another payload, bypassing Sparkle’s EdDSA signing checks...

7.3CVSS7.2AI score0.00071EPSS

Exploits0References4

Positive Technologies•added 2026/05/06 12:0 a.m.•2 views

PT-2026-37824

A security issue was found in Sparkle before version 2.6.4. An attacker can replace an existing signed update with another payload, bypassing Sparkle’s EdDSA signing checks...

7.3CVSS7.2AI score0.00071EPSS

Exploits0References5

Positive Technologies•added 2026/05/06 12:0 a.m.•4 views

PT-2026-38031

A security issue was found in Sparkle before version 2.6.4. An attacker can replace an existing signed update with another payload, bypassing Sparkle’s EdDSA signing checks...

7.3CVSS7.2AI score0.00071EPSS

Exploits0References5

Positive Technologies•added 2026/03/19 12:0 a.m.•4 views

PT-2026-26483

Name of the Vulnerable Software and Affected Versions Keystone versions prior to 6.5.2 Description Keystone is a content management system for Node.js. An access control bypass exists in findMany queries through the cursor parameter. Specifically, the field.isFilterable access control can be...

4.3CVSS5.8AI score0.00062EPSS

Exploits0References4

Cvelist•added 2026/01/16 8:39 a.m.•22 views

CVE-2025-12007 Supermicro BMC firmware update validation bypass

There is a vulnerability in the Supermicro BMC firmware validation logic at Supermicro MBD-X13SEM-F . An attacker can update the system firmware with a specially crafted image...

0.00006EPSS

Exploits0References1

RedhatCVE•added 2025/12/03 2:2 p.m.•1 views

CVE-2025-11781

Use of hardcoded cryptographic keys in Circutor SGE-PLC1000/SGE-PLC50 v9.0.2. The affected firmware contains a hardcoded static authentication key. An attacker with local access to the device can extract this key e.g., by analysing the firmware image or memory dump and create valid firmware updat...

8.6CVSS6.8AI score0.00016EPSS

Exploits0References1

Tenable Nessus•added 2025/11/13 12:0 a.m.•3 views

HP Integrated Lights-Out Authentication Bypass Using an Alternate Path or Channel (CVE-2018-7113)

A security vulnerability in HPE Integrated Lights-Out 5 iLO 5 prior to v1.37 could be locally exploited to bypass the security restrictions for firmware updates. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL...

7.2CVSS6.6AI score0.0011EPSS

Exploits0References3

RedhatCVE•added 2025/11/07 1:46 p.m.•2 views

CVE-2025-56231

Tonec Internet Download Manager 6.42.41.1 and earlier suffers from Missing SSL Certificate Validation, which allows attackers to bypass update protections...

9.1CVSS6.9AI score0.00042EPSS

Exploits1References1

OSV•added 2025/11/05 6:15 p.m.•1 views

CVE-2025-56231

Tonec Internet Download Manager 6.42.41.1 and earlier suffers from Missing SSL Certificate Validation, which allows attackers to bypass update protections...

9.1CVSS5.8AI score0.00042EPSS

Exploits1References2

Cvelist•added 2025/11/05 12:0 a.m.•5 views

CVE-2025-56231

Tonec Internet Download Manager 6.42.41.1 and earlier suffers from Missing SSL Certificate Validation, which allows attackers to bypass update protections...

0.00042EPSS

Exploits1References2

Positive Technologies•added 2025/11/05 12:0 a.m.•1 views

PT-2025-45146

Name of the Vulnerable Software and Affected Versions Tonec Internet Download Manager versions 6.42.41.1 and earlier Description Tonec Internet Download Manager versions 6.42.41.1 and earlier are affected by a missing SSL certificate validation issue. This allows attackers to bypass update...

9.1CVSS6.5AI score0.00042EPSS

Exploits1References5

EUVD•added 2025/11/05 12:0 a.m.•1 views

EUVD-2025-37933

Tonec Internet Download Manager 6.42.41.1 and earlier suffers from Missing SSL Certificate Validation, which allows attackers to bypass update protections...

9.1CVSS6.4AI score0.00042EPSS

Exploits1References3

CNNVD•added 2025/11/05 12:0 a.m.•3 views

Tonec Internet Download Manager 安全漏洞

Tonec Internet Download Manager is a download manager from the Russian company Tonec. A security vulnerability exists in Tonec Internet Download Manager 6.42.41.1 and earlier versions, which stems from a lack of SSL certificate validation and may result in bypassing update protection...

9.1CVSS6.7AI score0.00042EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2018-18856

Malware in sbrugna...

7.2CVSS6.6AI score0.0011EPSS

Exploits0References3

Vulnrichment•added 2025/09/19 1:45 a.m.•2 views

CVE-2025-6198 Supermicro BMC firmware update validation bypass

There is a vulnerability in the Supermicro BMC firmware validation logic at Supermicro MBD-X13SEM-F . An attacker can update the system firmware with a specially crafted image...

7.2CVSS6.5AI score0.00111EPSS

Exploits0References1

Debian CVE•added 2025/02/04 8:1 p.m.•14 views

CVE-2025-0509

A security issue was found in Sparkle before version 2.6.4. An attacker can replace an existing signed update with another payload, bypassing Sparkle’s EdDSA signing checks...

7.3CVSS8.3AI score0.00071EPSS

Exploits0

CNNVD•added 2024/07/09 12:0 a.m.•2 views

electron-builder security vulnerability

electron-builder is a tool for packaging and building ready-to-distribute Electron, Proton Native applications for macOS, Windows, and Linux with out-of-the-box "auto-update" support. A security vulnerability exists in electron-builder prior to version 6.3.0-alpha.6, which can be exploited to...

7.5CVSS6.9AI score0.00431EPSS

Exploits1References5

ATTACKERKB•added 2024/04/30 1:15 p.m.•2 views

CVE-2024-2617

A vulnerability exists in the RTU500 that allows for authenticated and authorized users to bypass secure update, if secure update feature was not enabled on all CMUs of a RTU500. If a malicious actor successfully exploits this vulnerability, they could use it to update the RTU500 with unsigned...

7.2CVSS5.9AI score0.00025EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by