CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

676 matches found

EVlink City < R8 V3.4.0.1 - Authentication Bypass

A CWE-798: Use of Hard-coded Credentials vulnerability exists in EVlink City EVC1S22P4 / EVC1S7P4 all versions prior to R8 V3.4.0.1, EVlink Parking EVW2 / EVF2 / EV.2 all versions prior to R8 V3.4.0.1, and EVlink Smart Wallbox EVB1A all versions prior to R8 V3.4.0.1 that could allow an attacker t...

10CVSS7.3AI score0.64612EPSS

Exploits2References3

RedhatCVE•added 2026/01/09 9:24 a.m.•7 views

CVE-2023-40717

A use of hard-coded credentials vulnerability CWE-798 in FortiTester 2.3.0 through 7.2.3 may allow an attacker who managed to get a shell on the device to access the database via shell commands...

7.8CVSS6.9AI score0.00191EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•5 views

EUVD-2019-16366

Malware in sbrugna...

7.2CVSS7AI score0.01131EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2023-37467

Malicious code in bioql PyPI...

5.5CVSS5.5AI score0.00205EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2025-27547

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00224EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•6 views

EUVD-2022-46602

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.08047EPSS

Exploits1References1

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2023-40756

Malicious code in bioql PyPI...

4.7CVSS5.9AI score0.00152EPSS

Exploits0References1

Vulnrichment•added 2025/08/04 6:44 p.m.•4 views

CVE-2025-26476

Dell ECS versions prior to 3.8.1.5/ ObjectScale version 4.0.0.0, contain a Use of Hard-coded Cryptographic Key vulnerability. An unauthenticated attacker with local access could potentially exploit this vulnerability, leading to Unauthorized access...

8.4CVSS7AI score0.00111EPSS

Exploits0References1

OSV•added 2025/07/16 12:9 a.m.•6 views

OSV-2025-550 Use-of-uninitialized-value in CFF::cff2_cs_opset_t<cff2_cs_opset_subr_subset_t, CFF::subr_subset_param_t, CFF:

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=431867896 Crash type: Use-of-uninitialized-value Crash state: CFF::cff2csopsettcff2csopsetsubrsubsett, CFF::subrsubsetparamt, CFF: cff2csopsetsubrsubsett::processop CFF::subrsubsettertcff2subrsubsettert,...

7.2AI score

Exploits0References1

Positive Technologies•added 2025/07/16 12:0 a.m.•10 views

PT-2025-31561 · Git · Harfbuzz

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=431867896 Crash type: Use-of-uninitialized-value Crash state: CFF::cff2 cs opset tcff2 cs opset subr subset t, CFF::subr subset param t, CFF: cff2 cs opset subr subset t::process op CFF::subr subsetter tcff2 subr subsetter t,...

7.2AI score

Exploits0References2

NVD•added 2025/07/11 4:15 p.m.•5 views

CVE-2025-52985

A Use of Incorrect Operator vulnerability in the Routing Engine firewall of Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to bypass security restrictions. When a firewall filter which is applied to the lo0 or re:mgmt interface references a prefix list with...

6.9CVSS0.00238EPSS

Exploits0References1

OSV•added 2025/06/16 12:17 a.m.•5 views

OSV-2025-469 Use-of-uninitialized-value in ndpi_strdup

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=424653416 Crash type: Use-of-uninitialized-value Crash state: ndpistrdup ndpidetectionprocesspacket fuzzconfig.cpp...

7.2AI score

Exploits0References1

Positive Technologies•added 2025/06/16 12:0 a.m.•9 views

PT-2025-26910 · Git +1 · Ndpi

Name of the Vulnerable Software and Affected Versions: ndpi affected versions not specified Description: The software contains a use-of-uninitialized-value issue. This occurs within the ndpi strdup function, which is called during ndpi detection process packet processing, as reported in fuzzing...

6.9AI score

Exploits0References2

NVD•added 2025/06/02 4:15 p.m.•11 views

CVE-2024-40113

Sitecom WLX-2006 Wall Mount Range Extender N300 v.1.5 and before is vulnerable to Use of Default Credentials...

6.5CVSS0.00242EPSS

Exploits1References2

NVD•added 2025/05/28 5:15 p.m.•11 views

CVE-2025-36572

Dell PowerStore, versions 4.0.0.0, contains an Use of Hard-coded Credentials vulnerability in the PowerStore image file. A low privileged attacker with remote access, with the knowledge of the hard-coded credentials, could potentially exploit this vulnerability to gain unauthorized access based o...

6.5CVSS0.00266EPSS

Exploits0References1

OSV•added 2025/05/23 12:14 a.m.•6 views

OSV-2025-404 Use-of-uninitialized-value in JS_FreeRuntime

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=419346940 Crash type: Use-of-uninitialized-value Crash state: JSFreeRuntime fuzzeval.c asyncfuncinit...

7.2AI score

Exploits0References1

Positive Technologies•added 2025/05/23 12:0 a.m.•8 views

PT-2025-23445 · Oss Fuzz · Quickjs

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=419346940 Crash type: Use-of-uninitialized-value Crash state: JS FreeRuntime fuzz eval.c async func init...

7.3AI score

Exploits0References2

RedhatCVE•added 2025/05/22 8:8 p.m.•9 views

CVE-2021-3797

hestiacp is vulnerable to Use of Wrong Operator in String Comparison...

9.8CVSS6.9AI score0.01111EPSS

Exploits1References1

OSV•added 2025/05/10 12:17 a.m.•5 views

OSV-2025-352 Use-of-uninitialized-value in JS_FreeRuntime

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=416299802 Crash type: Use-of-uninitialized-value Crash state: JSFreeRuntime fuzzeval.c asyncfuncinit...

7.2AI score

Exploits0References1

OSV•added 2025/05/04 12:16 a.m.•3 views

OSV-2025-321 Use-of-uninitialized-value in JS_DefineProperty

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=415088961 Crash type: Use-of-uninitialized-value Crash state: JSDefineProperty buildbacktrace JSCallInternal...

7.2AI score

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by