CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

An allocation of resources without limits or throttling in Kibana can lead to a crash caused by a specially crafted payload to a number of inputs in Kibana UI. This can be carried out by users with read access to any feature in Kibana...

6.5CVSS6.2AI score0.0043EPSS

Exploits0References2

The Hacker News•added 2024/04/24 4:50 a.m.•37 views

CoralRaider Malware Campaign Exploits CDN Cache to Spread Info-Stealers

A new ongoing malware campaign has been observed distributing three different stealers, such as CryptBot, LummaC2, and Rhadamanthys hosted on Content Delivery Network CDN cache domains since at least February 2024. Cisco Talos has attributed the activity with moderate confidence to a threat actor...

7.3AI score

Exploits0

CVE•added 2019/08/02 9:25 p.m.•142 views

CVE-2019-7904

CVE-2019-7904 affects Magento versions prior to 2.1.18, 2.2 prior to 2.2.9, and 2.3 prior to 2.3.2, where a low-privileged user could make unauthorized environment configuration changes due to insufficient enforcement of user access controls. Public references indicate a security update exists: M...

6.5CVSS6.4AI score0.00057EPSS

Exploits0References1Affected Software1

Cvelist•added 2019/08/02 9:25 p.m.•10 views

CVE-2019-7904

Insufficient enforcement of user access controls in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2 could enable a low-privileged user to make unauthorized environment configuration changes...

6.5AI score0.00057EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by