CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

52 matches found

Positive Technologies•added 2026/05/04 12:0 a.m.•5 views

PT-2026-36808

Name of the Vulnerable Software and Affected Versions 3onedata modbus gateway device model GW1101-1DRS-485-TB-P hardware version V2.2.0 versions prior to 3.0.59B2024080600R4353 Description Authenticated users can execute arbitrary shell commands with root privileges. This is possible by providing...

9.3CVSS6AI score0.0003EPSS

Exploits0References3

CNNVD•added 2026/04/07 12:0 a.m.•2 views

OpenAirInterface 安全漏洞

OpenAirInterface is a mobile communication network software platform developed by the French company OpenAirInterface. OpenAirInterface V2.2.0 AMF contains a security vulnerability. This vulnerability stems from an incorrect message sequence, which leads to incorrect state transitions during the ...

9.8CVSS5.8AI score0.00032EPSS

Exploits1References1

RedhatCVE•added 2025/03/29 12:24 a.m.•10 views

CVE-2024-55073

A Broken Object Level Authorization vulnerability in the component /api/users/user-id of hay-kot mealie v2.2.0 allows users to edit their own profile in order to give themselves more permissions or to change their household...

7.6CVSS7.1AI score0.00143EPSS

Exploits1References1

Cvelist•added 2025/01/14 12:0 a.m.•7 views

CVE-2025-22983

An access control issue in the component /square/getAllSquare/circle of iceCMS v2.2.0 allows unauthenticated attackers to access sensitive information...

0.00386EPSS

Exploits1References1

CVE•added 2025/01/14 12:0 a.m.•49 views

CVE-2025-22983

CVE-2025-22983 affects iceCMS v2.2.0. Affected component: /square/getAllSquare/circle, where improper access control allows unauthenticated attackers to access sensitive information. Root cause is an access-control issue; impact is information disclosure. Exploitation details are not provided in ...

7.5CVSS6.6AI score0.00386EPSS

Exploits1References1Affected Software1

CNVD•added 2025/01/03 12:0 a.m.•9 views

Dcat Admin admin/articles/create interface cross-site scripting vulnerability

Dcat Admin is a second development based on laravel-admin to build the backend system tools . A cross-site scripting vulnerability exists in Dcat Admin v2.2.0-beta, which stems from the lack of effective filtering and escaping of user-supplied data in /admin/articles/create, and can be exploited ...

4.8CVSS5.1AI score0.00061EPSS

Exploits1References1

OSV•added 2024/08/20 3:15 p.m.•9 views

CVE-2024-42662

An issue in apollocongif apollo v.2.2.0 allows a remote attacker to obtain sensitive information via a crafted request...

7.5CVSS6.3AI score

Exploits0References2

NVD•added 2024/07/31 9:15 p.m.•12 views

CVE-2024-40465

An issue in beego v.2.2.0 and before allows a remote attacker to escalate privileges via the getCacheFileName function in file.go file...

8.8CVSS0.00444EPSS

Exploits0References1

Cvelist•added 2024/07/31 12:0 a.m.•14 views

CVE-2024-40464

An issue in beego v.2.2.0 and before allows a remote attacker to escalate privileges via the sendMail function located in beego/core/logs/smtp.go file...

0.00751EPSS

Exploits0References1

Vulnrichment•added 2024/07/31 12:0 a.m.•11 views

CVE-2024-40465

An issue in beego v.2.2.0 and before allows a remote attacker to escalate privileges via the getCacheFileName function in file.go file...

8.7AI score0.00444EPSS

Exploits0References1

NVD•added 2024/04/19 9:15 p.m.•16 views

CVE-2024-31584

Pytorch before v2.2.0 has an Out-of-bounds Read vulnerability via the component torch/csrc/jit/mobile/flatbufferloader.cpp...

5.5CVSS6.5AI score0.00077EPSS

Exploits0References2

CVE•added 2024/04/19 12:0 a.m.•87 views

CVE-2024-31584

CVE-2024-31584 affects PyTorch before v2.2.0 and is caused by an out-of-bounds read in the torch/csrc/jit/mobile/flatbuffer_loader.cpp. Affected software is PyTorch up to 2.1.x; exploitation could arise from processing crafted input via the flatbuffer loader, with the documented impact being an o...

5.5CVSS6.7AI score0.00077EPSS

Exploits0References2Affected Software1

OSV•added 2024/04/17 7:15 p.m.•12 views

CVE-2024-31583

Pytorch before version v2.2.0 was discovered to contain a use-after-free vulnerability in torch/csrc/jit/mobile/interpreter.cpp...

7.8CVSS7.6AI score

Exploits0References3

NVD•added 2024/04/17 7:15 p.m.•15 views

CVE-2024-31583

Pytorch before version v2.2.0 was discovered to contain a use-after-free vulnerability in torch/csrc/jit/mobile/interpreter.cpp...

7.8CVSS6.9AI score0.00049EPSS

Exploits0References3

UbuntuCve•added 2024/04/17 7:15 p.m.•30 views

CVE-2024-31580

PyTorch before v2.2.0 was discovered to contain a heap buffer overflow vulnerability in the component /runtime/varargfunctions.cpp. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted input...

4CVSS6AI score0.00038EPSS

Exploits0References3

UbuntuCve•added 2024/04/17 7:15 p.m.•15 views

CVE-2024-31583

Pytorch before version v2.2.0 was discovered to contain a use-after-free vulnerability in torch/csrc/jit/mobile/interpreter.cpp...

7.8CVSS7.1AI score0.00049EPSS

Exploits0References4

CVE•added 2024/04/17 12:0 a.m.•62 views

CVE-2024-31583

CVE-2024-31583 affects PyTorch due to a use-after-free flaw in torch/csrc/jit/mobile/interpreter.cpp. Affected versions: PyTorch prior to 2.2.0; the issue enables denial of service when a victim opens crafted content. Exploitation details are not provided beyond the vulnerability description in t...

7.8CVSS7.1AI score0.00049EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2024/04/17 12:0 a.m.•16 views

CVE-2024-31583

Pytorch before version v2.2.0 was discovered to contain a use-after-free vulnerability in torch/csrc/jit/mobile/interpreter.cpp...

7.2AI score0.00049EPSS

Exploits0References3

Cvelist•added 2024/04/17 12:0 a.m.•17 views

CVE-2024-31583

Pytorch before version v2.2.0 was discovered to contain a use-after-free vulnerability in torch/csrc/jit/mobile/interpreter.cpp...

7.2AI score0.00049EPSS

Exploits0References3