CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

F5 Networks•added 2026/02/04 1:17 a.m.•11 views

K000159879: MySQL vulnerability CVE-2026-21929

Security Advisory Description Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Parser. Supported versions that are affected are 9.0.0-9.5.0. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL...

5.3CVSS5AI score0.00268EPSS

CNVD•added 2026/01/30 12:0 a.m.•2 views

Unspecified Vulnerability in Oracle MySQL (CNVD-2026-16631)

Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A security vulnerability exists in Oracle MySQL for MySQL Server versions 9.0.0 through 9.5.0, which can be exploited by attackers to cause a denial ...

6.5CVSS5.8AI score0.00317EPSS

CNVD•added 2026/01/30 12:0 a.m.•3 views

Unspecified Vulnerability in Oracle MySQL (CNVD-2026-16628)

2.7CVSS5.8AI score0.00305EPSS

EUVD•added 2026/01/21 12:31 a.m.•5 views

EUVD-2026-3560

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 9.0.0-9.5.0. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks o...

6.5CVSS4.9AI score0.00317EPSS

OSV•added 2026/01/20 10:15 p.m.•3 views

UBUNTU-CVE-2026-21952

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Parser. Supported versions that are affected are 9.0.0-9.5.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of...

4.9CVSS5.8AI score0.00337EPSS

Exploits0References3

CNNVD•added 2026/01/20 12:0 a.m.•4 views

Oracle MySQL 安全漏洞

Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A security vulnerability in Oracle MySQL's MySQL Server versions 8.0.0 through 8.0.44, 8.4.0 through 8.4.7, and 9.0.0 through 9.5.0 can be exploited ...

6.5CVSS7AI score0.00257EPSS

Tenable Nessus•added 2025/09/02 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2023-35939

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GLPI is a free asset and IT management software package. Starting in version 9.5.0 and prior to version 10.0.8, an incorrect rights check on a on a file...

8.1CVSS7.4AI score0.00477EPSS

CVE•added 2025/07/29 5:39 p.m.•27 views

CVE-2025-27514

GLPI CVE-2025-27514 affects GLPI versions 9.5.0–10.0.18. A malicious payload can trigger a stored XSS on the project’s Kanban, when processed by the application. Root cause described as a stored XSS vulnerability in the Kanban component; exploitation details are not expanded beyond this descripti...

5.4CVSS5.6AI score0.00183EPSS

Exploits0References2Affected Software1

CNNVD•added 2024/12/09 12:0 a.m.•4 views

Dell PowerScale OneFS 安全漏洞

Dell PowerScale OneFS is a proprietary operating system developed by Dell for its PowerScale horizontally scalable NAS network attached storage solution. Dell PowerScale OneFS suffers from an incorrectly specified parameter vulnerability that could be exploited by an attacker to cause an...

6.5CVSS6.4AI score0.00311EPSS

Positive Technologies•added 2024/11/06 12:0 a.m.•4 views

PT-2024-7682 · Glpi +1 · Glpi +1

Name of the Vulnerable Software and Affected Versions: GLPI versions 9.5.0 through 10.0.16 Description: The issue is related to incorrect session management in the GLPI system, which can allow a remote attacker to gain full access to the application by intercepting a session. An unauthenticated...

9.8CVSS9.6AI score0.86182EPSS

Exploits9References79

OSV•added 2024/03/28 7:15 p.m.•6 views

CVE-2024-25963

Dell PowerScale OneFS, versions 8.2.2.x through 9.5.0.x contains a use of a broken cryptographic algorithm vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to information disclosure...

7.5CVSS5.8AI score0.0032EPSS

NVD•added 2024/03/28 7:15 p.m.•17 views

CVE-2024-25954

Dell PowerScale OneFS, versions 9.5.0.x through 9.7.0.x, contain an insufficient session expiration vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to denial of service...

7.5CVSS5.3AI score0.00586EPSS

Positive Technologies•added 2023/11/02 12:0 a.m.•4 views

PT-2023-28685 · Dell · Powerscale Onefs

Name of the Vulnerable Software and Affected Versions: Dell PowerScale OneFS versions 8.2.x through 9.5.0.x Description: A denial-of-service vulnerability exists, allowing a low privilege remote attacker to potentially cause an out of memory OOM condition. Recommendations: For versions 8.2.x...

6.5CVSS6.5AI score0.00624EPSS

Exploits0References5

CNNVD•added 2023/08/29 12:0 a.m.•3 views

Dell PowerScale OneFS 安全漏洞

Dell PowerScale OneFS is an operating system from Dell USA. PowerScale OneFS operating system that provides horizontal scaling NAS. A security vulnerability exists in Dell PowerScale OneFS versions 8.2.2.x-9.5.0.x, which stems from the inclusion of incorrect privilege management, which could be...

8.8CVSS7.9AI score0.00468EPSS

Positive Technologies•added 2022/02/25 12:0 a.m.•3 views

PT-2022-17246

Name of the Vulnerable Software and Affected Versions Dynamicweb versions 9.5.0 through 9.12.7 Description The issue is related to a logic flaw that can lead to remote code execution RCE in Dynamicweb. Recommendations For Dynamicweb versions 9.5.0 through 9.12.7, at the moment, there is no...

9.8CVSS6.2AI score0.40739EPSS

Exploits0References7

Debian CVE•added 2021/04/29 12:55 a.m.•56 views

CVE-2021-25216

In BIND 9.5.0 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.11.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 - 9.17.1 of the BIND 9.17 development branch, BIND servers are vulnerable if they are running an affected version an...

9.8CVSS8.4AI score0.83406EPSS