CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

RedhatCVE•added 2026/01/22 10:7 p.m.•10 views

CVE-2026-23526

CVAT is an open source interactive video and image annotation tool for computer vision. In versions 1.0.0 through 2.54.0, users that have the staff status may freely change their permissions, including giving themselves superuser status and joining the admin group, which gives them full access to...

8.8CVSS5.6AI score0.00255EPSS

Exploits0References1

EUVD•added 2026/01/21 9:38 p.m.•5 views

EUVD-2026-3774

CVAT is an open source interactive video and image annotation tool for computer vision. In versions 2.2.0 through 2.54.0, an attacker is able to execute arbitrary JavaScript in a victim user's CVAT UI session, provided that they are able to create a maliciously crafted label in a CVAT task or...

8.6CVSS5.9AI score0.00142EPSS

Exploits0References2

EUVD•added 2025/11/07 11:21 p.m.•5 views

EUVD-2025-38341

CVAT is an open source interactive video and image annotation tool for computer vision. In versions 2.4.0 through 2.48.1, a malicious CVAT user with at least the User global role may create files in the root of the mounted file share, or overwrite existing files. If no file share is mounted, the...

5.3CVSS6.2AI score0.00322EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•6 views

EUVD-2025-23169

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00253EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2024-42257

Malicious code in bioql PyPI...

6.2CVSS6.6AI score0.00276EPSS

Exploits0References2

Packet Storm News•added 2025/06/21 12:0 a.m.•3 views

Efficient Retail Video Annotation: a Robust Key Frame Generation Approach for Product and Customer Interaction Analysis

Accurate video annotation plays a vital role in modern retail applications, including customer behavior analysis, product interaction detection, and in-store activity recognition. However, conventional annotation methods heavily rely on time-consuming manual labeling by human annotators,...

6.9AI score

Exploits0

BDU FSTEC•added 2021/12/01 12:0 a.m.•2 views

The vulnerability of the cloud-based video conversion, annotation, and format conversion application for Adobe Prelude involves a pointer manipulation issue, which allows an attacker to cause a service failure.

The vulnerability of the cloud-based application for video digitization, annotation, and format conversion in Adobe Prelude is related to the handling of a null pointer. Exploiting this vulnerability could allow an attacker to cause service interruptions remotely...

7.1CVSS6.5AI score0.01186EPSS

Exploits0References3Affected Software1

BDU FSTEC•added 2021/12/01 12:0 a.m.•4 views

The vulnerability of the cloud-based video conversion, annotation, and format conversion application for Adobe Prelude involves writing data beyond the buffer boundaries into memory, allowing an attacker to execute arbitrary code.

The vulnerability of the cloud-based application for video digitization, annotation, and format conversion in Adobe Prelude involves writing data beyond the buffer boundaries into memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

7.8CVSS7.7AI score0.01995EPSS

Exploits0References4Affected Software1

BDU FSTEC•added 2021/11/25 12:0 a.m.•4 views

7.8CVSS7.7AI score0.01718EPSS

Exploits0References4Affected Software1

OSV•added 2018/02/27 5:29 a.m.•3 views

CVE-2018-4902

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability is an instance of a use after free vulnerability in the rendering engine. The vulnerability is triggered by a crafted P...

8.8CVSS6AI score0.12709EPSS

Exploits0References3