CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

70 matches found

Schneier on Security•added 2026/06/14 4:7 p.m.•23 views

Upcoming Speaking Engagements

This is a current list of where and when I am scheduled to speak: I’m giving a keynote at Cybernation 2026 in Berlin, Germany, on June 24, 2026. I’m speaking at the Potsdam Conference on National Cybersecurity at the Hasso Plattner Institut in Potsdam, Germany. The event runs June 24–25, 2026, an...

5.3AI score

Exploits0

Schneier on Security•added 2026/05/14 4:1 p.m.•8 views

Upcoming Speaking Engagements

This is a current list of where and when I am scheduled to speak: I’m giving a virtual talk on “The Security of Trust in the Age of AI,” hosted by the Financial Women’s Association of New York, at 6:00 PM ET on May 21, 2026. I’m speaking at the Potsdam Conference on National Cybersecurity at the...

5.8AI score

Exploits0

Packet Storm News•added 2026/04/03 12:0 a.m.•1 views

Vienna Assistant 1.2.542 Local Privilege Escalation

Vienna Assistant MacOS version 1.2.542 suffers from a missing validation vulnerability that allows for privilege escalation...

8.8CVSS5.9AI score0.00449EPSS

Exploits1

Vulnrichment•added 2026/03/26 10:55 a.m.•0 views

CVE-2026-24068 Missing XPC Client & NSXPC endpoint validation leads to privilege escalation in Vienna Assistant (MacOS) - Vienna Symphonic Library

The VSL privileged helper does utilize NSXPC for IPC. The implementation of the "shouldAcceptNewConnection" function, which is used by the NSXPC framework to validate if a client should be allowed to connect to the XPC listener, does not validate clients at all. This means that any process can...

5.9AI score0.00449EPSS

Exploits1References1

Cvelist•added 2026/03/26 10:55 a.m.•24 views

CVE-2026-24068 Missing XPC Client & NSXPC endpoint validation leads to privilege escalation in Vienna Assistant (MacOS) - Vienna Symphonic Library

0.00449EPSS

Exploits1References1

CNNVD•added 2026/03/26 12:0 a.m.•5 views

Vienna Symphonic Library Vienna Assistant 安全漏洞

Vienna Symphonic Library Vienna Assistant is a music sampling library download and management tool provided by Vienna Symphonic Library. There is a security vulnerability in Vienna Symphonic Library Vienna Assistant, which stems from the lack of client validation and endpoint validation. This...

8.8CVSS5.9AI score0.00449EPSS

Exploits1References1

Positive Technologies•added 2026/03/26 12:0 a.m.•7 views

PT-2026-28337

Name of the Vulnerable Software and Affected Versions Vienna Assistant affected versions not specified Description The Vienna Assistant privileged helper utilizes NSXPC for Inter-Process Communication IPC. The implementation of the shouldAcceptNewConnection function, used by the NSXPC framework t...

8.8CVSS6AI score0.00449EPSS

Exploits1References4

Snyk•added 2025/12/23 7:10 p.m.•4 views

Malicious Package

Overview @viennacancercenterportal/js is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

9.8CVSS6.8AI score

Exploits0References2

EUVD•added 2025/12/22 10:29 p.m.•3 views

EUVD-2025-204769

Malicious code in @viennacancercenterportal/js npm...

6.6AI score

Exploits0

OSSF Malicious Packages•added 2025/12/22 10:29 p.m.•6 views

Malicious code in @vienna_cancer_center_portal/js (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a76d15de3b0c984f8b9b8795e5bacb7604de14c2808edf0b4bd7f280c5d82db9 The package @viennacancercenterportal/js was found to contain malicious code. Source: ghsa-malware...

6.9AI score

Exploits0References1

OSV•added 2025/12/22 10:29 p.m.•2 views

MAL-2025-192692 Malicious code in @vienna_cancer_center_portal/js (npm)

6.8AI score

Exploits0References1

Openbugbounty•added 2024/03/25 11:17 a.m.•12 views

viennabakery.ca Cross Site Scripting vulnerability OBB-3885103

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score

Exploits0

Openbugbounty•added 2024/03/19 12:49 a.m.•7 views

events.wien.info Cross Site Scripting vulnerability OBB-3878025

6.2AI score

Exploits0

Openbugbounty•added 2023/12/12 12:6 p.m.•6 views

vienna-marathon.com Cross Site Scripting vulnerability OBB-3811168

6.2AI score

Exploits0

Openbugbounty•added 2023/09/13 6:8 a.m.•9 views

vienna-marathon.com Cross Site Scripting vulnerability OBB-3676641

6.1AI score

Exploits0

Openbugbounty•added 2023/08/24 9:47 a.m.•12 views

german-course-vienna.com Cross Site Scripting vulnerability OBB-3614754

6.1AI score

Exploits0

Openbugbounty•added 2023/06/18 2:37 p.m.•12 views

viennaclassic.com Cross Site Scripting vulnerability OBB-3442114

6.1AI score

Exploits0

Openbugbounty•added 2023/06/12 12:41 p.m.•10 views

vienna-concert.com Cross Site Scripting vulnerability OBB-3418850

6.1AI score

Exploits0

Schneier on Security•added 2023/05/14 4:5 p.m.•9 views

Upcoming Speaking Engagements

This is a current list of where and when I am scheduled to speak: I’m speaking at IT-S Now 2023 in Vienna, Austria, on June 2, 2023 at 8:30 AM CEST. The list is maintained on this page...

6.9AI score

Exploits0

Openbugbounty•added 2023/05/13 7:3 p.m.•11 views

vienna-congress.at Cross Site Scripting vulnerability OBB-3331308

6.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by