CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

An issue has been discovered in GitLab CE/EE affecting all versions from 17.9 before 18.0.5, 18.1 before 18.1.3, and 18.2 before 18.2.1 that could have allowed an unauthorized user to access custom service desk email addresses...

4.3CVSS0.00071EPSS

Exploits0References2

Positive Technologies•added 2025/07/04 12:0 a.m.•0 views

PT-2025-27853 · WordPress · Doccheck Login

Name of the Vulnerable Software and Affected Versions: DocCheck Login plugin for WordPress versions up to, and including, 1.1.5 Description: The issue allows unauthorized post access due to the plugin redirecting a user to login on a password-protected post after the page has loaded, making it...

5.3CVSS6.4AI score0.00213EPSS

Exploits0References6

Vulnrichment•added 2025/07/01 11:13 a.m.•3 views

CVE-2025-49480 Out-of-bounds access in lte-telephony

Out-of-bounds access in ASR180x 、ASR190x in lte-telephony, This vulnerability is associated with program files apps/lzma/src/LzmaEnc.c. This issue affects FalconLinux、Kestrel、LapwingLinux: before v1536...

7.4CVSS7.2AI score0.00333EPSS

Exploits0References1

OSV•added 2025/06/20 3:30 p.m.•1 views

GHSA-4578-6GJH-F2JM Mattermost allows an unauthorized Guest user access to Playbook

Mattermost versions 10.5.x = 10.5.5, 9.11.x = 9.11.15, 10.8.x = 10.8.0, 10.7.x = 10.7.2, 10.6.x = 10.6.5 fail to properly retrieve requestorInfo from playbooks handler for guest users which allows an attacker access to the playbook run...

4.3CVSS7.1AI score0.00183EPSS

Exploits0References3

RedhatCVE•added 2025/05/23 4:33 a.m.•5 views

CVE-2023-5995

An issue has been discovered in GitLab EE affecting all versions starting from 16.2 before 16.4.3, all versions starting from 16.5 before 16.5.3, all versions starting from 16.6 before 16.6.1. It was possible for an attacker to abuse the policy bot to gain access to internal projects...

7.5CVSS6.7AI score0.00039EPSS

Exploits0

Positive Technologies•added 2025/05/12 12:0 a.m.•2 views

PT-2025-20714 · Schweitzer Engineering Laboratories · Sel Blueframe Os

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue allows users who are required to change their password to still access system information before actually changing their password. Recommendations: At the moment, there is no...

4.3CVSS6.3AI score0.00168EPSS

Exploits0References5

Positive Technologies•added 2025/05/08 12:0 a.m.•1 views

PT-2025-20415 · My Company · Test

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue allows a bad person to break into the system. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability...

10CVSS6.1AI score

Exploits0References7

CNVD•added 2025/04/28 12:0 a.m.•1 views

Google Android Information Disclosure Vulnerability

Google Android is a Linux-based operating system from the American company Google. Google Android suffers from an information disclosure vulnerability that stems from a lack of permission checking to access media content belonging to other users, which can be exploited by an attacker to obtain...

5.5CVSS5.6AI score0.00019EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by