CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

react-native-bottom-tabs is a library of Native Bottom Tabs for React Native. In versions 0.9.2 and below, the github/workflows/release-canary.yml GitHub Actions repository workflow improperly used the pullrequesttarget event trigger, which allowed for untrusted code from a forked pull request to...

9.1CVSS6.6AI score0.0035EPSS

Exploits0References1

ICS•added 2025/06/24 12:0 a.m.•4 views

Hitachi Energy Relion 670/650 and SAM600-IO Series

SUMMARY Hitachi Energy is aware of a vulnerability that affects the Relion 670/650 and SAM600-IO series IED device versions that are listed in this document. An authenticated attacker successfully exploiting this vulnerability via FTP access can cause the device to reboot due to improper disk...

7.1CVSS5.7AI score0.00318EPSS

Exploits0References9

RedhatCVE•added 2025/05/23 6:22 a.m.•6 views

CVE-2024-31837

DMitry Deepmagic Information Gathering Tool 1.3a has a format-string vulnerability, with a threat model similar to CVE-2017-7938...

9.8CVSS6.7AI score0.01894EPSS

Exploits5References1

OpenVAS•added 2025/03/17 12:0 a.m.•7 views

Huawei EulerOS: Security Advisory for subversion (EulerOS-SA-2025-1285)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS3.7AI score0.05806EPSS

Exploits1References2

CVE•added 2025/03/08 8:22 a.m.•64 views

CVE-2024-10321

CVE-2024-10321 affects the WordPress plugin All-in-One Addons for Elementor – WidgetKit (WidgetKit for Elementor) version

4.3CVSS7.2AI score0.0011EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2025/03/03 6:38 p.m.•9 views

CVE-2025-1889 picklescan - Security scanning bypass via non-standard file extensions

picklescan before 0.0.22 only considers standard pickle file extensions in the scope for its vulnerability scan. An attacker could craft a malicious model that uses Pickle and include a malicious pickle file with a non-standard file extension. Because the malicious pickle file inclusion is not...

5.3CVSS6.4AI score0.00057EPSS

Exploits2References2

Qualys Blog•added 2023/09/04 2:0 p.m.•133 views

Qualys Top 20 Most Exploited Vulnerabilities

The earlier blog posts showcased an overview of the vulnerability threat landscape that is either remotely exploited or most targeted by attackers. A quick recap – We focused on high-risk vulnerabilities that can be remotely exploited with or without authentication, and with the view on the time ...

10CVSS10.8AI score0.94473EPSS

Exploits988

Qualys Blog•added 2023/07/18 1:38 p.m.•109 views

Part 2: An In-Depth Look at the Latest Vulnerability Threat Landscape (Attackers’ Edition)

The previous blog from this three-part series showcased an overview of the vulnerability threat landscape. To summarize quickly, it illustrated the popular methods of exploiting vulnerabilities and the tactical techniques employed by threat actors, malware, and ransomware groups. Perhaps more...

10CVSS9.3AI score0.94462EPSS

Exploits733

Qualys Blog•added 2022/10/10 2:32 p.m.•130 views

In-Depth Look Into Data-Driven Science Behind Qualys TruRisk

Vulnerability Management is a foundational component of any cybersecurity program for the implementation of appropriate security controls and the management of cyber risk. Earlier this year Qualys introduced the latest iteration of its vulnerability management product VMDR 2.0 with TruRisk which...

9.3CVSS9AI score0.93998EPSS

Exploits78

Positive Technologies•added 2022/09/17 12:0 a.m.•1 views

PT-2022-34393 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions 4.14 through 4.19.255 Description: The issue is related to a refcount leak in the xive get max prio function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions...

7.1AI score

Exploits0References1

Positive Technologies•added 2021/07/19 12:0 a.m.•4 views

PT-2021-21084 · Orca Hcm · Orca Hcm

Name of the Vulnerable Software and Affected Versions: Orca HCM digital learning platform affected versions not specified Description: The management page of the Orca HCM digital learning platform does not perform identity verification, allowing remote attackers to execute management functions...

9.8CVSS9.4AI score0.00692EPSS

Exploits0References5

CNVD•added 2021/04/27 12:0 a.m.•2 views

Denial of Service Vulnerability in Tenda AC11

AC11 is Shenzhen Jixiang Tengda Technology Co., Ltd. launched a special for large households to create suitable for 200 megabytes and above fiber optic home use of dual-band wireless router. A denial of service vulnerability exists in the Tenda AC11, which can be exploited by an attacker to cause...

7AI score

Exploits0

NVD•added 2010/09/03 8:0 p.m.•28 views

CVE-2010-2532

lxsession-logout in lxsession in LXDE, as used on SUSE openSUSE 11.3 and other platforms, does not lock the screen when the Suspend or Hibernate button is pressed, which might make it easier for physically proximate attackers to access an unattended laptop via a resume action. NOTE: there is no...

7.2CVSS6.1AI score0.00117EPSS

Exploits0References6

CVE•added 1976/01/01 12:0 a.m.•11 views

CVE-2025-54362

CVE-2025-54362 entry is rejected/not used and does not represent an active vulnerability.

6.7AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by