CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

211 matches found

RedhatCVE•added 2026/05/13 8:22 p.m.•2 views

CVE-2026-34343

Heap-based buffer overflow in Windows Application Identity AppID Subsystem allows an authorized attacker to elevate privileges locally...

7.8CVSS6AI score0.00049EPSS

Exploits0References1

EUVD•added 2026/05/12 6:30 p.m.•4 views

EUVD-2026-29602

Heap-based buffer overflow in Windows Application Identity AppID Subsystem allows an authorized attacker to elevate privileges locally...

7.8CVSS5.9AI score0.00049EPSS

Exploits0References2

Vulnrichment•added 2026/05/12 4:58 p.m.•2 views

CVE-2026-34343 Windows Application Identity (AppID) Subsystem Elevation of Privilege Vulnerability

...

7.8CVSS5.8AI score0.00049EPSS

Exploits0References1

Hewlett-Packard•added 2026/03/13 12:0 a.m.•3 views

HP Hotkey UWP Service – Escalation of Privilege

A potential security vulnerability has been identified in the HP Hotkey UWP Service, which might allow escalation of privilege. HP is releasing mitigation for the potential vulnerability. Customers using HP Programmable Key are recommended to update HP Hotkey Support. HP has identified affected...

5.7AI score

Exploits0Affected Software195

Vulnrichment•added 2026/02/25 2:33 a.m.•0 views

CVE-2026-27615 ADB-Explorer: UNC Path Support in ManualAdbPath Leads to Remote Code Execution (RCE)

ADB Explorer is a fluent UI for ADB on Windows. In versions prior to Beta 0.9.26022, ADB-Explorer allows the ManualAdbPath settings variable, which determines the path of the ADB binary to be executed, to be set to a Universal Naming Convention UNC path in the application's settings file. This...

8.8CVSS6.1AI score0.00027EPSS

Exploits1References1

RedhatCVE•added 2026/02/18 1:40 a.m.•1 views

CVE-2025-67905

Malwarebytes AdwCleaner before v.8.7.0 runs as Administrator and performs an insecure log file delete operation in which the target location is user-controllable, allowing a non-admin user to escalate privileges to SYSTEM via a symbolic link, a related issue to CVE-2023-28892. To exploit this, an...

8.7CVSS7.3AI score0.00911EPSS

Exploits0References1

IBM Security Bulletins•added 2026/01/22 5:8 a.m.•8 views

Security Bulletin: Vulnerabilities in Netty affects IBM watsonx Orchestrate with watsonx Assistant Cartridge

Summary Potential vulnerability in Netty has been identified that affects IBM watsonx Orchestrate with watsonx Assistant Cartridge - UAB Component. The vulnerability has been addressed. Refer to details for additional information. Vulnerability Details CVEID:CVE-2025-25193 DESCRIPTION: Netty, an...

5.5CVSS6.9AI score0.00467EPSS

Exploits1Affected Software1

RedhatCVE•added 2026/01/09 11:21 a.m.•3 views

CVE-2021-22907

An improper access control vulnerability exists in Citrix Workspace App for Windows potentially allows privilege escalation in CR versions prior to 2105 and 1912 LTSR prior to CU4...

7.8CVSS7.1AI score0.00127EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 10:10 a.m.•2 views

CVE-2019-11354

The client in Electronic Arts EA Origin 10.5.36 on Windows allows template injection in the title parameter of the Origin2 URI handler. This can be used to escape the underlying AngularJS sandbox and achieve remote code execution via an origin2://game/launch URL for QtApplication QDesktopServices...

7.8CVSS8AI score0.40735EPSS

Exploits7References1