CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

303 matches found

Github Security Blog•added 2026/05/18 7:8 p.m.•13 views

Microsoft Security Advisory CVE-2026-32175 – .NET Core Tampering Vulnerability

Executive Summary: Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 8.0, .NET 9.0, and .NET 10.0. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability. A tampering vulnerability...

4.3CVSS5.8AI score0.00032EPSS

Exploits0References5Affected Software4

CVE•added 2026/04/29 11:35 a.m.•12 views

CVE-2026-22745

The vulnerability is in the Spring Framework’s static resource resolution when serving file-system backed resources in Spring MVC/WebFlux apps on Windows. Affected component: org.springframework:spring-core. Under the conditions that the app uses Spring MVC or Spring WebFlux, serves static resour...

5.3CVSS5.4AI score0.00067EPSS

Exploits0References2Affected Software1

EUVD•added 2026/04/07 5:43 a.m.•1 views

EUVD-2025-209257

Buffer Overflow Vulnerability in JP1/IT Desktop Management 2 - Manager on Windows, JP1/IT Desktop Management 2 - Operations Director on Windows, Job Management Partner 1/IT Desktop Management 2 - Manager on Windows, JP1/IT Desktop Management - Manager on Windows, Job Management Partner 1/IT Deskt...

5.5CVSS5.9AI score0.00007EPSS

Exploits0References1

CNNVD•added 2026/03/10 12:0 a.m.•2 views

Microsoft MapUrlToZone 安全漏洞

Microsoft MapUrlToZone is a lightweight console application written in C++ by Microsoft Corporation. There is a security vulnerability present in Microsoft MapUrlToZone. Attackers can exploit this vulnerability to bypass certain features. The following products and versions are affected: Windows ...

7.5CVSS5.8AI score0.00145EPSS

Exploits0References1

ATTACKERKB•added 2026/03/03 2:28 p.m.•6 views

CVE-2026-25673

An issue was discovered in 6.0 before 6.0.3, 5.2 before 5.2.12, and 4.2 before 4.2.29. URLField.topython in Django calls urllib.parse.urlsplit, which performs NFKC normalization on Windows that is disproportionately slow for certain Unicode characters, allowing a remote attacker to cause denial o...

7.5CVSS6AI score0.0024EPSS

Exploits0References4Affected Software1

RedhatCVE•added 2026/01/09 9:27 a.m.•12 views

CVE-2023-45176

IBM App Connect Enterprise 11.0.0.1 through 11.0.0.23, 12.0.1.0 through 12.0.10.0 and IBM Integration Bus 10.1 through 10.1.0.1 are vulnerable to a denial of service for integration nodes on Windows. IBM X-Force ID: 247998...

6.2CVSS6.4AI score0.00019EPSS

Exploits0References1

RedhatCVE•added 2025/12/18 10:37 p.m.•2 views

CVE-2025-68118

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.20.0, a vulnerability exists in FreeRDP’s certificate handling code on Windows platforms. The function freerdpcertificatedatahash uses the Microsoft-specific snprintf function to format certificate cache filenames...

9.1CVSS7.2AI score0.00058EPSS

Exploits0References1

OSV•added 2025/12/17 10:16 p.m.•1 views

UBUNTU-CVE-2025-68118

9.1CVSS6.1AI score0.00058EPSS

Exploits0References4

Positive Technologies•added 2025/12/17 12:0 a.m.•3 views

PT-2025-51934

Name of the Vulnerable Software and Affected Versions FreeRDP versions prior to 3.20.0 Description FreeRDP is a free implementation of the Remote Desktop Protocol. A flaw exists in the certificate handling code on Windows platforms. The freerdp certificate data hash function utilizes the snprintf...

9.1CVSS6.7AI score0.00058EPSS

Exploits0References6

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-26393

Malware in sbrugna...

7.8CVSS7.7AI score0.00035EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•5 views

EUVD-2019-12438

Malware in sbrugna...

7.5CVSS7.7AI score0.0089EPSS

Exploits0References2