CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

Positive Technologies•added 2026/05/26 12:0 a.m.•6 views

PT-2026-47000

GnuTLS 3.6.x before 3.6.14 uses incorrect cryptography for encrypting a session ticket a loss of confidentiality in TLS 1.2, and an authentication bypass in TLS 1.3. The earliest affected version is 3.6.4 2018-09-24 because of an error in a 2018-09-18 commit. Until the first key rotation, the TLS...

5.5AI score

Exploits0References11

CVE•added 2025/10/31 9:2 a.m.•24 views

CVE-2025-30189

CVE-2025-30189 affects Open-Xchange OX Dovecot Pro (and dovecot-based components) where enabling authentication caching causes incorrect caching: multiple users sharing the same cache key leads to the cached entry being reused for subsequent logins. The issue is described in multiple advisories (...

7.4CVSS6.2AI score0.00568EPSS

Exploits0References3

SUSE CVE•added 2023/02/15 4:44 a.m.•3 views

SUSE CVE-2017-9725

In all Qualcomm products with Android releases from CAF using the Linux kernel, during DMA allocation, due to wrong data type of size, allocation size gets truncated which makes allocation succeed when it should fail...

5.5CVSS7.7AI score0.01231EPSS

Exploits0References3

SUSE CVE•added 2023/02/15 4:32 a.m.•2 views

SUSE CVE-2018-5156

A vulnerability can occur when capturing a media stream when the media source type is changed as the capture is occurring. This can result in stream data being cast to the wrong type causing a potentially exploitable crash. This vulnerability affects Thunderbird 60, Firefox ESR 60.1, Firefox ESR...

8.8CVSS9.3AI score0.03755EPSS

Exploits0References15

Code423n4•added 2022/10/12 12:0 a.m.•7 views

Set admin emit event with wrong data

Lines of code Vulnerability details Impact emit AdminUpdatedadmin, newAdmin; will emit AdminUpdated with same values. Proof of Concept Tools Used Code analytics Recommended Mitigation Steps store address of admin before --- The text was updated successfully, but these errors were encountered: All...

7AI score

Exploits0

CNNVD•added 2022/09/14 12:0 a.m.•3 views

Hitachi Energy MicroSCADA X SYS600 输入验证错误漏洞

Hitachi Energy MicroSCADA X SYS600 is a SCADA product from Hitachi Japan. It ensures optimal control and reliable operation of your switching station through seamless integration and connectivity between different devices and systems. A security vulnerability in Hitachi Energy MicroSCADA X SYS600...

7.5CVSS7.3AI score0.00654EPSS

Exploits0References3

CNNVD•added 2021/07/20 12:0 a.m.•5 views

libass 缓冲区错误漏洞

libass is a subtitle renderer based on the ASS/SSA format by an individual developer. A security vulnerability exists in libass that stems from a heap-based buffer overflow because the wrong integer data type is used for subtraction...

7.8CVSS7.5AI score0.01075EPSS

Exploits0References8

NVD•added 2020/09/09 7:15 a.m.•13 views

CVE-2020-11135

u'Reachable assertion when wrong data size is returned by parser for ape clips' in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in APQ8098, Kamorta, MSM8917, MSM8953, Nicobar, QCM2150, QCS605, QM215, Rennell, SA6155P, SA8155P, Saipan, SDM429, SDM439,...

7.8CVSS0.00688EPSS

Exploits0References1