CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Trellix•added 2026/04/07 12:0 a.m.•5 views

Masjesu Rising: The Commercial IoT Botnet Built for Stealth, DDoS, and IoT Evasion

Masjesu Rising: The Commercial IoT Botnet Built for Stealth, DDoS, and IoT Evasion By Mohideen Abdul Khader F · April 7, 2026 Botnet overview The Masjesu botnet, a sophisticated, commercially-run Internet of Things IoT threat, has been operational and evolving since early 2023, continuing into...

5.9AI score

GithubExploit•added 2026/03/15 12:14 a.m.•204 views

czeview-meari-firmware

CZeView / Meari Camera — Root & Firmware Research Reverse eng...

6AI score

RedhatCVE•added 2026/01/27 3:23 p.m.•3 views

CVE-2025-59095

The program libraries DLL and binaries used by exos 9300 contain multiple hard-coded secrets. One notable example is the function "EncryptAndDecrypt" in the library Kaba.EXOS.common.dll. This algorithm uses a simple XOR encryption technique combined with a cryptographic key cryptoKey to transform...

NVD•added 2026/01/26 10:16 a.m.•4 views

Exploits0References1

CVE-2025-59095

6.8CVSS0.00014EPSS

EUVD•added 2026/01/26 10:4 a.m.•4 views

EUVD-2025-206357

ATTACKERKB•added 2026/01/26 10:4 a.m.•3 views

CVE-2025-59095

Exploits0References4Affected Software1

Vulnrichment•added 2026/01/26 10:4 a.m.•3 views

CVE-2025-59095 Hard-coded Key for PIN Encryption in dormakaba Kaba exos 9300

CVE•added 2026/01/26 10:4 a.m.•9 views

CVE-2025-59095

CVE-2025-59095 affects dormakaba Kaba exos 9300 software. Public descriptions in multiple sources indicate that DLLs/binaries (notably Kaba.EXOS.common.dll) use a hard-coded, static cryptoKey with a simple XOR-based encrypt/decrypt routine to process user PINs before storing them in MSSQL. The ro...

Positive Technologies•added 2026/01/26 12:0 a.m.•6 views

PT-2026-4745

EUVD•added 2025/10/07 12:30 a.m.•1 views

Exploits0References4

EUVD-2004-0836

Malware in sbrugna...

2.1CVSS6.4AI score0.0004EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-18178

Malware in sbrugna...

7.5CVSS7.5AI score0.00158EPSS

Exploits1References4

EUVD•added 2025/10/07 12:30 a.m.•7 views

EUVD-2010-1214

Malware in sbrugna...

7.6CVSS6.4AI score0.0216EPSS

Exploits1References5

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-34887

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00059EPSS

Exploits0References1

Gitee•added 2025/09/13 1:28 a.m.•154 views

charlotte

This is a C++ shellcode launcher, fully undetected as of May 13th, 2021. It dynamically invokes Windows API functions, XOR encrypts shellcode and function names, and uses random XOR keys and variables per run. The code is designed to be stealthy and evade detection. The code is written in C++ and...

7.5AI score

Securelist•added 2023/06/21 10:0 a.m.•28 views

Dissecting TriangleDB, a Triangulation spyware implant

Over the years, there have been multiple cases when iOS devices were infected with targeted spyware such as Pegasus, Predator, Reign and others. Often, the process of infecting a device involves launching a chain of different exploits, e.g. for escaping the iMessage sandbox while processing a...

7AI score

Securelist•added 2023/05/17 10:0 a.m.•24 views

Minas – on the way to complexity

Sometimes when investigating an infection and focusing on a targeted attack, we come across something we were not expecting. The case described below is one such occurrence. In June 2022, we found a suspicious shellcode running in the memory of a system process. We decided to dig deeper and...

7.3AI score

0day.today•added 2023/04/05 12:0 a.m.•224 views

Linux/x86_64 - bash Shellcode with xor encoding Shellcode (71 bytes)

Exploit Title: Linux/x8664 - bash shellcode with xor encoding Date: 05/02/2023 Exploit Author: Jeenika Anadani Contact: https://twitter.com/cyberjeeni Category: Shellcode Architectue: Linux x8664 Shellcode Length: 71 Bytes ----------------------- section .data section .text global start start: ;...

7.4AI score