Lucene search
+L

131179 matches found

cnvd
cnvd
•added 2025/12/15 12:0 a.m.•2 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2025-30924)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS6.1AI score0.00233EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•4 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2026-00688)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS6.2AI score0.00173EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•4 views

Adobe Experience Manager Cross-Site Scripting Vulnerability

Adobe Experience Manager is an enterprise-class content management solution from Adobe. Adobe Experience Manager suffers from a cross-site scripting vulnerability that stems from a DOM-based cross-site scripting vulnerability, for which no detailed vulnerability details have been provided...

5.4CVSS6.4AI score0.00173EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•2 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2025-30929)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS6.2AI score0.00214EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•5 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2026-00689)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS6.2AI score0.00214EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•3 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2025-30926)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS6.2AI score0.00173EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•3 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2026-00681)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS6.2AI score0.00214EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•3 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2026-0013442)

Adobe Experience Manager is an enterprise-class content management solution from Adobe. A cross-site scripting vulnerability exists in Adobe Experience Manager, which stems from a stored cross-site scripting vulnerability in form fields, for which no detailed vulnerability details are currently...

5.4CVSS6.1AI score0.00214EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•4 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2026-00678)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS6AI score0.00214EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•5 views

Adobe Experience Manager cross-site scripting hole (CNVD-2026-00685)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS6.3AI score0.00173EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•2 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2025-30922)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS6AI score0.00214EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•12 views

Google Chrome Reuse After Release Vulnerability

Google Chrome is a web browser developed by Google Inc. Google Chrome suffers from a post-release reuse vulnerability that stems from post-release reuse in the password manager. An attacker can exploit this vulnerability to perform a sandbox escape...

6.1CVSS5.9AI score0.00233EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•4 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2026-0013145)

Adobe Experience Manager is an enterprise-class content management solution from Adobe. A cross-site scripting vulnerability exists in Adobe Experience Manager that originates in a form field, and no details of the vulnerability are provided at this time...

5.4CVSS6.2AI score0.00173EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•2 views

AzeoTech DAQFactory Memory Corruption Vulnerability

AzeoTech DAQFactory is a data acquisition and monitoring software developed by AzeoTech, Inc. and commonly used in industrial automation. AzeoTech DAQFactory suffers from a memory corruption vulnerability that exists when parsing a specially crafted .ctl file and can be exploited by an attacker t...

7.3CVSS7.6AI score0.00022EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•6 views

Adobe DNG Software Development Kit (SDK) Out-of-Bounds Read Vulnerability

Adobe DNG Software Development Kit SDK is a software development kit from the American company Audobee Adobe. The Adobe DNG Software Development Kit SDK contains an out-of-bounds read vulnerability that can be exploited by attackers to obtain sensitive information or cause a denial of service...

7.1CVSS5.9AI score0.00153EPSS
Exploits5References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•3 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2026-00683)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS6.2AI score0.00189EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•2 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2025-30927)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS6.2AI score0.00173EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•4 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2026-0013541)

Adobe Experience Manager is an enterprise-class content management solution from Adobe. A cross-site scripting vulnerability exists in Adobe Experience Manager, which stems from a stored cross-site scripting vulnerability in form fields, for which no detailed vulnerability details are currently...

5.4CVSS6.1AI score0.00214EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•2 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2025-30923)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS5.9AI score0.00173EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•2 views

Adobe Experience Manager Cross-Site Scripting Vulnerability (CNVD-2025-30925)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. Adobe...

5.4CVSS6.3AI score0.00214EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•3 views

AzeoTech DAQFactory Stack Buffer Overflow Vulnerability

AzeoTech DAQFactory is a data acquisition and monitoring software developed by AzeoTech, Inc. and commonly used in industrial automation. AzeoTech DAQFactory suffers from a stack buffer overflow vulnerability that originates from a stack buffer overflow when parsing a specially crafted .ctl file,...

7.3CVSS7.7AI score0.00022EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•4 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2026-00684)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS6.2AI score0.00173EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•4 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2026-00679)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS6AI score0.00214EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•6 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2026-0012948)

Adobe Experience Manager is an enterprise-class content management solution from Adobe. Adobe Experience Manager suffers from a cross-site scripting vulnerability that originates from a low-privilege attacker who can inject malicious script into form fields, no details of the vulnerability are...

5.4CVSS6.2AI score0.00214EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•4 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2026-00690)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS6.2AI score0.00173EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•3 views

AzeoTech DAQFactory Out-of-Bounds Write Vulnerability

AzeoTech DAQFactory is a data acquisition and monitoring software developed by AzeoTech, Inc. and commonly used in industrial automation. AzeoTech DAQFactory suffers from an out-of-bounds write vulnerability that originates from an out-of-bounds write to a memory buffer, which can be exploited by...

8.4CVSS7.7AI score0.00324EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•3 views

AzeoTech DAQFactory Out-of-Bounds Read Vulnerability

AzeoTech DAQFactory is a data acquisition and monitoring software developed by AzeoTech, Inc. and commonly used in industrial automation. AzeoTech DAQFactory suffers from an out-of-bounds read vulnerability that originates from out-of-bounds reading of memory buffer data, which can be exploited b...

8.4CVSS6.8AI score0.0031EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•5 views

AzeoTech DAQFactory Buffer Overflow Vulnerability

AzeoTech DAQFactory is a data acquisition and monitoring software developed by AzeoTech, Inc. and commonly used in industrial automation. AzeoTech DAQFactory suffers from a buffer overflow vulnerability that originates from accessing an uninitialized pointer and can be exploited by an attacker to...

8.4CVSS7.9AI score0.00251EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•4 views

AzeoTech DAQFactory Use After Release Vulnerability

AzeoTech DAQFactory is a data acquisition and monitoring software developed by AzeoTech, Inc. and commonly used in industrial automation. AzeoTech DAQFactory suffers from a release-after-use vulnerability that originates from a release-after-reuse vulnerability in the parsing of a specially craft...

7.3CVSS7.3AI score0.00201EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•6 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2026-0013244)

Adobe Experience Manager is an enterprise-class content management solution from Adobe. Adobe Experience Manager suffers from a cross-site scripting vulnerability that originates from a low-privilege attacker who can inject malicious script into form fields, no details of the vulnerability are...

5.4CVSS6.2AI score0.00214EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•4 views

Adobe ColdFusion Improper Access Control Vulnerability

Adobe ColdFusion is a dynamic Web server platform and application development framework maintained by Adobe for rapidly building and deploying data-driven dynamic Web sites, Web applications, and enterprise-class services. An improper access control vulnerability exists in Adobe ColdFusion, which...

5.6CVSS5.9AI score0.00111EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•5 views

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2026-0013046)

Adobe Experience Manager is an enterprise-class content management solution from Adobe. Adobe Experience Manager suffers from a cross-site scripting vulnerability that stems from a DOM-based cross-site scripting vulnerability, for which no detailed vulnerability details have been provided...

9.3CVSS6.4AI score0.00542EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•5 views

NVIDIA NVTabular Deserialization Vulnerability

NVIDIA NVTabular is a component of a deep learning recommender system framework from NVIDIA, USA. A deserialization vulnerability exists in NVIDIA NVTabular, which arises from unsafe deserialization of serialized data received from users by the Workflow component and can be exploited by an attack...

8.8CVSS6AI score0.00561EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•4 views

Siemens RUGGEDCOM ROX II Command Injection Vulnerability

Siemens RUGGEDCOM ROX II is an operating system for industrial applications from Siemens, Germany. Siemens RUGGEDCOM ROX II suffers from a command injection vulnerability that is caused by a flaw in the dynamic DNS configuration process. An attacker can exploit the vulnerability to execute...

8.8CVSS8.4AI score0.00405EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•3 views

Siemens RUGGEDCOM ROX II Command Injection Vulnerability (CNVD-2026-00016)

Siemens RUGGEDCOM ROX II is an operating system for industrial applications from Siemens, Germany. Siemens RUGGEDCOM ROX II suffers from a command injection vulnerability that is caused by insufficient authentication during the installation and loading of certain configuration files. An attacker...

8.6CVSS8.5AI score0.00484EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•4 views

Rockwell Automation FactoryTalk DataMosaix Private Cloud SQL Injection Vulnerability

Rockwell Automation FactoryTalk DataMosaix Private Cloud is an industrial data platform product from Rockwell Automation USA. A SQL injection vulnerability exists in Rockwell Automation FactoryTalk DataMosaix Private Cloud, which can be exploited by an attacker to perform sensitive database...

8.7CVSS5.9AI score0.0038EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•3 views

Siemens RUGGEDCOM ROX II Injection Vulnerability (CNVD-2026-00020)

Siemens RUGGEDCOM ROX II is an operating system for industrial applications from Siemens, Germany. Siemens RUGGEDCOM ROX II suffers from an injection vulnerability that stems from insufficient validation of SCEP client fields, which can be exploited by an attacker to cause execution of arbitrary...

8.6CVSS7.7AI score0.00381EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•4 views

Adobe DNG Software Development Kit (SDK) Denial of Service Vulnerability

Adobe DNG Software Development Kit SDK is a software development kit from the American company Audobee Adobe. A denial of service vulnerability exists in Adobe DNG Software Development Kit SDK, which can be exploited by attackers to cause a denial of service...

5.5CVSS5.9AI score0.00144EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•4 views

Adobe DNG Software Development Kit (SDK) Input Validation Error Vulnerability

Adobe DNG Software Development Kit SDK is a software development kit from the American company Audobee Adobe. An input validation error vulnerability exists in Adobe DNG Software Development Kit SDK, which can be exploited by an attacker to execute arbitrary code on a system or cause an applicati...

7.8CVSS6.3AI score0.00175EPSS
Exploits4References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•3 views

Adobe Creative Cloud Desktop Application Denial of Service Vulnerability (CNVD-2026-10898)

Adobe Creative Cloud Desktop Application is a suite of applications for managing applications and services in the Creative Cloud Membership Management Center from Adobe USA. The program supports synchronizing and sharing files, managing fonts, and accessing asset libraries for commercial...

5.5CVSS5.7AI score0.00162EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•3 views

Adobe DNG Software Development Kit (SDK) Heap Buffer Overflow Vulnerability

Adobe DNG Software Development Kit SDK is a software development kit from the American company Audobee Adobe. The Adobe DNG Software Development Kit SDK contains a heap buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code on a system or cause an application...

7.1CVSS6.5AI score0.00168EPSS
Exploits2References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•3 views

Siemens SIMATIC CN 4100 Access Control Error Vulnerability

The Siemens SIMATIC CN 4100 is a communication node from Siemens, Germany. The Siemens SIMATIC CN 4100 suffers from an Access Control Error vulnerability that originates when the USB port allows an unauthenticated connection, which can be exploited by an attacker to cause a denial of service...

5.1CVSS6.9AI score0.00186EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•3 views

Adobe ColdFusion XML External Entity References Improperly Restricted Vulnerability (CNVD-2026-0494441)

Adobe ColdFusion is a dynamic Web server platform and application development framework maintained by Adobe for rapidly building and deploying data-driven dynamic Web sites, Web applications, and enterprise-class services. Adobe ColdFusion suffers from an improperly restricted XML external entity...

8.6CVSS6AI score0.00474EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•6 views

Adobe ColdFusion XML External Entity References Improperly Restricted Vulnerability

Adobe ColdFusion is a dynamic Web server platform and application development framework maintained by Adobe for rapidly building and deploying data-driven dynamic Web sites, Web applications, and enterprise-class services. Adobe ColdFusion suffers from an improperly restricted XML external entity...

6.2CVSS6AI score0.00429EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•3 views

Adobe ColdFusion XML External Entity References Improperly Restricted Vulnerability (CNVD-2026-0494343)

Adobe ColdFusion is a dynamic Web server platform and application development framework maintained by Adobe for rapidly building and deploying data-driven dynamic Web sites, Web applications, and enterprise-class services. Adobe ColdFusion suffers from an improperly restricted XML external entity...

8.6CVSS6AI score0.00468EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•6 views

Siemens RUGGEDCOM ROX II Injection Vulnerability (CNVD-2026-00019)

Siemens RUGGEDCOM ROX II is an operating system for industrial applications from Siemens, Germany. Siemens RUGGEDCOM ROX II suffers from an injection vulnerability that can be exploited by an attacker to cause execution of arbitrary code...

8.6CVSS7.7AI score0.00596EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•3 views

Siemens Gridscale X Prepay Security Bypass Vulnerability

Siemens Gridscale X Prepay is an energy prepayment and customer management system from Siemens, Germany. A security bypass vulnerability exists in Siemens Gridscale X Prepay, which stems from authentication token replay, and can be exploited by an attacker to cause session hijacking...

6.3CVSS7.1AI score0.00269EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•5 views

Siemens SIMATIC CN 4100 Command Injection Vulnerability

The Siemens SIMATIC CN 4100 is a communication node from Siemens, Germany. The Siemens SIMATIC CN 4100 suffers from a command injection vulnerability that stems from insufficient validation of REST API input parameters, which can be exploited by an attacker to cause execution of arbitrary code...

8.8CVSS7.9AI score0.00513EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•4 views

Adobe ColdFusion Improper Input Validation Vulnerability

Adobe ColdFusion is a dynamic Web server platform and application development framework maintained by Adobe for rapidly building and deploying data-driven dynamic Web sites, Web applications, and enterprise-class services. An improper input validation vulnerability exists in Adobe ColdFusion, whi...

6.2CVSS6AI score0.00668EPSS
Exploits0References1
cnvd
cnvd
•added 2025/12/15 12:0 a.m.•4 views

Siemens Gridscale X Prepay Information Disclosure Vulnerability

Siemens Gridscale X Prepay is an energy prepayment and customer management system from Siemens, Germany. Siemens Gridscale X Prepay suffers from an information disclosure vulnerability that stems from a distinguishable response, which can be exploited by an attacker to cause user enumeration...

6.9CVSS6.3AI score0.00393EPSS
Exploits0References1
Total number of security vulnerabilities131179