Lucene search
K

131179 matches found

CNVD
CNVD
•added 2026/04/23 12:0 a.m.•5 views

IBM Guardium Data Protection Web UI Cross-Site Scripting Vulnerability

IBM Guardium Data Protection is a data security and activity monitoring platform for database auditing, vulnerability assessment and compliance management. A cross-site scripting vulnerability exists in IBM Guardium Data Protection. The vulnerability stems from the failure of the Web UI to proper...

4.8CVSS5AI score0.00185EPSS
Exploits0
CNVD
CNVD
•added 2026/04/22 12:0 a.m.•14 views

Oracle VM VirtualBox Core Component Elevation of Privilege Vulnerability (CNVD-2026-18427)

Oracle VM VirtualBox is a desktop virtualization software developed by Oracle for running multiple operating systems on a single host. An elevation of privilege vulnerability exists in Oracle VM VirtualBox. The vulnerability stems from a failure of the Core component to properly handle privilege...

7.5CVSS7.7AI score0.00107EPSS
Exploits0
CNVD
CNVD
•added 2026/04/22 12:0 a.m.•4 views

Oracle MySQL Server InnoDB Denial of Service Vulnerability (CNVD-2026-18432)

Oracle MySQL Server is an open source relational database management system with an InnoDB component that provides transaction-safe storage engine functionality. A denial of service vulnerability exists in Oracle MySQL Server. The vulnerability stems from the InnoDB component failing to properly...

4.9CVSS7.4AI score0.00242EPSS
Exploits0
CNVD
CNVD
•added 2026/04/22 12:0 a.m.•4 views

Oracle MySQL Server Optimizer Denial of Service Vulnerability (CNVD-2026-18428)

Oracle MySQL Server is an open source relational database management system for storing, managing and retrieving data. A denial of service vulnerability exists in Oracle MySQL Server. The vulnerability stems from a failure of the Server: Optimizer component to properly handle a specific request a...

4.9CVSS7.4AI score0.00242EPSS
Exploits0
CNVD
CNVD
•added 2026/04/22 12:0 a.m.•6 views

Oracle MySQL Server InnoDB Component Denial of Service Vulnerability (CNVD-2026-18430)

Oracle MySQL Server is an open source relational database management system with an InnoDB component that provides transaction-safe storage engine functionality. A denial of service vulnerability exists in the InnoDB component of Oracle MySQL Server. The vulnerability stems from a flaw in the...

4.9CVSS7.4AI score0.00242EPSS
Exploits0
CNVD
CNVD
•added 2026/04/22 12:0 a.m.•8 views

Oracle MySQL Server InnoDB Component Denial of Service Vulnerability (CNVD-2026-18431)

Oracle MySQL Server is an open source relational database management system with an InnoDB component that provides transaction-safe storage engine functionality. A denial of service vulnerability exists in the InnoDB component of Oracle MySQL Server. The vulnerability stems from an internal...

4.9CVSS7.4AI score0.00242EPSS
Exploits0
CNVD
CNVD
•added 2026/04/22 12:0 a.m.•4 views

Oracle MySQL Server InnoDB Component Denial of Service Vulnerability (CNVD-2026-18576)

Oracle MySQL Server is an open source relational database management system with an InnoDB component that provides transaction-safe storage engine functionality. A denial of service vulnerability exists in the InnoDB component of Oracle MySQL Server. The vulnerability stems from a flaw in the...

4.9CVSS7.4AI score0.00323EPSS
Exploits0
CNVD
CNVD
•added 2026/04/22 12:0 a.m.•6 views

Oracle MySQL Server Optimizer Denial of Service Vulnerability (CNVD-2026-18578)

Oracle MySQL Server is an open source relational database management system for storing, managing and retrieving data. A denial of service vulnerability exists in Oracle MySQL Server. The vulnerability stems from a failure of the Server: Optimizer component to properly handle a specific request a...

4.9CVSS7.4AI score0.00323EPSS
Exploits0
CNVD
CNVD
•added 2026/04/22 12:0 a.m.•11 views

Oracle MySQL Server GIS Component Denial of Service Vulnerability

Oracle MySQL Server is an open source relational database management system with a GIS component that provides geospatial data processing capabilities. A denial of service vulnerability exists in Oracle MySQL Server. The vulnerability stems from a failure of the GIS component to properly handle a...

4.9CVSS7.4AI score0.00299EPSS
Exploits0
CNVD
CNVD
•added 2026/04/22 12:0 a.m.•4 views

Oracle MySQL Shell Core Client Denial of Service Vulnerability (CNVD-2026-18573)

Oracle MySQL Shell is a command line tool for managing and operating MySQL databases. A denial of service vulnerability exists in Oracle MySQL Shell. The vulnerability stems from the Core Client component failing to properly handle certain inputs and can be exploited by an attacker to cause MySQL...

5CVSS7.6AI score0.00153EPSS
Exploits0
CNVD
CNVD
•added 2026/04/22 12:0 a.m.•5 views

Oracle MySQL Server Partition Component Denial of Service Vulnerability

Oracle MySQL Server is an open source relational database management system that provides data storage, querying and management capabilities. A denial of service vulnerability exists in Oracle MySQL Server. The vulnerability stems from the Server:Partition component failing to properly handle a...

4.9CVSS7.5AI score0.00299EPSS
Exploits0
CNVD
CNVD
•added 2026/04/22 12:0 a.m.•4 views

Oracle MySQL Shell Core Client Denial of Service Vulnerability (CNVD-2026-18574)

Oracle MySQL Shell is a command line tool and advanced client for managing and operating MySQL databases. A denial of service vulnerability exists in Oracle MySQL Shell. The vulnerability stems from the Core Client component failing to properly handle certain inputs and can be exploited by an...

5CVSS7.6AI score0.00153EPSS
Exploits0
CNVD
CNVD
•added 2026/04/22 12:0 a.m.•10 views

Oracle VM VirtualBox Core Component Elevation of Privilege Vulnerability (CNVD-2026-18425)

Oracle VM VirtualBox is a desktop virtualization software developed by Oracle to run multiple operating systems on a single host. An elevation of privilege vulnerability exists in Oracle VM VirtualBox. The vulnerability stems from a failure of the Core component to properly handle privilege...

7.5CVSS7.7AI score0.00107EPSS
Exploits0
CNVD
CNVD
•added 2026/04/22 12:0 a.m.•8 views

Oracle VM VirtualBox Core Component Memory Corruption Vulnerability

Oracle VM VirtualBox is a desktop virtualization software developed by Oracle to run multiple operating systems on a single host. A memory corruption vulnerability exists in Oracle VM VirtualBox. The vulnerability stems from a failure of the Core component to properly handle memory operations and...

5CVSS7.9AI score0.00096EPSS
Exploits0
CNVD
CNVD
•added 2026/04/22 12:0 a.m.•5 views

Oracle Fusion Middleware Dynamic Monitoring Service Cross-Site Scripting Vulnerability

Oracle Fusion Middleware is a suite of middleware products for building and deploying enterprise-class applications, integrations and business processes. A cross-site scripting vulnerability exists in the Dynamic Monitoring Service component of Oracle Fusion Middleware. The vulnerability stems fr...

5.4CVSS7.4AI score0.00152EPSS
Exploits0
CNVD
CNVD
•added 2026/04/22 12:0 a.m.•8 views

Oracle VM VirtualBox Core Component Elevation of Privilege Vulnerability (CNVD-2026-18539)

Oracle VM VirtualBox is a desktop virtualization software developed by Oracle to run multiple operating systems on a single host. An elevation of privilege vulnerability exists in Oracle VM VirtualBox. The vulnerability stems from a failure of the Core component to properly handle privilege...

7.5CVSS7.7AI score0.00197EPSS
Exploits0
CNVD
CNVD
•added 2026/04/22 12:0 a.m.•5 views

Oracle VM VirtualBox Core Component Memory Corruption Vulnerability (CNVD-2026-18426)

Oracle VM VirtualBox is a desktop virtualization software developed by Oracle to create and run virtual machines on host operating systems. A memory corruption vulnerability exists in Oracle VM VirtualBox. The vulnerability stems from a failure of the Core component to properly handle memory...

7.5CVSS8.1AI score0.00107EPSS
Exploits0
CNVD
CNVD
•added 2026/04/22 12:0 a.m.•3 views

Oracle Solaris Kernel Denial of Service Vulnerability

Oracle Solaris is a Unix-like operating system developed by Oracle Corporation for use in server and enterprise-class computing environments. A denial of service vulnerability exists in Oracle Solaris. The vulnerability stems from a failure of a kernel component to properly handle certain...

6.5CVSS7.7AI score0.00116EPSS
Exploits0
CNVD
CNVD
•added 2026/04/22 12:0 a.m.•5 views

Oracle VM VirtualBox Core Component Denial of Service Vulnerability

Oracle VM VirtualBox is a desktop virtualization software developed by Oracle to run multiple operating systems on a single host. A denial of service vulnerability exists in Oracle VM VirtualBox. The vulnerability stems from a flaw in the Core component, which can be exploited by an attacker to...

2.3CVSS7.7AI score0.0011EPSS
Exploits1
CNVD
CNVD
•added 2026/04/22 12:0 a.m.•10 views

Oracle VM VirtualBox Core Component Denial of Service Vulnerability (CNVD-2026-18569)

Oracle VM VirtualBox is a desktop virtualization software developed by Oracle that supports running multiple operating systems on a single host. A denial of service vulnerability exists in Oracle VM VirtualBox. The vulnerability stems from a failure of the Core component to properly handle RDP...

7.5CVSS7.7AI score0.00253EPSS
Exploits0
CNVD
CNVD
•added 2026/04/22 12:0 a.m.•47 views

Oracle MySQL Server JSON Component Denial of Service Vulnerability

Oracle MySQL Server is an open source relational database management system that provides data storage, querying and management capabilities. A denial of service vulnerability exists in Oracle MySQL Server. The vulnerability stems from a failure of the Server: JSON component to properly handle...

6.5CVSS7.4AI score0.00303EPSS
Exploits0
CNVD
CNVD
•added 2026/04/22 12:0 a.m.•15 views

Oracle Database Server Java VM Component Data Disclosure Vulnerability

Oracle Database Server is a relational database management system with a Java VM component that supports running Java programs in the database. A data disclosure vulnerability exists in Oracle Database Server. The vulnerability arises from a failure of the Java VM component to properly handle a...

7.5CVSS7.8AI score0.00307EPSS
Exploits0
CNVD
CNVD
•added 2026/04/22 12:0 a.m.•6 views

Oracle MySQL Server DML Component Denial of Service Vulnerability

Oracle MySQL Server is an open source relational database management system for storing, querying and managing data. A denial of service vulnerability exists in Oracle MySQL Server. The vulnerability stems from a failure of the Server: DML component to properly handle a specific request and can b...

4.9CVSS7.4AI score0.00242EPSS
Exploits0
CNVD
CNVD
•added 2026/04/21 12:0 a.m.•9 views

Microsoft Word Information Disclosure Vulnerability (CNVD-2026-19707)

Microsoft Word is a word processing software in the Office suite of the U.S. company Microsoft Microsoft. An information disclosure vulnerability exists in Microsoft Word. An attacker could exploit this vulnerability to obtain sensitive information...

6.1CVSS5.8AI score0.0036EPSS
Exploits0
CNVD
CNVD
•added 2026/04/21 12:0 a.m.•9 views

Microsoft Word Code Execution Vulnerability (CNVD-2026-19747)

Microsoft Word is a word processing software in the Office suite of the U.S. company Microsoft Microsoft. A code execution vulnerability exists in Microsoft Word, which can be exploited by an attacker to execute arbitrary code on a system...

8.4CVSS6.5AI score0.00316EPSS
Exploits0
CNVD
CNVD
•added 2026/04/21 12:0 a.m.•18 views

Microsoft Windows Shell Elevation of Privilege Vulnerability (CNVD-2026-20175)

The Microsoft Windows Shell is the graphical user interface for the Windows operating system from Microsoft.The easily recognizable elements of the Windows shell include features such as the desktop, the taskbar, the start menu, the task switcher, and autoplay. An elevation of privilege...

7CVSS5.8AI score0.00243EPSS
Exploits0
CNVD
CNVD
•added 2026/04/21 12:0 a.m.•8 views

Dell PowerProtect Data Domain Incorrect Authentication Vulnerability

Dell PowerProtect Data Domain Dell PowerProtect DD is a suite of hardware appliances for data protection, backup, storage, and deduplication from Dell, USA. An incorrect authentication vulnerability exists in Dell PowerProtect Data Domain with Data Domain Operating System DD OS, which can be...

7.2CVSS5.8AI score0.00368EPSS
Exploits0
CNVD
CNVD
•added 2026/04/21 12:0 a.m.•9 views

Microsoft PowerShell Elevation of Privilege Vulnerability

Microsoft PowerShell is a Microsoft-developed cross-platform task automation solution that includes a command-line shell, scripting language, and configuration management framework. An elevation of privilege vulnerability exists in Microsoft PowerShell, which is caused by incorrect input validati...

7.8CVSS5.8AI score0.0023EPSS
Exploits0
CNVD
CNVD
•added 2026/04/21 12:0 a.m.•9 views

Microsoft Windows Shell Elevation of Privilege Vulnerability (CNVD-2026-20176)

The Microsoft Windows Shell is the graphical user interface for the Windows operating system from Microsoft.The easily recognizable elements of the Windows shell include features such as the desktop, the taskbar, the start menu, the task switcher, and autoplay. An elevation of privilege...

7.8CVSS5.8AI score0.00192EPSS
Exploits0
CNVD
CNVD
•added 2026/04/21 12:0 a.m.•6 views

Microsoft .NET Framework Denial of Service Vulnerability

Microsoft .NET Framework is a comprehensive and consistent programming model from Microsoft Corporation USA and a development platform. The platform includes the C and Visual Basic programming languages, a public language runtime library, and an extensive class library. A security vulnerability...

7.5CVSS5.3AI score0.0133EPSS
Exploits0
CNVD
CNVD
•added 2026/04/21 12:0 a.m.•5 views

Microsoft Azure Monitor Agent Input Validation Error Vulnerability (CNVD-2026-18593)

Microsoft Azure Monitor Agent is a monitoring agent program from Microsoft USA. A security vulnerability exists in Microsoft Azure Monitor Agent. An attacker can exploit the vulnerability to elevate privileges...

7.8CVSS5.4AI score0.00307EPSS
Exploits0
CNVD
CNVD
•added 2026/04/21 12:0 a.m.•14 views

Microsoft Windows Kernel Elevation of Privilege Vulnerability (CNVD-2026-20169)

The Microsoft Windows Kernel is the kernel of the Windows operating system from the American company Microsoft. An elevation of privilege vulnerability exists in Microsoft Windows Kernel, which can be exploited by an attacker to elevate privileges...

7.8CVSS5.8AI score0.00298EPSS
Exploits0
CNVD
CNVD
•added 2026/04/21 12:0 a.m.•5 views

Microsoft Brokering File System Resource Management Error Vulnerability

Microsoft Brokering File System is a file system from the American company Microsoft. A security vulnerability exists in Microsoft Brokering File System. An attacker could exploit the vulnerability to elevate privileges...

7CVSS5.4AI score0.00179EPSS
Exploits0
CNVD
CNVD
•added 2026/04/21 12:0 a.m.•13 views

Microsoft Excel Code Execution Vulnerability (CNVD-2026-19428)

Microsoft Excel is a spreadsheet processing software in the Office suite from Microsoft USA. A code execution vulnerability exists in Microsoft Excel, which can be exploited by an attacker to execute arbitrary code on a system...

7.8CVSS6.5AI score0.00291EPSS
Exploits0
CNVD
CNVD
•added 2026/04/21 12:0 a.m.•6 views

Microsoft Windows Kernel Information Disclosure Vulnerability (CNVD-2026-20167)

The Microsoft Windows Kernel is the kernel of the Windows operating system from the American company Microsoft. An information disclosure vulnerability exists in Microsoft Windows Kernel, which can be exploited by attackers to obtain sensitive information...

6.1CVSS5.8AI score0.02418EPSS
Exploits0
CNVD
CNVD
•added 2026/04/21 12:0 a.m.•11 views

Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability

Microsoft Dynamics 365 is a suite of ERP business solutions for multinational organizations from Microsoft USA. It is used for financial management, production management and business intelligence management. An information disclosure vulnerability exists in Microsoft Dynamics 365 On-Premises,...

5.5CVSS5.8AI score0.00221EPSS
Exploits0
CNVD
CNVD
•added 2026/04/21 12:0 a.m.•10 views

Microsoft Office PowerPoint Code Execution Vulnerability

Microsoft Office PowerPoint is an American Microsoft Microsoft company's software for creating, presentations PPT. A code execution vulnerability exists in Microsoft Office PowerPoint, which can be exploited by an attacker to execute arbitrary code on a system...

7.8CVSS6.5AI score0.00323EPSS
Exploits0
CNVD
CNVD
•added 2026/04/21 12:0 a.m.•10 views

Microsoft Excel Code Execution Vulnerability (CNVD-2026-19430)

Microsoft Excel is a spreadsheet processing software in the Office suite from Microsoft USA. A code execution vulnerability exists in Microsoft Excel, which can be exploited by an attacker to execute arbitrary code on a system...

7.8CVSS6.5AI score0.00291EPSS
Exploits0
CNVD
CNVD
•added 2026/04/21 12:0 a.m.•12 views

Microsoft Word Code Execution Vulnerability (CNVD-2026-19750)

Microsoft Word is a word processing software in the Office suite of the U.S. company Microsoft Microsoft. A code execution vulnerability exists in Microsoft Word, which can be exploited by an attacker to execute arbitrary code on a system...

7.8CVSS6.5AI score0.00372EPSS
Exploits0
CNVD
CNVD
•added 2026/04/21 12:0 a.m.•8 views

Microsoft Word Code Execution Vulnerability (CNVD-2026-19748)

Microsoft Word is a word processing software in the Office suite of the U.S. company Microsoft Microsoft. A code execution vulnerability exists in Microsoft Word due to an untrusted pointer dereference flaw. An attacker could exploit this vulnerability to execute arbitrary code on a system...

8.4CVSS6.5AI score0.00316EPSS
Exploits0
CNVD
CNVD
•added 2026/04/21 12:0 a.m.•5 views

Microsoft Desktop Windows Manager Resource Management Error Vulnerability (CNVD-2026-18598)

Microsoft Desktop Windows Manager is a desktop window manager from Microsoft USA. A security vulnerability exists in Microsoft Desktop Windows Manager. An attacker could exploit the vulnerability to elevate privileges...

7.8CVSS5.3AI score0.00286EPSS
Exploits0
CNVD
CNVD
•added 2026/04/21 12:0 a.m.•6 views

Microsoft SharePoint Server Spoofing Vulnerability (CNVD-2026-19433)

Microsoft SharePoint Server is an enterprise business collaboration platform from Microsoft. The platform is used to consolidate business information and enable sharing of work, collaborating with others, organizing projects and workgroups, and searching for people and information. A spoofing...

5.4CVSS5.8AI score0.25082EPSS
Exploits0
CNVD
CNVD
•added 2026/04/21 12:0 a.m.•7 views

Microsoft Desktop Windows Manager Resource Management Error Vulnerability (CNVD-2026-18599)

Microsoft Desktop Windows Manager is a desktop window manager from Microsoft USA. A security vulnerability exists in Microsoft Desktop Windows Manager. An attacker could exploit the vulnerability to elevate privileges...

7.8CVSS5.3AI score0.00383EPSS
Exploits0
CNVD
CNVD
•added 2026/04/21 12:0 a.m.•9 views

Microsoft Windows Kernel Information Disclosure Vulnerability (CNVD-2026-20172)

The Microsoft Windows Kernel is the kernel of the Windows operating system from the American company Microsoft. An information disclosure vulnerability exists in Microsoft Windows Kernel, which can be exploited by attackers to obtain sensitive information...

5.5CVSS5.8AI score0.0042EPSS
Exploits0
CNVD
CNVD
•added 2026/04/21 12:0 a.m.•13 views

Microsoft Windows TCP/IP Remote Code Execution Vulnerability

Microsoft Windows TCP/IP is a Microsoft component that provides TCP/IP configuration capabilities for Windows. A remote code execution vulnerability exists in Microsoft Windows TCP/IP, which can be exploited by an attacker to execute code...

8.1CVSS6.5AI score0.00837EPSS
Exploits1
CNVD
CNVD
•added 2026/04/21 12:0 a.m.•10 views

Microsoft Windows Kernel Information Disclosure Vulnerability (CNVD-2026-20173)

The Microsoft Windows Kernel is the kernel of the Windows operating system from the American company Microsoft. An information disclosure vulnerability exists in Microsoft Windows Kernel, which can be exploited by attackers to obtain sensitive information...

5.5CVSS5.8AI score0.00436EPSS
Exploits0
CNVD
CNVD
•added 2026/04/21 12:0 a.m.•8 views

WordPress Plugin YouTube Showcase Cross-Site Scripting Vulnerability

WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in the WordPress plugin YouTube Showcase, which ste...

6.5CVSS5.5AI score0.00156EPSS
Exploits0
CNVD
CNVD
•added 2026/04/21 12:0 a.m.•7 views

WordPress Plugin WCFM Marketplace SQL Injection Vulnerability

WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. WordPress plugin WCFM Marketplace suffers from a SQL injection vulnerability that stems from th...

7.6CVSS5.8AI score0.00271EPSS
Exploits0
CNVD
CNVD
•added 2026/04/21 12:0 a.m.•5 views

Microsoft Desktop Windows Manager Resource Management Error Vulnerability

Microsoft Desktop Windows Manager is a desktop window manager from Microsoft USA. A security vulnerability exists in Microsoft Desktop Windows Manager. An attacker could exploit the vulnerability to elevate privileges...

7.8CVSS5.3AI score0.0023EPSS
Exploits0
CNVD
CNVD
•added 2026/04/21 12:0 a.m.•10 views

Microsoft PowerShell Security Feature Bypass Vulnerability

Microsoft PowerShell is a Microsoft-developed cross-platform task automation solution that includes a command-line shell, scripting language, and configuration management framework. A security feature bypass vulnerability exists in Microsoft PowerShell, which can be exploited by an attacker to...

7.8CVSS5.7AI score0.00536EPSS
Exploits0
Total number of security vulnerabilities131179