Lucene search
K
CvelistMost viewed

366532 matches found

Cvelist
Cvelist
•added 2021/09/29 3:38 p.m.•172 views

CVE-2021-39843 Adobe Acrobat Reader XObject Out-of-Bound Write Vulnerability

Acrobat Reader DC versions 2021.005.20060 and earlier, 2020.004.30006 and earlier and 2017.011.30199 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user...

7.8CVSS7.9AI score0.76055EPSS
Exploits0References1
Cvelist
Cvelist
•added 2024/07/01 6:16 p.m.•171 views

CVE-2024-39573 Apache HTTP Server: mod_rewrite proxy handler substitution

Potential SSRF in modrewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to cause unsafe RewriteRules to unexpectedly setup URL's to be handled by modproxy. Users are recommended to upgrade to version 2.4.60, which fixes this issue...

0.35447EPSS
Exploits0References2
Cvelist
Cvelist
•added 2022/07/28 12:0 a.m.•171 views

CVE-2022-2479

Insufficient validation of untrusted input in File in Google Chrome on Android prior to 103.0.5060.134 allowed an attacker who convinced a user to install a malicious app to obtain potentially sensitive information from internal file directories via a crafted HTML page...

5.3AI score0.0071EPSS
Exploits0References5
Cvelist
Cvelist
•added 2021/08/24 5:51 p.m.•171 views

CVE-2021-28631 Adobe Acrobat Reader DC AcroForm Field Use-After-Free Remote Code Execution Vulnerability

Acrobat Reader DC versions versions 2021.001.20155 and earlier, 2020.001.30025 and earlier and 2017.011.30196 and earlier are affected by an Use After Free vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the curren...

7.8CVSS7.8AI score0.04709EPSS
Exploits0References1
Cvelist
Cvelist
•added 2021/06/15 12:0 a.m.•171 views

CVE-2021-31618 NULL pointer dereference on specially crafted HTTP/2 request

Apache HTTP Server protocol handler for the HTTP/2 protocol checks received request headers against the size limitations as configured for the server and used for the HTTP/1 protocol as well. On violation of these restrictions and HTTP response is sent to the client with a status code indicating...

8.8AI score0.51208EPSS
Exploits0References13
Cvelist
Cvelist
•added 2017/07/23 3:0 a.m.•171 views

CVE-2017-11528

The ReadDIBImage function in coders/dib.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of service memory leak via a crafted file...

6.8AI score0.01876EPSS
Exploits0References2
Cvelist
Cvelist
•added 2014/11/16 12:0 a.m.•171 views

CVE-2014-2682

Zend Framework 1 ZF1 before 1.12.4, Zend Framework 2 before 2.1.6 and 2.2.x before 2.2.6, ZendOpenId, ZendRest, ZendServiceAudioScrobbler, ZendServiceNirvanix, ZendServiceSlideShare, ZendServiceTechnorati, and ZendServiceWindowsAzure before 2.0.2, ZendServiceAmazon before 2.0.3, and ZendServiceAp...

9.6AI score0.02164EPSS
Exploits0References6
Cvelist
Cvelist
•added 2010/09/03 7:0 p.m.•171 views

CVE-2010-2240

The doanonymouspage function in mm/memory.c in the Linux kernel before 2.6.27.52, 2.6.32.x before 2.6.32.19, 2.6.34.x before 2.6.34.4, and 2.6.35.x before 2.6.35.2 does not properly separate the stack and the heap, which allows context-dependent attackers to execute arbitrary code by writing to t...

7.1AI score0.00716EPSS
Exploits1References21
Cvelist
Cvelist
•added 2026/06/09 5:6 p.m.•170 views

CVE-2026-42970 Windows Push Notification Information Disclosure Vulnerability

...

5.5CVSS0.00404EPSS
Exploits0References1
Cvelist
Cvelist
•added 2023/11/28 8:57 p.m.•170 views

CVE-2023-49092 RustCrypto/RSA vulnerable to a Marvin Attack via key recovery through timing sidechannels

RustCrypto/RSA is a portable RSA implementation in pure Rust. Due to a non-constant-time implementation, information about the private key is leaked through timing information which is observable over the network. An attacker may be able to use that information to recover the key. There is...

5.9CVSS5.6AI score0.00605EPSS
Exploits0References2
Cvelist
Cvelist
•added 2021/09/27 3:42 p.m.•170 views

CVE-2021-39823 svg-native-viewer Heap Buffer overflow Vulnerability

Adobe svg-native-viewer 8182d14dfad5d1e10f53ed830328d7d9a3cfa96d and earlier versions are affected by a heap buffer overflow vulnerability due to insecure handling of a malicious .svg file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is...

7.8CVSS8.2AI score0.04115EPSS
Exploits0References1
Cvelist
Cvelist
•added 2016/03/24 1:0 a.m.•170 views

CVE-2016-1754

The kernel in Apple iOS before 9.3, OS X before 10.11.4, tvOS before 9.2, and watchOS before 2.2 allows attackers to execute arbitrary code in a privileged context or cause a denial of service memory corruption via a crafted app, a different vulnerability than CVE-2016-1755...

6.5AI score0.01485EPSS
Exploits0References9
Cvelist
Cvelist
•added 2026/04/09 6:45 a.m.•169 views

CVE-2026-5854 Totolink A7100RU CGI cstecgi.cgi setWiFiEasyCfg os command injection

A vulnerability was detected in Totolink A7100RU 7.4cu.2313b20191024. Affected by this issue is the function setWiFiEasyCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Performing a manipulation of the argument merge results in os command injection. It is possible to initiate th...

10CVSS0.17546EPSS
Exploits0References5
Cvelist
Cvelist
•added 2017/07/23 3:0 a.m.•169 views

CVE-2017-11524

The WriteBlob function in MagickCore/blob.c in ImageMagick before 6.9.8-10 and 7.x before 7.6.0-0 allows remote attackers to cause a denial of service assertion failure and application exit via a crafted file...

6.8AI score0.03183EPSS
Exploits1References3
Cvelist
Cvelist
•added 2013/10/01 7:0 p.m.•169 views

CVE-2013-5580

The 1 ConnStartLogin and 2 cbReadResolverResult functions in conn.c in ngIRCd 18 through 20.2, when the configuration option NoticeAuth is enabled, does not properly handle the return code for the HandleWrite function, which allows remote attackers to cause a denial of service assertion failure a...

6.7AI score0.02322EPSS
Exploits0References7
Cvelist
Cvelist
•added 2024/06/10 9:23 p.m.•168 views

CVE-2024-35242 Composer vulnerable to command injection via malicious git/hg branch names

Composer is a dependency manager for PHP. On the 2.x branch prior to versions 2.2.24 and 2.7.7, the composer install command running inside a git/hg repository which has specially crafted branch names can lead to command injection. This requires cloning untrusted repositories. Patches are availab...

8.8CVSS0.03282EPSS
Exploits0References5
Cvelist
Cvelist
•added 2026/02/13 3:39 a.m.•167 views

CVE-2026-25108

FileZen contains an OS command injection vulnerability. When FileZen Antivirus Check Option is enabled, a logged-in user may send a specially crafted HTTP request to execute an arbitrary OS command...

8.8CVSS0.04974EPSS
Exploits0References2
Cvelist
Cvelist
•added 2023/03/17 12:0 a.m.•167 views

CVE-2023-28531

ssh-add in OpenSSH before 9.3 adds smartcard keys to ssh-agent without the intended per-hop destination constraints. The earliest affected version is 8.9...

9.5AI score0.02267EPSS
Exploits0References5
Cvelist
Cvelist
•added 2025/04/18 12:0 a.m.•166 views

CVE-2025-28242

Improper session management in the /loginok.htm endpoint of DAEnetIP4 METO v1.25 allows attackers to execute a session hijacking attack...

0.01769EPSS
Exploits0References1
Cvelist
Cvelist
•added 2021/06/28 1:45 p.m.•166 views

CVE-2021-28562 Adobe Acrobat Reader use-after-free could lead to arbitrary code execution

Acrobat Reader DC versions versions 2021.001.20150 and earlier, 2020.001.30020 and earlier and 2017.011.30194 and earlier are affected by a Use After Free vulnerability when executing search queries through Javascript. An unauthenticated attacker could leverage this vulnerability to achieve...

8.8CVSS8.9AI score0.05117EPSS
Exploits0References1
Cvelist
Cvelist
•added 2021/10/15 2:22 p.m.•165 views

CVE-2021-40731 Adobe Acrobat Reader DC JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

Adobe Acrobat Reader DC version 21.007.20095 and earlier, 21.007.20096 and earlier, 20.004.30015 and earlier, and 17.011.30202 and earlier is affected by an out-of-bounds write vulnerability when parsing a crafted JPEG2000 file, which could result in arbitrary code execution in the context of the...

7.8CVSS7.9AI score0.08005EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/05/05 9:29 p.m.•164 views

CVE-2026-28780 Apache HTTP Server: buffer overflow in mod_proxy_ajp via ajp_msg_check_header()

Heap-based Buffer Overflow vulnerability in modproxyajp of Apache HTTP Server. If modproxyajp connects to a malicious AJP server this AJP server can send a malicious AJP message back to modproxyajp and cause it to write 4 attacker controlled bytes after the end of a heap based buffer. This issue...

0.01376EPSS
Exploits0References1
Cvelist
Cvelist
•added 2024/09/10 4:54 p.m.•164 views

CVE-2024-43461 Windows MSHTML Platform Spoofing Vulnerability

...

8.8CVSS0.51883EPSS
Exploits0References1
Cvelist
Cvelist
•added 2023/04/18 10:53 p.m.•164 views

CVE-2023-29527 Code injection from account through AWM view sheet in xwiki platform

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. In affected versions a user without script or programming right may edit a user profile or any other document with the wiki editor and add groovy script content. Viewing the document after...

9.9CVSS9.8AI score0.0109EPSS
Exploits1References2
Cvelist
Cvelist
•added 2020/08/10 5:43 p.m.•164 views

CVE-2020-15658

The code for downloading files did not properly take care of special characters, which led to an attacker being able to cut off the file ending at an earlier position, leading to a different file type being downloaded than shown in the dialog. This vulnerability affects Firefox ESR 78.1, Firefox...

6.6AI score0.01202EPSS
Exploits0References6
Cvelist
Cvelist
•added 2013/05/02 2:0 p.m.•164 views

CVE-2012-5657

The 1 ZendFeedRss and 2 ZendFeedAtom classes in ZendFeed in Zend Framework 1.11.x before 1.11.15 and 1.12.x before 1.12.1 allow remote attackers to read arbitrary files, send HTTP requests to intranet servers, and possibly cause a denial of service CPU and memory consumption via an XML External...

9.3AI score0.01705EPSS
Exploits0References6
Cvelist
Cvelist
•added 2026/06/08 3:7 p.m.•163 views

CVE-2026-29167 Apache HTTP Server: mod_ldap per-dir use-after-free

Use After Free vulnerability in Apache HTTP Server with modldap in per-directory configuration This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue...

0.00663EPSS
Exploits0References1
Cvelist
Cvelist
•added 2021/09/03 7:25 p.m.•163 views

CVE-2021-30616

Chromium: CVE-2021-30616 Use after free in Media...

9.6AI score0.04159EPSS
Exploits0References2
Cvelist
Cvelist
•added 2019/01/03 7:0 p.m.•163 views

CVE-2018-19862

Buffer overflow in MiniShare 1.4.1 and earlier allows remote attackers to execute arbitrary code via a long HTTP POST request. NOTE: this product is discontinued...

9.8AI score0.12555EPSS
Exploits5References3
Cvelist
Cvelist
•added 2026/01/27 7:18 p.m.•162 views

CVE-2026-24858

An Authentication Bypass Using an Alternate Path or Channel vulnerability CWE-288 vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.5, FortiAnalyzer 7.4.0 through 7.4.9, FortiAnalyzer 7.2.0 through 7.2.11, FortiAnalyzer 7.0.0 through 7.0.15, FortiManager 7.6.0 through 7.6.5, FortiManager...

9.8CVSS0.85844EPSS
Exploits0References1
Cvelist
Cvelist
•added 2025/06/10 7:55 a.m.•162 views

CVE-2025-27817 Apache Kafka Client: Arbitrary file read and SSRF vulnerability

A possible arbitrary file read and SSRF vulnerability has been identified in Apache Kafka Client. Apache Kafka Clients accept configuration data for setting the SASL/OAUTHBEARER connection with the brokers, including "sasl.oauthbearer.token.endpoint.url" and "sasl.oauthbearer.jwks.endpoint.url"...

0.62368EPSS
Exploits2References1
Cvelist
Cvelist
•added 2024/11/27 12:4 p.m.•162 views

CVE-2024-42327 SQL injection in user.get API

A non-admin user account on the Zabbix frontend with the default User role, or with any other role that gives API access can exploit this vulnerability. An SQLi exists in the CUser class in the addRelatedObjects function, this function is being called from the CUser.get function which is availabl...

9.9CVSS0.78831EPSS
Exploits13References1
Cvelist
Cvelist
•added 2023/06/07 1:51 a.m.•162 views

CVE-2020-36731 Flexible Checkout Fields for WooCommerce <= 2.3.1 - Unauthenticated Arbitrary Plugin Settings Update

The Flexible Checkout Fields for WooCommerce plugin for WordPress is vulnerable to Unauthenticated Arbitrary Plugin Settings update, in addition to Stored Cross-Site Scripting in versions up to, and including, 2.3.1. This is due to missing authorization checks on the updateSettingsAction function...

7.2CVSS6.4AI score0.01342EPSS
Exploits1References3
Cvelist
Cvelist
•added 2026/05/12 7:50 p.m.•161 views

CVE-2026-34650 Adobe Commerce | Uncontrolled Resource Consumption (CWE-400)

Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by an Uncontrolled Resource Consumption vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to exhaust system resources,...

7.5CVSS0.15933EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/05/12 7:50 p.m.•161 views

CVE-2026-34648 Adobe Commerce | Uncontrolled Resource Consumption (CWE-400)

Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by an Uncontrolled Resource Consumption vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to exhaust system resources,...

7.5CVSS0.2255EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/04/09 6:0 a.m.•161 views

CVE-2026-5851 Totolink A7100RU CGI cstecgi.cgi setUPnPCfg os command injection

A security flaw has been discovered in Totolink A7100RU 7.4cu.2313b20191024. This impacts the function setUPnPCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument enable results in os command injection. The attack can be executed remotely. The exploi...

10CVSS0.14128EPSS
Exploits0References5
Cvelist
Cvelist
•added 2026/04/09 5:45 a.m.•161 views

CVE-2026-5850 Totolink A7100RU CGI cstecgi.cgi setVpnPassCfg os command injection

A vulnerability was identified in Totolink A7100RU 7.4cu.2313b20191024. This affects the function setVpnPassCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument pptpPassThru leads to os command injection. Remote exploitation of the attack is possible...

10CVSS0.15952EPSS
Exploits0References5
Cvelist
Cvelist
•added 2026/04/03 5:3 p.m.•161 views

CVE-2026-0545 Missing Authentication for Critical Function in mlflow/mlflow

In mlflow/mlflow, the FastAPI job endpoints under /ajax-api/3.0/jobs/ are not protected by authentication or authorization when the basic-auth app is enabled. This vulnerability affects the latest version of the repository. If job execution is enabled MLFLOWSERVERENABLEJOBEXECUTION=true and any j...

9.1CVSS0.04392EPSS
Exploits1References1
Cvelist
Cvelist
•added 2022/01/14 7:5 p.m.•161 views

CVE-2021-44703 Adobe Acrobat Pro DC Stack Overflow Vulnerability Arbitrary code execution

Acrobat Reader DC version 21.007.20099 and earlier, 20.004.30017 and earlier and 17.011.30204 and earlier are affected by a stack buffer overflow vulnerability due to insecure handling of a crafted file, potentially resulting in arbitrary code execution in the context of the current user...

7.8CVSS7.9AI score0.57304EPSS
Exploits0References1
Cvelist
Cvelist
•added 2020/06/29 5:33 p.m.•161 views

CVE-2020-14145

The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connection attempts where no host key for the server has been cached by the client. NOTE: some reports...

5.8AI score0.02057EPSS
Exploits2References8
Cvelist
Cvelist
•added 2026/05/13 6:52 p.m.•160 views

CVE-2026-42031 CKAN: Unauthenticated SQL Injection and Authorization Bypass in `datastore_search_sql`

CKAN is an open-source DMS data management system for powering data hubs and data portals. Prior to 2.10.10 and 2.11.5, a vulnerability in datastoresearchsql allowed attackers to inject SQL in order to gain access to private resources and PostgreSQL system information This vulnerability is fixed ...

8.3CVSS0.01815EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/05/04 2:48 p.m.•160 views

CVE-2026-29169 Apache HTTP Server: mod_dav_lock indirect lock crash

A NULL pointer dereference in moddavlock in Apache HTTP Server 2.4.66 and earlier may allow an attacker to crash the server with a malicious request.moddavlock is not used internally by moddav or moddavfs. The only known use-case for moddavlock was moddavsvn from Apache Subversion earlier than...

0.00594EPSS
Exploits0References1
Cvelist
Cvelist
•added 2025/12/11 11:36 p.m.•160 views

CVE-2025-67779

It was found that the fix addressing CVE-2025-55184 in React Server Components was incomplete and does not prevent a denial of service attack in a specific case. React Server Components versions 19.0.2, 19.1.3 and 19.2.2 are affected, allowing unsafe deserialization of payloads from HTTP requests...

7.5CVSS0.19152EPSS
Exploits3References2
Cvelist
Cvelist
•added 2025/02/27 2:18 a.m.•160 views

CVE-2025-21756 vsock: Keep the binding until socket destruction

In the Linux kernel, the following vulnerability has been resolved: vsock: Keep the binding until socket destruction Preserve sockets bindings; this includes both resulting from an explicit bind and those implicitly bound through autobind during connect. Prevents socket unbinding during a transpo...

7.8CVSS0.00844EPSS
Exploits3References7
Cvelist
Cvelist
•added 2026/05/15 7:30 a.m.•159 views

CVE-2026-8398

A supply chain attack compromised the official installation packages of DAEMON Tools Lite Windows versions 12.5.0.2421 through 12.5.0.2434, distributed from the legitimate website daemon-tools.cc between approximately April 8, 2026, and May 5, 2026. Attackers gained unauthorized access to the...

9.8CVSS0.01456EPSS
Exploits1References2
Cvelist
Cvelist
•added 2026/05/04 12:37 p.m.•159 views

CVE-2026-24072 Apache HTTP Server: mod_rewrite elevation of privileges via ap_expr

An escalation of privilege bug in various modules in Apache HTTP 2.4.66 and earlier allows local .htaccess authors to read files with the privileges of the httpd user. Users are recommended to upgrade to version 2.4.67, which fixes this issue...

0.00654EPSS
Exploits1References1
Cvelist
Cvelist
•added 2026/04/23 7:45 p.m.•159 views

CVE-2026-25874 LeRobot Unsafe Deserialization Remote Code Execution via gRPC

LeRobot through 0.5.1 contains an unsafe deserialization vulnerability in the async inference pipeline where pickle.loads is used to deserialize data received over unauthenticated gRPC channels without TLS in the policy server and robot client components. An unauthenticated network-reachable...

9.3CVSS0.15547EPSS
Exploits1References5
Cvelist
Cvelist
•added 2025/05/09 8:59 p.m.•159 views

CVE-2025-47269 code-server session cookie can be extracted by having user visit specially crafted proxy URL

code-server runs VS Code on any machine anywhere through browser access. Prior to version 4.99.4, a maliciously crafted URL using the proxy subpath can result in the attacker gaining access to the session token. Failure to properly validate the port for a proxy request can result in proxying to a...

8.3CVSS0.36027EPSS
Exploits0References3
Cvelist
Cvelist
•added 2024/05/03 1:55 a.m.•159 views

CVE-2023-27329 Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability

Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious...

7.8CVSS8.2AI score0.03925EPSS
Exploits0References2
Cvelist
Cvelist
•added 2026/01/18 4:2 p.m.•158 views

CVE-2026-1125 D-Link DIR-823X set_wifidog_settings sub_412E7C command injection

A weakness has been identified in D-Link DIR-823X 250416. Affected by this issue is the function sub412E7C of the file /goform/setwifidogsettings. Executing a manipulation of the argument wdenable can lead to command injection. The attack can be executed remotely. The exploit has been made...

7.5CVSS0.1438EPSS
Exploits1References6
Total number of security vulnerabilities5000