Search

Expected end of text, found '.' (at char 14), (line:1, col:15)
Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (313418 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2025-47351 2025-10-09 7.8 High
Memory corruption while processing user buffers.
CVE-2025-47349 2025-10-09 7.8 High
Memory corruption while processing an escape call.
CVE-2025-47347 2025-10-09 7.8 High
Memory corruption while processing control commands in the virtual memory management interface.
CVE-2025-47342 2025-10-09 7.1 High
Transient DOS may occur when multi-profile concurrency arises with QHS enabled.
CVE-2025-47341 2025-10-09 7.8 High
memory corruption while processing an image encoding completion event.
CVE-2025-47340 2025-10-09 7.8 High
Memory corruption while processing IOCTL call to get the mapping.
CVE-2025-47338 2025-10-09 7.8 High
Memory corruption while processing escape commands from userspace.
CVE-2025-27060 2025-10-09 8.8 High
Memory corruption while performing SCM call with malformed inputs.
CVE-2025-27059 2025-10-09 8.8 High
Memory corruption while performing SCM call.
CVE-2025-27054 2025-10-09 7.8 High
Memory corruption while processing a malformed license file during reboot.
CVE-2025-27053 2025-10-09 7.8 High
Memory corruption during PlayReady APP usecase while processing TA commands.
CVE-2025-27049 2025-10-09 5.5 Medium
Transient DOS while processing IOCTL call for image encoding.
CVE-2025-27048 2025-10-09 7.8 High
Memory corruption while processing camera platform driver IOCTL calls.
CVE-2025-27045 2025-10-09 6.1 Medium
Information disclosure while processing batch command execution in Video driver.
CVE-2025-27041 2025-10-09 5.5 Medium
Transient DOS while processing video packets received from video firmware.
CVE-2025-27040 2025-10-09 6.5 Medium
Information disclosure may occur while processing the hypervisor log.
CVE-2025-27039 2025-10-09 6.6 Medium
Memory corruption may occur while processing IOCTL call for DMM/WARPNCC CONFIG request.
CVE-2025-11530 2025-10-09 6.3 Medium
A weakness has been identified in code-projects Online Complaint Site 1.0. Affected is an unknown function of the file /cms/admin/state.php. This manipulation of the argument state causes sql injection. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be exploited.
CVE-2021-43798 1 Grafana 1 Grafana 2025-10-09 7.5 High
Grafana is an open-source platform for monitoring and observability. Grafana versions 8.0.0-beta1 through 8.3.0 (except for patched versions) iss vulnerable to directory traversal, allowing access to local files. The vulnerable URL path is: `<grafana_host_url>/public/plugins//`, where is the plugin ID for any installed plugin. At no time has Grafana Cloud been vulnerable. Users are advised to upgrade to patched versions 8.0.7, 8.1.8, 8.2.7, or 8.3.1. The GitHub Security Advisory contains more information about vulnerable URL paths, mitigation, and the disclosure timeline.
CVE-2025-11529 2025-10-09 7.3 High
A security flaw has been discovered in ChurchCRM up to 5.18.0. This impacts the function AuthMiddleware of the file src/ChurchCRM/Slim/Middleware/AuthMiddleware.php of the component API Endpoint. The manipulation results in missing authentication. The attack can be executed remotely. The exploit has been released to the public and may be exploited. The patch is identified as 3a1cffd2aea63d884025949cfbcfd274d06216a4. A patch should be applied to remediate this issue.