CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2024-34062	tqdm CLI arguments injection attack Description: tqdm is an open source progress bar for Python and CLI. Any optional non-boolean CLI arguments (e.g. `--delim`, `--buf-size`, `--manpath`) are passed through python's `eval`, allowing arbitrary code execution. This issue is only locally exploitable and had been addressed in release version 4.66.3. All users are advised to upgrade. There are no known workarounds for this vulnerability. CVSS: MEDIUM (4.8) EPSS Score: 0.05% Source: CVE February 14th, 2025 (5 months ago)
CVE-2024-34051	A Reflected Cross-site scripting (XSS) vulnerability located in htdocs/compta/paiement/card.php of Dolibarr before 19.0.2 allows remote attackers... Description: A Reflected Cross-site scripting (XSS) vulnerability located in htdocs/compta/paiement/card.php of Dolibarr before 19.0.2 allows remote attackers to inject arbitrary web script or HTML via a crafted payload injected into the facid parameter. EPSS Score: 0.04% Source: CVE February 14th, 2025 (5 months ago)
CVE-2024-33901	Issue in KeePassXC 2.7.7 allows an attacker (who has the privileges of the victim) to recover some passwords stored in the .kdbx database via a... Description: Issue in KeePassXC 2.7.7 allows an attacker (who has the privileges of the victim) to recover some passwords stored in the .kdbx database via a memory dump. NOTE: the vendor disputes this because memory-management constraints make this unavoidable in the current design and other realistic designs. EPSS Score: 0.05% Source: CVE February 14th, 2025 (5 months ago)
CVE-2024-33900	KeePassXC 2.7.7 allows an attacker (who has the privileges of the victim) to recover cleartext credentials via a memory dump. NOTE: the vendor... Description: KeePassXC 2.7.7 allows an attacker (who has the privileges of the victim) to recover cleartext credentials via a memory dump. NOTE: the vendor disputes this because memory-management constraints make this unavoidable in the current design and other realistic designs. EPSS Score: 0.05% Source: CVE February 14th, 2025 (5 months ago)
CVE-2024-33877	HDF5 Library through 1.14.3 has a heap-based buffer overflow in H5T__conv_struct_opt in H5Tconv.c. Description: HDF5 Library through 1.14.3 has a heap-based buffer overflow in H5T__conv_struct_opt in H5Tconv.c. EPSS Score: 0.04% Source: CVE February 14th, 2025 (5 months ago)
CVE-2024-33876	HDF5 Library through 1.14.3 has a heap buffer overflow in H5S__point_deserialize in H5Spoint.c. Description: HDF5 Library through 1.14.3 has a heap buffer overflow in H5S__point_deserialize in H5Spoint.c. EPSS Score: 0.04% Source: CVE February 14th, 2025 (5 months ago)
CVE-2024-33875	HDF5 Library through 1.14.3 has a heap-based buffer overflow in H5O__layout_encode in H5Olayout.c, resulting in the corruption of the instruction... Description: HDF5 Library through 1.14.3 has a heap-based buffer overflow in H5O__layout_encode in H5Olayout.c, resulting in the corruption of the instruction pointer. EPSS Score: 0.04% Source: CVE February 14th, 2025 (5 months ago)
CVE-2024-33874	HDF5 Library through 1.14.3 has a heap buffer overflow in H5O__mtime_new_encode in H5Omtime.c. Description: HDF5 Library through 1.14.3 has a heap buffer overflow in H5O__mtime_new_encode in H5Omtime.c. EPSS Score: 0.04% Source: CVE February 14th, 2025 (5 months ago)
CVE-2024-33873	HDF5 Library through 1.14.3 has a heap-based buffer overflow in H5D__scatter_mem in H5Dscatgath.c. Description: HDF5 Library through 1.14.3 has a heap-based buffer overflow in H5D__scatter_mem in H5Dscatgath.c. EPSS Score: 0.04% Source: CVE February 14th, 2025 (5 months ago)
CVE-2024-33868	An issue was discovered in linqi before 1.4.0.1 on Windows. There is LDAP injection. Description: An issue was discovered in linqi before 1.4.0.1 on Windows. There is LDAP injection. EPSS Score: 0.04% Source: CVE February 14th, 2025 (5 months ago)