VYPR

Vx Search

by Vxsearch

CVEs (4)

  • CVE-2017-13708CriAug 31, 2017
    risk 0.68cvss 9.8epss 0.12

    Buffer overflow in the web server service in VX Search Enterprise 10.0.14 allows remote attackers to execute arbitrary code via a crafted GET request.

  • CVE-2018-25328HigMay 17, 2026
    risk 0.55cvss 8.4epss 0.00

    VX Search 10.6.18 contains a local buffer overflow vulnerability that allows attackers to overwrite the instruction pointer by supplying an oversized string in the directory field. Attackers can craft a malicious input file containing 271 bytes of junk data followed by a return…

  • CVE-2021-47974HigMay 16, 2026
    risk 0.51cvss 7.8epss 0.00

    VX Search 13.5.28 contains an unquoted service path vulnerability in both VX Search Server and VX Search Enterprise services that allows local attackers to escalate privileges. Attackers can place malicious executables in unquoted path directories like C:\Program Files\VX Search…

  • CVE-2023-24671Mar 16, 2023
    risk 0.00cvss epss 0.00

    VX Search v13.8 and v14.7 was discovered to contain an unquoted service path vulnerability which allows attackers to execute arbitrary commands at elevated privileges via a crafted executable file.