Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

120714 matches found

CNNVD
CNNVDadded 2026/03/20 12:0 a.m.3 views

ASTER Terrapack 安全漏洞

ASTER Terrapack is a series of Earth observation remote sensing data products developed by the Italian company ASTER. There is a security vulnerability in ASTER Terrapack, which stems from file uploads and may allow attackers to execute arbitrary code...

8.8CVSS6.1AI score0.00396EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2026/03/20 12:0 a.m.1 views

CVE-2025-67260

The Terrapack software, from ASTER TEC / ASTER S.p.A., with the indicated components and versions has a file upload vulnerability that may allow attackers to execute arbitrary code. Vulnerable components include Terrapack TkWebCoreNG:: 1.0.20200914, Terrapack TKServerCGI 2.5.4.150, and Terrapack...

6AI score0.00396EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/03/20 12:0 a.m.21 views

CVE-2025-67260

The Terrapack software, from ASTER TEC / ASTER S.p.A., with the indicated components and versions has a file upload vulnerability that may allow attackers to execute arbitrary code. Vulnerable components include Terrapack TkWebCoreNG:: 1.0.20200914, Terrapack TKServerCGI 2.5.4.150, and Terrapack...

0.00396EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2026/03/20 12:0 a.m.2 views

PT-2026-26625

The Terrapack software, from ASTER TEC / ASTER S.p.A., with the indicated components and versions has a file upload vulnerability that may allow attackers to execute arbitrary code. Vulnerable components include Terrapack TkWebCoreNG:: 1.0.20200914, Terrapack TKServerCGI 2.5.4.150, and Terrapack...

8.8CVSS6AI score0.00396EPSS
Exploits0References8
Tenable Nessus
Tenable Nessusadded 2026/03/20 12:0 a.m.5 views

AlmaLinux 10 : vim (ALSA-2026:4715)

The remote AlmaLinux 10 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2026:4715 advisory. vim: Vim: Arbitrary code execution via 'helpfile' option processing CVE-2026-25749 Tenable has extracted the preceding description block directly from the AlmaLin...

6.6CVSS6.4AI score0.00213EPSS
Exploits1References3
Tenable Nessus
Tenable Nessusadded 2026/03/20 12:0 a.m.6 views

AlmaLinux 9 : capstone (ALSA-2026:4898)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:4898 advisory. capstone: Capstone: Memory corruption via unchecked vsnprintf return CVE-2025-68114 capstone: Capstone: Heap buffer overflow via skipdata callback allows...

9.8CVSS7.7AI score0.00191EPSS
Exploits1References4
Kaspersky
Kasperskyadded 2026/03/20 12:0 a.m.6 views

KLA90974 Multiple vulnerabilities in Apache Tomcat

Multiple vulnerabilities were found in Apache Tomcat. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Configured cipher preference order not preserved...

9.1CVSS6AI score0.03645EPSS
Exploits2References3
Redos
Redosadded 2026/03/20 12:0 a.m.3 views

ROS-20260320-73-0011

A vulnerability in the cmd/cgo component of the Go programming language is related to incorrect code generation control. Exploitation of the vulnerability could allow an attacker to execute arbitrary code...

8.6CVSS7.5AI score0.00205EPSS
Exploits0
RedHat Linux
RedHat Linuxadded 2026/03/19 11:51 p.m.1 views

capstone: Capstone: Heap buffer overflow via skipdata callback allows denial of service or arbitrary code execution.

A flaw was found in Capstone, a disassembly framework. A local attacker could exploit a heap buffer overflow vulnerability by providing a specially crafted skipdata callback. This flaw occurs because the skipdata length is not properly bounds-checked, which may allow an attacker to write beyond...

7.8CVSS6.2AI score0.00191EPSS
Exploits1References6
EUVD
EUVDadded 2026/03/19 10:6 p.m.11 views

EUVD-2026-13271

OpenClaw versions prior to 2026.2.22 contain an allowlist bypass vulnerability in the safe-bin configuration when sort is manually added to tools.exec.safeBins. Attackers can invoke sort with the --compress-program flag to execute arbitrary external programs without operator approval in allowlist...

6.3CVSS6AI score0.00286EPSS
Exploits0References3
RedHat Linux
RedHat Linuxadded 2026/03/19 9:35 p.m.13 views

capstone: Capstone: Heap buffer overflow via skipdata callback allows denial of service or arbitrary code execution.

A flaw was found in Capstone, a disassembly framework. A local attacker could exploit a heap buffer overflow vulnerability by providing a specially crafted skipdata callback. This flaw occurs because the skipdata length is not properly bounds-checked, which may allow an attacker to write beyond...

7.8CVSS7.7AI score0.00191EPSS
Exploits1References6
RedHat Linux
RedHat Linuxadded 2026/03/19 9:14 p.m.2 views

capstone: Capstone: Heap buffer overflow via skipdata callback allows denial of service or arbitrary code execution.

A flaw was found in Capstone, a disassembly framework. A local attacker could exploit a heap buffer overflow vulnerability by providing a specially crafted skipdata callback. This flaw occurs because the skipdata length is not properly bounds-checked, which may allow an attacker to write beyond...

7.8CVSS6.2AI score0.00191EPSS
Exploits1References6
Ubuntu
Ubuntuadded 2026/03/19 5:31 p.m.5 views

USN-8105-2: FreeRDP regression

USN-8105-1 fixed vulnerabilities in FreeRDP. The update introduced a regression which could cause FreeRDP to crash. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that FreeRDP incorrectly handled certain RDP packets. A remote attack...

6.1AI score
Exploits0References1
NVD
NVDadded 2026/03/19 2:16 p.m.5 views

CVE-2025-71260

BMC FootPrints ITSM versions 20.20.02 through 20.24.01.001 contain a deserialization of untrusted data vulnerability in the ASP.NET servlet's VIEWSTATE handling that allows authenticated attackers to execute arbitrary code. Attackers can supply crafted serialized objects to the VIEWSTATE paramete...

8.8CVSS0.3436EPSS
Exploits1References3
Tenable Nessus
Tenable Nessusadded 2026/03/19 12:0 a.m.7 views

RHEL 9 : capstone (RHSA-2026:5125)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:5125 advisory. Capstone is a disassembly framework with the target of becoming the ultimate disasm engine for binary analysis and reversing in the security...

9.8CVSS6.2AI score0.00191EPSS
Exploits1References7
Kaspersky
Kasperskyadded 2026/03/19 12:0 a.m.6 views

KLA90947 Multiple vulnerabilities in Microsoft Browser

Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions. Original advisories CVE-2026-32194 CVE-2026-32191 Exploitation Public exploits exist for this vulnerability. Related products...

9.8CVSS6.1AI score0.00703EPSS
Exploits0References4
Redos
Redosadded 2026/03/19 12:0 a.m.4 views

ROS-20260319-73-0034

Vulnerability in beats related to writing outside buffer boundaries in memory. Exploitation of the vulnerability may allow an attacker to execute arbitrary code...

6.5CVSS6.3AI score0.00387EPSS
Exploits0
Redos
Redosadded 2026/03/19 12:0 a.m.4 views

ROS-20260319-73-0013

Vulnerability in glpi due to failure to take measures to protect the structure of a web page. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...

6.5CVSS6.2AI score0.00241EPSS
Exploits0
Redos
Redosadded 2026/03/19 12:0 a.m.5 views

ROS-20260319-73-0001

A vulnerability in the Gimp image processing library is related to writing beyond buffer boundaries. Exploitation of the vulnerability could allow an attacker to execute arbitrary code...

7.8CVSS7.6AI score0.00575EPSS
Exploits0
Positive Technologies
Positive Technologiesadded 2026/03/19 12:0 a.m.7 views

PT-2026-26428

Name of the Vulnerable Software and Affected Versions ingress-nginx versions prior to v1.13.9, v1.14.5, and v1.15.1 Description A security issue exists in ingress-nginx where a combination of Ingress annotations can be used to inject configuration into nginx. This can lead to arbitrary code...

10CVSS7.8AI score0.03256EPSS
Exploits67References174
Rows per page
Query Builder