Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

107 matches found

RedhatCVE
RedhatCVEadded 3 days ago11 views

CVE-2026-0048

In hide of WindowState.java, there is a possible way to trick the user into approving permissions due to a tapjacking/overlay attack. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

6.8CVSS5.9AI score0.00006EPSS
Exploits0References1
Circl
Circladded 4 days ago5 views

CVE-2026-0048

creationtimestamp| type| source ---|---|--- 2026-06-01 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/android-multiple-vulnerabilities20260602...

6.8CVSS5.8AI score0.00006EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2026/03/05 12:0 a.m.5 views

Alibaba Cloud Linux 3 : 0048: container-tools:an8 (ALINUX3-SA-2026:0048)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2026:0048 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2024-24785: If errors returned from...

7.5CVSS6AI score0.00924EPSS
Exploits3References4
EUVD
EUVDadded 2026/01/02 6:30 p.m.1 views

EUVD-2026-0048

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

5.5AI score
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/21 6:5 p.m.7 views

CVE-1999-0048

Talkd, when given corrupt DNS information, can be used to execute arbitrary commands with root privileges...

10CVSS7.9AI score0.01879EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2014-0048

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was found in Docker before 1.6.0. Some programs and scripts in Docker are downloaded via HTTP and then executed or used in unsafe ways. CVE-2014-0048...

9.8CVSS7.6AI score0.03303EPSS
Exploits0References2
Circl
Circladded 2024/03/11 6:26 p.m.1 views

CVE-2024-0048

creationtimestamp| type| source ---|---|--- 2024-03-11 18:26:40+00:00| seen| https://t.me/ctinow/204931 2024-03-11 18:26:56+00:00| seen| https://t.me/ctinow/204944...

8.4CVSS4.8AI score0.00021EPSS
Exploits0References2
OSV
OSVadded 2024/03/11 5:15 p.m.1 views

UBUNTU-CVE-2024-0048

In Session of AccountManagerService.java, there is a possible method to retain foreground service privileges due to incorrect handling of null responses. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitatio...

8.4CVSS5.9AI score0.00021EPSS
Exploits0References4
UbuntuCve
UbuntuCveadded 2024/03/11 5:15 p.m.19 views

CVE-2024-0048

In Session of AccountManagerService.java, there is a possible method to retain foreground service privileges due to incorrect handling of null responses. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitatio...

8.4CVSS6.1AI score0.00021EPSS
Exploits0References3
CVE
CVEadded 2024/03/11 4:35 p.m.139 views

CVE-2024-0048

CVE-2024-0048 affects Android (AccountManagerService.java) where NULL-response handling can allow local elevation of privileges. Exploitation requires local access; no user interaction documented. Root cause: incorrect handling of NULL responses in the AccountManagerService session. Android secur...

8.4CVSS7AI score0.00021EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKBadded 2023/05/16 10:15 p.m.2 views

CVE-2021-0048

DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2021. Notes: none...

5.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2023/05/10 12:0 a.m.35 views

Security Updates for Microsoft SharePoint Server 2019 (May 2023)

The Microsoft SharePoint Server 2019 installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - A Sharepoint Server spoofing vulnerability. CVE-2023-24950 - A Sharepoint Server information disclosure vulnerability. CVE-2023-24950 - A...

7.2CVSS8.5AI score0.91789EPSS
Exploits7References4
Tenable Nessus
Tenable Nessusadded 2023/01/09 12:0 a.m.35 views

RHEL 8 : grub2 (RHSA-2023:0048)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:0048 advisory. The grub2 packages provide version 2 of the Grand Unified Boot Loader GRUB, a highly configurable and customizable boot loader with modular...

8.6CVSS7.4AI score0.0012EPSS
Exploits0References7
Circl
Circladded 2023/01/04 4:18 p.m.1 views

CVE-2023-0048

creationtimestamp| type| source ---|---|--- 2023-01-04 16:18:09+00:00| seen| https://t.me/cibsecurity/55878...

8.8CVSS7.3AI score0.02163EPSS
Exploits2References1
Vulnrichment
Vulnrichmentadded 2023/01/04 12:0 a.m.6 views

CVE-2023-0048 Code Injection in lirantal/daloradius

Code Injection in GitHub repository lirantal/daloradius prior to master-branch...

7.2CVSS7.3AI score0.02163EPSS
Exploits2References2
CVE
CVEadded 2023/01/04 12:0 a.m.302 views

CVE-2023-0048

CVE-2023-0048 affects the daloradius project (lirantal/daloradius) with a code-injection vulnerability prior to the master branch. Root cause: insufficient input sanitization in configuration/update flows, notably where user-controlled data (e.g., email fields) can be written to PHP files and exe...

8.8CVSS8.1AI score0.02163EPSS
Exploits2References2Affected Software1
OpenVAS
OpenVASadded 2022/02/09 12:0 a.m.16 views

Mageia: Security Advisory (MGASA-2022-0048)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.1AI score0.037EPSS
Exploits0References4
OpenVAS
OpenVASadded 2022/01/28 12:0 a.m.18 views

Mageia: Security Advisory (MGASA-2015-0048)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.00633EPSS
Exploits0References5
OpenVAS
OpenVASadded 2022/01/28 12:0 a.m.7 views

Mageia: Security Advisory (MGASA-2019-0048)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.00547EPSS
Exploits1References4
OpenVAS
OpenVASadded 2022/01/28 12:0 a.m.24 views

Mageia: Security Advisory (MGASA-2014-0048)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.3AI score0.11056EPSS
Exploits21References24
Rows per page
Query Builder