Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

25 matches found

RedhatCVE
RedhatCVEadded 2026/04/22 6:35 p.m.6 views

CVE-2026-31478

A flaw was found in ksmbd within the Linux kernel. This vulnerability occurs due to an incorrect calculation of the response buffer length in the smb2calcmaxoutbuflen function. The function used a hardcoded value instead of the proper offset, which could lead to issues in how response buffers are...

9.8CVSS5.9AI score0.00502EPSS
Exploits0References4
Circl
Circladded 2026/04/22 3:11 p.m.1 views

CVE-2026-31478

creationtimestamp| type| source ---|---|--- 2026-04-22 15:11:11+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116448996317066096 2026-05-05 20:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/debian-linux-kernel-multiple-vulnerabilities20260506...

9.8CVSS5.7AI score0.00502EPSS
Exploits0References2
OSV
OSVadded 2026/04/22 2:16 p.m.4 views

DEBIAN-CVE-2026-31478

In the Linux kernel, the following vulnerability has been resolved: ksmbd: replace hardcoded hdr2len with offsetof in smb2calcmaxoutbuflen After this commit e2b76ab8b5c9 "ksmbd: add support for read compound", response buffer management was changed to use dynamic iov array. In the new design,...

9.8CVSS5.4AI score0.00502EPSS
Exploits0References1
CVE
CVEadded 2026/04/22 1:54 p.m.24 views

CVE-2026-31478

The CVE-2026-31478 issue affects ksmbd in the Linux kernel. The root cause is an incorrect calculation of the response buffer length in smb2_calc_max_out_buf_len(), where a hardcoded hdr2_len was used instead of the correct offset to the Buffer field. The security advisories describe that after a...

9.8CVSS5.8AI score0.00502EPSS
Exploits0References7Affected Software1
Tenable Nessus
Tenable Nessusadded 2026/04/22 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-31478

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ksmbd: replace hardcoded hdr2len with offsetof in smb2calcmaxoutbuflen After this commit e2b76ab8b5c9 ksmbd: add support for read compound, response buffer...

9.8CVSS5.9AI score0.00502EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2026/01/09 10:48 a.m.4 views

CVE-2022-31478

The UserTakeOver plugin before 4.0.1 for ILIAS allows an attacker to list all users via the search function...

4.3CVSS6.9AI score0.00555EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/01/09 8:50 a.m.7 views

CVE-2021-31478

This vulnerability allows remote attackers to execute arbitrary code on affected installations of OpenText Brava! Desktop 16.6.3.84. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

7.8CVSS6.8AI score0.01419EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 8:45 a.m.2 views

CVE-2024-31478

Multiple unauthenticated Denial-of-Service DoS vulnerabilities exists in the Soft AP daemon accessed via the PAPI protocol. Successful exploitation of these vulnerabilites result in the ability to interrupt the normal operation of the affected Access Point...

7.5CVSS7.1AI score0.00551EPSS
Exploits0References1
Circl
Circladded 2025/04/16 10:44 p.m.6 views

CVE-2025-31478

creationtimestamp| type| source ---|---|--- 2025-04-16 22:44:20+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmxo5cirug2r 2025-04-17 00:48:19+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114350548475440645 2025-04-17 02:06:42+00:00| seen|...

8.2CVSS4.8AI score0.00312EPSS
Exploits0References3
VulnCheck KEV
VulnCheck KEVadded 2025/03/31 12:0 a.m.0 views

VulnCheck KEV: CVE-2023-31478

An issue was discovered on GL.iNet devices before 3.216. An API endpoint reveals information about the Wi-Fi configuration, including the SSID and key...

7.5CVSS5.8AI score0.29699EPSS
Exploits1References1
Cvelist
Cvelistadded 2024/05/14 10:32 p.m.13 views

CVE-2024-31478

Multiple unauthenticated Denial-of-Service DoS vulnerabilities exists in the Soft AP daemon accessed via the PAPI protocol. Successful exploitation of these vulnerabilites result in the ability to interrupt the normal operation of the affected Access Point...

5.3CVSS5.8AI score0.00551EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/05/14 10:32 p.m.14 views

CVE-2024-31478

Multiple unauthenticated Denial-of-Service DoS vulnerabilities exists in the Soft AP daemon accessed via the PAPI protocol. Successful exploitation of these vulnerabilites result in the ability to interrupt the normal operation of the affected Access Point...

5.3CVSS6.8AI score0.00551EPSS
Exploits0References1
CVE
CVEadded 2024/05/14 10:32 p.m.36 views

CVE-2024-31478

CVE-2024-31478 describes multiple unauthenticated Denial-of-Service (DoS) vulnerabilities in the Soft AP daemon (accessed via the PAPI protocol) affecting Aruba Networks ArubaOS/InstantOS. Successful exploitation can interrupt the normal operation of the affected Access Point. The connected advis...

7.5CVSS6.8AI score0.00551EPSS
Exploits0References2Affected Software2
ATTACKERKB
ATTACKERKBadded 2023/06/12 8:15 p.m.2 views

CVE-2023-33623

DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2023-31478. Reason: This record is a reservation duplicate of CVE-2023-31478. Notes: All CVE users should reference CVE-2023-31478 instead of this record. All references and descriptions in this record have been removed to prevent accidental usage...

7.5CVSS7.2AI score0.29699EPSS
Exploits1References1
NVD
NVDadded 2023/06/12 8:15 p.m.16 views

CVE-2023-33623

Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2023-31478. Reason: This record is a reservation duplicate of CVE-2023-31478. Notes: All CVE users should reference CVE-2023-31478 instead of this record. All references and descriptions in this record have been removed to prevent...

7.5AI score
Exploits0
Circl
Circladded 2023/05/10 2:14 a.m.35 views

CVE-2023-31478

creationtimestamp| type| source ---|---|--- 2023-05-10 02:14:01+00:00| seen| https://t.me/cibsecurity/63715 2025-03-25 09:20:26+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2023/CVE-2023-31478.yaml 2025-03-26 21:02:10+00:00| seen|...

7.5CVSS7.3AI score0.29699EPSS
In wildExploits1References4
Vulnrichment
Vulnrichmentadded 2023/05/09 12:0 a.m.12 views

CVE-2023-31478

An issue was discovered on GL.iNet devices before 3.216. An API endpoint reveals information about the Wi-Fi configuration, including the SSID and key...

7.5AI score0.29699EPSS
Exploits1References2
Cvelist
Cvelistadded 2023/05/09 12:0 a.m.15 views

CVE-2023-31478

An issue was discovered on GL.iNet devices before 3.216. An API endpoint reveals information about the Wi-Fi configuration, including the SSID and key...

7.7AI score0.29699EPSS
Exploits1References2
CVE
CVEadded 2023/05/09 12:0 a.m.73 views

CVE-2023-31478

GL.iNet devices prior to firmware version 3.216 are affected by CVE-2023-31478. An API endpoint (mesh status) reveals Wi‑Fi configuration data, including SSID and password, potentially enabling unauthenticated access to the wireless network. The Nuclei template and related sources corroborate thi...

7.5CVSS7.9AI score0.29699EPSS
In wildExploits1References2Affected Software1
Circl
Circladded 2022/06/21 6:27 p.m.3 views

CVE-2022-31478

creationtimestamp| type| source ---|---|--- 2022-06-21 18:27:55+00:00| seen| https://t.me/cibsecurity/44907...

4.3CVSS4.7AI score0.00555EPSS
Exploits0References1
Rows per page
Query Builder