Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

25 matches found

OSV
OSVadded 3 days ago2 views

ROOT-OS-DEBIAN-13-CVE-2025-40156 CVE-2025-40156 in rootio-linux - Patched by Root

Root has patched CVE-2025-40156 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...

5.4AI score0.00034EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2026/04/13 7:23 p.m.2 views

CVE-2026-40156

PraisonAI is a multi-agent teams system. Prior to 4.5.128, PraisonAI automatically loads a file named tools.py from the current working directory to discover and register custom agent tools. This loading process uses importlib.util.specfromfilelocation and immediately executes module-level code v...

7.8CVSS6.4AI score0.00027EPSS
Exploits0References1
CVE
CVEadded 2026/04/10 4:46 p.m.7 views

CVE-2026-40156

PraisonAI before 4.5.128 loads a file named tools.py from the CWD using importlib, executing module-level code without explicit consent, validation, or sandboxing. Merely having tools.py in the working directory triggers code execution, bypassing configuration references. This creates a local, im...

7.8CVSS6.4AI score0.00027EPSS
Exploits0References1Affected Software1
Circl
Circladded 2026/04/10 8:17 a.m.0 views

CVE-2026-40156

creationtimestamp| type| source ---|---|--- 2026-04-10 08:17:13+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-40156 2026-04-10 18:24:43+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mj5wzmfruc23 2026-04-10 19:31:07+00:00|...

7.8CVSS5.7AI score0.00027EPSS
Exploits0References4
OSV
OSVadded 2025/11/14 6:5 a.m.1 views

BELL-CVE-2025-40156

Bulletin has no description...

6.9AI score0.00034EPSS
Exploits0References1
Circl
Circladded 2025/11/12 1:18 p.m.4 views

CVE-2025-40156

creationtimestamp| type| source ---|---|--- 2025-11-12 13:18:46+00:00| seen| https://gist.github.com/Darkcrai86/105d19e6501e0219b7212a0067173444 2026-04-02 17:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0397/ 2026-04-07 18:00:00+00:00| seen|...

5.8AI score0.00034EPSS
Exploits0References4
Debian CVE
Debian CVEadded 2025/11/12 10:23 a.m.3 views

CVE-2025-40156

In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: mtk-cci: Fix potential error pointer dereference in probe The drv-sramreg pointer could be set to ERRPTR-EPROBEDEFER which would lead to a error pointer dereference. Use ISERRORNULL to check that the pointer is vali...

5.1AI score0.00034EPSS
Exploits0
EUVD
EUVDadded 2025/11/10 4:5 a.m.1 views

EUVD-2025-40156

Malicious code in cici-tempe69-ruro npm...

6.6AI score
Exploits0
RedhatCVE
RedhatCVEadded 2025/05/23 4:44 a.m.3 views

CVE-2023-40156

Uncontrolled search path element in some IntelR SSU software before version 3.0.0.2 may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8CVSS7.1AI score0.00152EPSS
Exploits0References1
Circl
Circladded 2024/02/14 5:3 p.m.0 views

CVE-2023-40156

creationtimestamp| type| source ---|---|--- 2024-02-14 17:03:14+00:00| seen| https://t.me/ctinow/184819 2024-03-06 14:41:29+00:00| seen| https://t.me/ctinow/201400...

7.8CVSS6.4AI score0.00152EPSS
Exploits0References2
OSV
OSVadded 2024/02/14 2:16 p.m.0 views

CVE-2023-40156

Uncontrolled search path element in some IntelR SSU software before version 3.0.0.2 may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8CVSS5.8AI score
Exploits0References1
NVD
NVDadded 2024/02/14 2:16 p.m.6 views

CVE-2023-40156

Uncontrolled search path element in some IntelR SSU software before version 3.0.0.2 may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8CVSS6.7AI score0.00152EPSS
Exploits0References1
CVE
CVEadded 2024/02/14 1:38 p.m.27 views

CVE-2023-40156

CVE-2023-40156 affects Intel® System Support Utility (SSU) for Windows prior to 3.0.0.2. The vulnerability stems from an uncontrolled search path element, potentially allowing an authenticated local attacker to escalate privileges. Intel’s advisory confirms the vulnerable product and recommends u...

7.8CVSS6.7AI score0.00152EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2024/02/14 1:38 p.m.9 views

CVE-2023-40156

Uncontrolled search path element in some IntelR SSU software before version 3.0.0.2 may allow an authenticated user to potentially enable escalation of privilege via local access...

6.7CVSS6.8AI score0.00152EPSS
Exploits0References1
Intel
Inteladded 2024/02/13 12:0 a.m.4 views

Intel® SSU Software Advisory

Summary: A potential security vulnerability in some Intel® System Support Utility SSU software may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2023-40156 Description: Uncontrolled search path elemen...

7.8CVSS7.1AI score0.00152EPSS
Exploits0
RedHat Linux
RedHat Linuxadded 2023/06/15 3:23 p.m.59 views

Important: Red Hat Security Advisory: Red Hat Integration Camel for Spring Boot 3.18.3 Patch 2 release

Camel for Spring Boot 3.18.3 Patch 2 release and security update is now available. Red Hat Product Security has rated this update as having an impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

9.8CVSS6.8AI score0.05991EPSS
Exploits15References18
IBM Security Bulletins
IBM Security Bulletinsadded 2023/04/30 9:15 p.m.43 views

Security Bulletin: IBM Tivoli Business Service Manager is vulnerable to a denial of service attack due to FasterXML Woodstox

Summary FasterXML Woodstox is shipped with IBM Tivoli Business Manager 6.2.0 as part of its XML processor insfrastructure. Information about security vulnerabilities affecting FasterXML Woodstox has been published in a security bulletin. Vulnerability Details CVEID:CVE-2022-40151 DESCRIPTION:...

7.5CVSS7.5AI score0.00803EPSS
Exploits2Affected Software1
RedHat Linux
RedHat Linuxadded 2023/01/26 9:42 a.m.59 views

Moderate: Red Hat Security Advisory: Red Hat Integration Camel Extensions For Quarkus 2.13.2

Red Hat Integration Camel Extensions for Quarkus 2.13.2 is now available. The purpose of this text-only errata is to inform you about the security issues fixed. Red Hat Product Security has rated this update as having an impact of Moderate. A Common Vulnerability Scoring System CVSS base score,...

9.8CVSS7AI score0.94251EPSS
Exploits46References14
RedhatCVE
RedhatCVEadded 2022/10/13 3:31 p.m.41 views

CVE-2022-40156

A flaw was found in the XStream package. This flaw allows an attacker to cause a denial of service DoS in its target via XML serialization...

7.5CVSS7.1AI score
Exploits0References3
Circl
Circladded 2022/09/16 2:41 p.m.0 views

CVE-2022-40156

creationtimestamp| type| source ---|---|--- 2022-09-16 14:41:42+00:00| seen| https://t.me/cibsecurity/49899...

7.8AI score
Exploits0References1
Rows per page
Query Builder