Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

11 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 12:29 p.m.3 views

CVE-2023-40641

In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed...

5.5CVSS6.3AI score0.00016EPSS
Exploits0References1
EUVD
EUVDadded 2025/11/10 4:5 a.m.4 views

EUVD-2025-40641

Malicious code in andi-takokak2-ruro npm...

6.6AI score
Exploits0
Circl
Circladded 2025/09/08 3:4 p.m.5 views

CVE-2025-40641

creationtimestamp| type| source ---|---|--- 2025-09-08 15:04:20+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lydi2cp6h42r...

5.1CVSS4.8AI score0.00258EPSS
Exploits0References1
OSV
OSVadded 2025/08/14 6:52 p.m.2 views

MAL-2025-40641 Malicious code in yucca-falcon-eto835-project (npm)

The package yucca-falcon-eto835-project was found to contain malicious code...

7.2AI score
Exploits0
RedhatCVE
RedhatCVEadded 2025/02/04 11:39 p.m.13 views

CVE-2024-40641

Nuclei is a fast and customizable vulnerability scanner based on simple YAML based DSL. In affected versions it a way to execute code template without -code option and signature has been discovered. Some web applications inherit from Nuclei and allow users to edit and execute workflow files. In...

7.4CVSS7.6AI score0.00048EPSS
Exploits0
Cvelist
Cvelistadded 2024/07/17 5:34 p.m.25 views

CVE-2024-40641 Unsigned code template execution through workflows in projectdiscovery/nuclei

Nuclei is a fast and customizable vulnerability scanner based on simple YAML based DSL. In affected versions it a way to execute code template without -code option and signature has been discovered. Some web applications inherit from Nuclei and allow users to edit and execute workflow files. In...

7.4CVSS0.00048EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/07/17 5:34 p.m.16 views

CVE-2024-40641 Unsigned code template execution through workflows in projectdiscovery/nuclei

Nuclei is a fast and customizable vulnerability scanner based on simple YAML based DSL. In affected versions it a way to execute code template without -code option and signature has been discovered. Some web applications inherit from Nuclei and allow users to edit and execute workflow files. In...

7.4CVSS7.5AI score0.00048EPSS
Exploits0References1
Circl
Circladded 2024/07/17 5:19 p.m.2 views

CVE-2024-40641

creationtimestamp| type| source ---|---|--- 2024-07-17 17:19:36+00:00| published-proof-of-concept| https://github.com/projectdiscovery/nuclei/security/advisories/GHSA-c3q9-c27p-cw9h 2024-07-17 20:44:02+00:00| seen| https://t.me/cvedetector/1111...

7.4CVSS5.7AI score0.00048EPSS
Exploits0References2
CVE
CVEadded 2023/10/08 3:36 a.m.35 views

CVE-2023-40641

The vulnerability CVE-2023-40641 affects the Messaging component (notably on UNISOC chipsets per linked sources). The issue is a missing permission check in Messaging which could allow local information disclosure without requiring additional execution privileges. The cited sources collectively d...

5.5CVSS5.2AI score0.00016EPSS
Exploits0References1Affected Software1
OSV
OSVadded 2022/09/15 4:15 p.m.1 views

CVE-2022-40641

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ansys SpaceClaim 2022 R1. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsi...

7.8CVSS6.2AI score
Exploits0References1
CVE
CVEadded 2022/09/15 3:26 p.m.52 views

CVE-2022-40641

CVE-2022-40641 affects Ansys SpaceClaim 2022 R1. The issue is an out-of-bounds write in the parsing of X_B files, caused by inadequate validation of user-supplied data, which can allow code execution in the context of the current process. Exploitation requires user interaction (the target must vi...

7.8CVSS7.8AI score0.0021EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder