Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

20 matches found

EUVD
EUVDadded 2025/11/10 5:18 a.m.0 views

EUVD-2025-42323

Malicious code in putri-tempe41-sukiwir npm...

6.6AI score
Exploits0
RedhatCVE
RedhatCVEadded 2025/05/23 7:54 a.m.7 views

CVE-2024-42323

SnakeYaml Deser Load Malicious xml rce vulnerability in Apache HertzBeat incubating. This vulnerability can only be exploited by authorized attackers. This issue affects Apache HertzBeat incubating: before 1.6.0. Users are recommended to upgrade to version 1.6.0, which fixes the issue...

8.8CVSS6.8AI score0.75553EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2025/05/23 1:9 a.m.6 views

CVE-2022-42323

Xenstore: Cooperating guests can create arbitrary numbers of nodes This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Since the fix of XSA-322 any Xenstore node owned by a removed domain will be modified to be owned by...

5.5CVSS6.4AI score0.0004EPSS
Exploits0References1
Circl
Circladded 2024/09/21 1:18 p.m.0 views

CVE-2024-42323

creationtimestamp| type| source ---|---|--- 2024-09-21 13:18:31+00:00| seen| https://t.me/cvedetector/6141...

8.8CVSS4.8AI score0.75553EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/09/21 9:30 a.m.23 views

CVE-2024-42323 Apache HertzBeat: RCE by snakeYaml deser load malicious xml

SnakeYaml Deser Load Malicious xml rce vulnerability in Apache HertzBeat incubating. This vulnerability can only be exploited by authorized attackers. This issue affects Apache HertzBeat incubating: before 1.6.0. Users are recommended to upgrade to version 1.6.0, which fixes the issue...

6.9AI score0.75553EPSS
Exploits0References2
Cvelist
Cvelistadded 2024/09/21 9:30 a.m.15 views

CVE-2024-42323 Apache HertzBeat: RCE by snakeYaml deser load malicious xml

SnakeYaml Deser Load Malicious xml rce vulnerability in Apache HertzBeat incubating. This vulnerability can only be exploited by authorized attackers. This issue affects Apache HertzBeat incubating: before 1.6.0. Users are recommended to upgrade to version 1.6.0, which fixes the issue...

0.75553EPSS
Exploits0References2
CVE
CVEadded 2024/09/21 9:30 a.m.62 views

CVE-2024-42323

Apache HertzBeat (incubating) before version 1.6.0 is affected by a SnakeYAML deserialization vulnerability that enables remote code execution. The issue stems from insecure deserialization of YAML/XML data and is exploitable by authorized attackers. Upgrade to 1.6.0 to fix the issue.

8.8CVSS8.7AI score0.75553EPSS
Exploits0References3Affected Software1
Circl
Circladded 2023/10/31 1:20 a.m.1 views

CVE-2023-42323

creationtimestamp| type| source ---|---|--- 2023-10-31 01:20:22+00:00| seen| https://t.me/cibsecurity/73190...

8.8CVSS8.1AI score0.00871EPSS
Exploits1References1
CVE
CVEadded 2023/10/30 12:0 a.m.35 views

CVE-2023-42323

CVE-2023-42323 affects DouHaocms v3.3. The CSRF flaw in adminAction.class.php enables a remote attacker to execute arbitrary code. CVSS v3.1 base score 8.8 (Network, Low attack complexity, No privileges, User interaction required; Confidentiality/Integrity/Availability High). No official patch/ve...

8.8CVSS8.9AI score0.00871EPSS
Exploits1References1Affected Software1
OpenVAS
OpenVASadded 2022/12/07 12:0 a.m.32 views

SUSE: Security Advisory (SUSE-SU-2022:4332-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.9AI score0.00099EPSS
Exploits0References13
OpenVAS
OpenVASadded 2022/11/29 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2022:4241-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7AI score0.00099EPSS
Exploits0References15
OpenVAS
OpenVASadded 2022/11/24 12:0 a.m.27 views

Fedora: Security Advisory for xen (FEDORA-2022-9f51d13fa3)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS6.7AI score0.00099EPSS
Exploits0References2
OpenVAS
OpenVASadded 2022/11/18 12:0 a.m.32 views

SUSE: Security Advisory (SUSE-SU-2022:4051-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.9AI score0.00099EPSS
Exploits0References12
OpenVAS
OpenVASadded 2022/11/15 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2022:3971-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7AI score0.00099EPSS
Exploits0References18
Debian
Debianadded 2022/11/06 8:0 p.m.35 views

[SECURITY] [DSA 5272-1] xen security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5272-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff November 06, 2022 https://www.debian.org/security/faq -...

8.8CVSS7.7AI score0.00099EPSS
Exploits0
Circl
Circladded 2022/11/01 3:13 p.m.0 views

CVE-2022-42323

creationtimestamp| type| source ---|---|--- 2022-11-01 15:13:58+00:00| seen| https://t.me/cibsecurity/52358...

5.5CVSS5.4AI score0.0004EPSS
Exploits0References1
CVE
CVEadded 2022/11/01 12:0 a.m.82 views

CVE-2022-42323

CVE-2022-42323 concerns Xenstore in the Xen hypervisor. The issue arises after the XSA-322 fix: any Xenstore node owned by a removed domain is reassigned to Dom0, enabling two cooperating guests to create an unbounded number of Xenstore nodes. This can exhaust Xenstore quota and lead to denial of...

5.5CVSS6.5AI score0.0004EPSS
Exploits0References8Affected Software1
NVD
NVDadded 2021/11/10 1:19 a.m.12 views

CVE-2021-42323

Azure RTOS Information Disclosure Vulnerability...

3.3CVSS0.00814EPSS
Exploits0References1
CVE
CVEadded 2021/11/10 12:47 a.m.63 views

CVE-2021-42323

CVE-2021-42323: Azure RTOS Information Disclosure Vulnerability. Affects Azure RTOS; allows access to sensitive data with local access and user interaction required (CVSS v3.1 3.3, LOW). No explicit root cause details in the provided documents. Mitigation: install the Microsoft MSRC advisory upda...

3.3CVSS3.9AI score0.00814EPSS
Exploits0References1Affected Software1
NCSC
NCSCadded 2021/11/09 12:0 a.m.2 views

Vulnerabilities fixed in Microsoft Azure products

Microsoft has fixed vulnerabilities in Azure products. The vulnerabilities allow a malicious party to gain elevated permissions and to obtain sensitive data. Azure RTOS: |----------------|------|-------------------------------------| | CVE ID | CVSS | Impact |...

7.2CVSS6.4AI score0.01134EPSS
Exploits0
Rows per page
Query Builder