Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

18104 matches found

Circl
Circladded 2026/04/30 7:46 p.m.3 views

CVE-2026-40595

creationtimestamp| type| source ---|---|--- 2026-04-30 19:46:10+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mkqevntsov2r 2026-04-30 21:51:53+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mkqlwhmhop2f...

7.5CVSS4.8AI score0.00275EPSS
Exploits0References2
Circl
Circladded 2026/04/30 7:20 p.m.1 views

CVE-2026-40601

creationtimestamp| type| source ---|---|--- 2026-04-30 19:20:09+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mkqdh4eymd2q 2026-04-30 19:49:00+00:00| seen| https://bsky.app/profile/cybercod.bsky.social/post/3mkqf2pttnz2b...

7.5CVSS4.8AI score0.00326EPSS
Exploits0References2
Circl
Circladded 2026/04/30 4:46 p.m.2 views

CVE-2025-14576

creationtimestamp| type| source ---|---|--- 2026-04-30 16:46:17+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mkq2tzsw5o2h...

9.3CVSS4.8AI score0.00221EPSS
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/04/30 11:30 a.m.7 views

Malicious code in blackbeards-navigator (npm)

Four pirate-themed npm packages blackbeards-navigator, beusy, sirens-lament, gunpowder-ghost were published by the npm account beusy with heavily inflated version numbers 209.0.0–210.0.0, a hallmark of dependency confusion attacks. Each package contains identical malicious lifecycle scripts...

6AI score
Exploits0References1
Circl
Circladded 2026/04/30 8:49 a.m.3 views

CVE-2026-37567

creationtimestamp| type| source ---|---|--- 2026-04-30 08:49:10+00:00| seen| https://gist.github.com/sgInnora/5aa1682c359a4f4ced53fc2408936e82...

4.8AI score
Exploits0References1
Circl
Circladded 2026/04/30 2:20 a.m.1 views

CVE-2026-7489

creationtimestamp| type| source ---|---|--- 2026-04-30 02:20:00+00:00| seen| https://www.twcert.org.tw/en/cp-139-10895-25ca1-2.html...

8.8CVSS4.8AI score0.00326EPSS
Exploits0References1
Circl
Circladded 2026/04/29 7:1 p.m.1 views

CVE-2026-0204

creationtimestamp| type| source ---|---|--- 2026-04-29 19:01:34+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mknrwybg7h2w 2026-04-29 19:18:21+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mknsuzqutq2t 2026-04-30 06:01:26+00:00| seen|...

8CVSS6AI score0.00409EPSS
Exploits0References8
CVE
CVEadded 2026/04/29 5:43 p.m.5 views

CVE-2026-26204

Wazuh versions 1.0.0–4.14.3 are affected by a heap-based out-of-bounds write in GetAlertData that writes a NULL byte 1 byte before the start of the buffer allocated by strdup, due to an unsigned underflow. This corrupts heap metadata and can allow a compromised agent to cause denial of service or...

5.5CVSS5.8AI score0.00169EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2026/04/29 5:43 p.m.21 views

CVE-2026-26204 Wazuh: Heap-based NULL WRITE Buffer Underflow in GetAlertData

Wazuh is a free and open source platform used for threat prevention, detection, and response. From version 1.0.0 to before version 4.14.4, a heap-based out-of-bounds WRITE occurs in GetAlertData, resulting in writing a NULL byte exactly 1 byte before the start of the buffer allocated by strdup. D...

4.4CVSS0.00169EPSS
Exploits1References2
ATTACKERKB
ATTACKERKBadded 2026/04/29 5:43 p.m.2 views

CVE-2026-26204

Wazuh is a free and open source platform used for threat prevention, detection, and response. From version 1.0.0 to before version 4.14.4, a heap-based out-of-bounds WRITE occurs in GetAlertData, resulting in writing a NULL byte exactly 1 byte before the start of the buffer allocated by strdup. D...

4.4CVSS5.7AI score0.00169EPSS
Exploits1References3Affected Software1
EUVD
EUVDadded 2026/04/29 5:43 p.m.3 views

EUVD-2026-26259

Wazuh is a free and open source platform used for threat prevention, detection, and response. From version 1.0.0 to before version 4.14.4, a heap-based out-of-bounds WRITE occurs in GetAlertData, resulting in writing a NULL byte exactly 1 byte before the start of the buffer allocated by strdup. D...

4.4CVSS5.7AI score0.00169EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2026/04/29 5:43 p.m.2 views

CVE-2026-26204 Wazuh: Heap-based NULL WRITE Buffer Underflow in GetAlertData

Wazuh is a free and open source platform used for threat prevention, detection, and response. From version 1.0.0 to before version 4.14.4, a heap-based out-of-bounds WRITE occurs in GetAlertData, resulting in writing a NULL byte exactly 1 byte before the start of the buffer allocated by strdup. D...

4.4CVSS5.7AI score0.00169EPSS
Exploits1References2
Circl
Circladded 2026/04/29 7:6 a.m.7 views

CVE-2026-6253

creationtimestamp| type| source ---|---|--- 2026-04-29 07:06:00+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mkmjxidnro2m 2026-04-29 07:10:54+00:00| seen| https://mastodon.social/users/bagder/statuses/116486743707813679 2026-04-29 07:11:04+00:00| seen|...

5.9CVSS5.7AI score0.00516EPSS
Exploits1References4
Circl
Circladded 2026/04/29 12:38 a.m.12 views

CVE-2026-40560

creationtimestamp| type| source ---|---|--- 2026-04-29 00:38:14+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mkluc4fnnn2x 2026-04-29 00:38:15+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mkluc5hnxw2k...

7.5CVSS4.8AI score0.00487EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/04/29 12:0 a.m.3 views

PT-2026-35961

Name of the Vulnerable Software and Affected Versions Wazuh versions 1.0.0 through 4.14.3 Description A heap-based out-of-bounds WRITE occurs in the GetAlertData function. This is caused by an unsigned integer underflow and pointer arithmetic wrapping, which results in a NULL byte being written...

4.4CVSS5.6AI score0.00169EPSS
Exploits1References5
Circl
Circladded 2026/04/28 6:38 p.m.2 views

CVE-2026-23561

creationtimestamp| type| source ---|---|--- 2026-04-28 18:38:06+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mkla62aalt24 2026-04-29 01:49:24+00:00| seen| https://www.acn.gov.it/portale/w/risolte-vulnerabilita-in-citrix-xenserver 2026-04-29 12:45:36+00:00| seen|...

4.9AI score
Exploits0References5
Circl
Circladded 2026/04/28 5:55 a.m.1 views

CVE-2026-7214

creationtimestamp| type| source ---|---|--- 2026-04-28 05:55:30+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mkjvkig2yj2x...

7.5CVSS7.3AI score0.0041EPSS
Exploits0References1
Circl
Circladded 2026/04/28 1:12 a.m.3 views

CVE-2026-30350

creationtimestamp| type| source ---|---|--- 2026-04-28 01:12:11+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mkjfpm5svr2q...

7.5CVSS4.8AI score0.00366EPSS
Exploits0References1
Packet Storm News
Packet Storm Newsadded 2026/04/28 12:0 a.m.3 views

Towards Agentic Investigation of Security Alerts

Security analysts are overwhelmed by the volume of alerts and the low context provided by many detection systems. Early-stage investigations typically require manual correlation across multiple log sources, a task that is usually time-consuming. In this paper, we present an experimental, agentic...

5.8AI score
Exploits0
Circl
Circladded 2026/04/27 9:0 a.m.3 views

CVE-2026-38935

creationtimestamp| type| source ---|---|--- 2026-04-27 09:00:04+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/81812 2026-04-27 15:00:08+00:00| published-proof-of-concept| Telegram/SPdUhd4HVoLIToB8DVWG5b4lXjNZTDUUT7OIICRBagRYmDU...

6.1CVSS4.8AI score0.00235EPSS
Exploits0References1
Rows per page
Query Builder