Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9349 matches found

Amazon
Amazonadded 2025/09/15 12:0 a.m.5 views

Important: microcode_ctl

Issue Overview: A potential security vulnerability in some Intelr Processors may allow information disclosure. Intel is releasing microcode updates and prescriptive guidance to mitigate this potential vulnerability. Info:...

7.8CVSS7.3AI score0.00371EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2025/09/15 12:0 a.m.5 views

Amazon Linux 2023 : microcode_ctl (ALAS2023-2025-1190)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-1190 advisory. Improper buffer restrictions for some IntelR XeonR Processor firmware with SGX enabled may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2025-2005...

7.2CVSS7.2AI score0.00143EPSS
Exploits0References8
Amazon
Amazonadded 2025/09/15 12:0 a.m.3 views

Important: kernel-livepatch-6.1.141-167.250

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: ACPICA: Refuse to evaluate a method if arguments are missing CVE-2025-38386 Affected Packages: kernel-livepatch-6.1.141-167.250 Issue Correction: Please ensure you have live patching enabled. Run dnf update...

5.5CVSS6.4AI score0.00166EPSS
Exploits0
Amazon
Amazonadded 2025/09/15 12:0 a.m.5 views

Important: kernel-livepatch-6.12.35-55.103

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: ACPICA: Refuse to evaluate a method if arguments are missing CVE-2025-38386 Affected Packages: kernel-livepatch-6.12.35-55.103 Issue Correction: Please ensure you have live patching enabled. Run dnf update...

5.5CVSS6.4AI score0.00166EPSS
Exploits0
Amazon
Amazonadded 2025/09/15 12:0 a.m.3 views

Important: kernel-livepatch-6.12.31-35.92

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: ACPICA: Refuse to evaluate a method if arguments are missing CVE-2025-38386 Affected Packages: kernel-livepatch-6.12.31-35.92 Issue Correction: Please ensure you have live patching enabled. Run dnf update...

5.5CVSS6.4AI score0.00166EPSS
Exploits0
Amazon
Amazonadded 2025/09/15 12:0 a.m.4 views

Important: kernel-livepatch-6.1.140-154.222

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: ACPICA: Refuse to evaluate a method if arguments are missing CVE-2025-38386 Affected Packages: kernel-livepatch-6.1.140-154.222 Issue Correction: Please ensure you have live patching enabled. Run dnf update...

5.5CVSS6.4AI score0.00166EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2025/09/15 12:0 a.m.6 views

Amazon Linux 2023 : httpd, httpd-core, httpd-devel (ALAS2023-2025-1183)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1183 advisory. A bug in Apache HTTP Server 2.4.64 results in all RewriteCond expr ... tests evaluating as true. Users are recommended to upgrade to version 2.4.65, which fixes the issue. CVE-2025-54090 Tenable has...

6.3CVSS7.2AI score0.00691EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2025/09/15 12:0 a.m.9 views

Amazon Linux 2023 : libsoup, libsoup-devel (ALAS2023-2025-1187)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1187 advisory. A flaw was found in libsoup. The SoupWebsocketConnection may accept a large WebSocket message, which may cause libsoup to allocate memory and lead to a denial of service DoS. CVE-2025-32049 Tenable has...

7.5CVSS7.2AI score0.00728EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2025/09/15 12:0 a.m.7 views

Amazon Linux 2023 : mod_auth_openidc (ALAS2023-2025-1188)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1188 advisory. modauthopenidc is an OpenID Certified authentication and authorization module for the Apache 2.x HTTP server that implements the OpenID Connect Relying Party functionality. Prior to 2.4.16.11, a bug in...

8.2CVSS6.2AI score0.00542EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2025/09/15 12:0 a.m.5 views

Amazon Linux 2023 : compat-libpthread-nonshared, glibc, glibc-all-langpacks (ALAS2023-2025-1179)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1179 advisory. The regcomp function in the GNU C library version from 2.4 to 2.41 is subject to a double free if some previous allocation fails. It can be accomplished either by a malloc failure or by using an...

5.9CVSS6.6AI score0.00158EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2025/09/15 12:0 a.m.3 views

Amazon Linux 2023 : libudisks2, libudisks2-devel, udisks2 (ALAS2023-2025-1178)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1178 advisory. A flaw was found in the Udisks daemon, where it allows unprivileged users to create loop devices using the D-BUS system. This is achieved via the loop device handler, which handles requests sent throug...

8.5CVSS5.8AI score0.0065EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2025/09/15 12:0 a.m.3 views

Amazon Linux 2023 : wireshark-cli, wireshark-devel (ALAS2023-2025-1175)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1175 advisory. SSH dissector crash in Wireshark 4.4.0 to 4.4.8 allows denial of service CVE-2025-9817 Tenable has extracted the preceding description block directly from the tested product security advisory. Note tha...

7.8CVSS5.4AI score0.00194EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2025/09/09 12:0 a.m.2 views

Amazon Linux 2023 : cups, cups-client, cups-devel (ALAS2023-2025-883)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-883 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks ...

5.5AI score
Exploits0References2
Amazon
Amazonadded 2025/09/08 12:0 a.m.2 views

Important: kernel-livepatch-6.12.25-32.101

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: bridge: mcast: Fix use-after-free during router port configuration CVE-2025-38248 Affected Packages: kernel-livepatch-6.12.25-32.101 Issue Correction: Please ensure you have live patching enabled. Run dnf update...

7.8CVSS6.5AI score0.00248EPSS
Exploits1
Amazon
Amazonadded 2025/09/08 12:0 a.m.1 views

Important: kernel-livepatch-6.1.144-170.251

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: bridge: mcast: Fix use-after-free during router port configuration CVE-2025-38248 Affected Packages: kernel-livepatch-6.1.144-170.251 Issue Correction: Please ensure you have live patching enabled. Run dnf update...

7.8CVSS6.5AI score0.00248EPSS
Exploits1
Amazon
Amazonadded 2025/09/08 12:0 a.m.7 views

Medium: perl-Authen-SASL

Issue Overview: Authen::SASL::Perl::DIGESTMD5 versions 2.04 through 2.1800 for Perl generates the cnonce insecurely. The cnonce client nonce is generated from an MD5 hash of the PID, the epoch time and the built-in rand function. The PID will come from a small set of numbers, and the epoch time m...

6.5CVSS6.8AI score0.00394EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2025/09/08 12:0 a.m.7 views

Amazon Linux 2023 : libssh, libssh-config, libssh-devel (ALAS2023-2025-1155)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-1155 advisory. The privatekeyfromfile uses an uninitialized variable under certainconditions, such as if the file specified by the filename argument doesn'texist. This causes the code to return an invalid...

8.1CVSS6.8AI score0.02394EPSS
Exploits0References10
Amazon
Amazonadded 2025/09/08 12:0 a.m.3 views

Important: golang

Issue Overview: os/exec: LookPath may return unexpected paths. If the PATH environment variable contains paths which are executables rather than just directories, passing certain strings to LookPath "", ".", and "..", can result in the binaries listed in the PATH being unexpectedly returned...

7CVSS6.7AI score0.00489EPSS
Exploits1
Tenable Nessus
Tenable Nessusadded 2025/09/08 12:0 a.m.5 views

Amazon Linux 2023 : taglib, taglib-devel (ALAS2023-2025-1174)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1174 advisory. TagLib before 2.0 allows a segmentation violation and application crash during tag writing via a crafted WAV file in which an id3 chunk is the only valid chunk. CVE-2023-47466 Tenable has extracted the...

7.1CVSS5.4AI score0.00257EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2025/09/08 12:0 a.m.6 views

Amazon Linux 2023 : golang, golang-bin, golang-misc (ALAS2023-2025-1161)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-1161 advisory. os/exec: LookPath may return unexpected paths. If the PATH environment variable contains paths which are executables rather than just directories, passing certain strings to LookPath , ., and...

7CVSS6.8AI score0.00489EPSS
Exploits1References6
Rows per page
Query Builder