CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Wiz blog•added 2026/05/18 11:0 a.m.•7 views

From Cryptographic Blind Spots to Post-Quantum Agility: Introducing Wiz for PQC Readiness

Eliminate cryptographic blind spots and neutralize legacy debt with an integrated cryptographic asset inventory. Identify risks across code, cloud, and runtime, using the Wiz Security Graph to prioritize migration and protect against "Harvest Now, Decrypt Later" attacks...

5.8AI score

Hive Pro Threat Advisories•added 2026/04/13 5:49 a.m.•2 views

What Is CAASM? Cyber Asset Attack Surface Management Explained

Your security team runs scans from five different tools. Each one gives you a different number of assets, a different count of vulnerabilities, and a different view of your risk. Meanwhile, your CMDB is outdated, shadow IT keeps expanding, and nobody can confidently answer a basic question: "What...

5.9AI score

Tenable Nessus•added 2026/03/26 12:0 a.m.•0 views

Langflow Detection

A Langflow Python library is installed on the remote host. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid303796; scriptversion"1.1"; scriptsetattributeattribute:"pluginmodificationdate", value:"2026/03/26"; scriptnameenglish:"Langflow Detection";...

5.9AI score

Qualys Blog•added 2026/03/10 3:0 p.m.•6 views

From Shadow Models to Audit-Ready AI Security: A Practical Path with Qualys TotalAI

Key Takeaways AI security demands a paradigm shift, treating models, endpoints, and integrations as dynamic attack surfaces requiring continuous governance. Inventory-driven visibility is foundational to managing AI sprawl, uncovering hidden assets, and aligning security with innovation velocity...

5.8AI score

CNNVD•added 2026/02/20 12:0 a.m.•4 views

Tanium Asset 安全漏洞

Tanium Asset is an IT asset inventory and management software developed by the American company Tanium. Tanium Asset has a security vulnerability, which stems from improper handling of SQL injections...

8.8CVSS5.8AI score0.00015EPSS

Hive Pro Threat Advisories•added 2026/02/10 3:50 a.m.•5 views

7 Steps to Improve Cyber Exposure Visibility

Attackers don’t look for the strongest part of your defense; they look for the one you forgot about. An unmanaged server, a misconfigured cloud service, or an employee’s unsecured home device can become their front door. Poor cyber exposure visibility creates these hidden entry points. The best w...

5.7AI score

CNNVD•added 2026/01/29 12:0 a.m.•2 views

Tanium Asset security vulnerabilities

Tanium Asset is an IT asset inventory and management software developed by the American company Tanium. Tanium Asset has a security vulnerability that can be exploited by SQL injection attacks...

8.8CVSS5.8AI score0.00018EPSS

Hive Pro Threat Advisories•added 2025/11/04 7:35 p.m.•3 views

What Is Attack Surface Mapping And Why It’s Critical To your Security Program

You might think an attack surface mapper is just another name for a vulnerability scanner, but they serve two very different purposes. A scanner tests the assets you already know about for specific weaknesses. An attack surface mapper answers a more fundamental question: What assets do I even hav...

7.1AI score

Hive Pro Threat Advisories•added 2025/10/27 5:20 p.m.•3 views

Cloud Attack Surface Management Mapping 101

Before an attacker launches an assault, they do their homework. Their first step is to meticulously map your digital footprint, searching for the path of least resistance—an exposed database, an unpatched server, or a forgotten subdomain. The reality is that your attack surface is already being...

6.9AI score

CISA•added 2025/09/29 12:0 p.m.•4 views

CISA and UK NCSC Release Joint Guidance for Securing OT Systems

CISA, in collaboration with the Federal Bureau of Investigation, the United Kingdom’s National Cyber Security Centre, and other international partners has released new joint cybersecurity guidance: Creating and Maintaining a Definitive View of Your Operational Technology OT Architecture. Building...

6.9AI score

Exploits0References3

Packet Storm News•added 2025/08/13 12:0 a.m.•2 views

CISA: Foundations for OT Cybersecurity: Asset Inventory Guidance for Owners and Operators

This guidance outlines a process for OT owners and operators to create an asset inventory and OT taxonomy. This process includes defining scope and objectives for the inventory, identifying assets, collecting attributes, creating a taxonomy, managing data, and implementing asset life cycle...

6.9AI score

The Hacker News•added 2025/06/24 11:0 a.m.•2 views

Between Buzz and Reality: The CTEM Conversation We All Need

I had the honor of hosting the first episode of the Xposure Podcast live from Xposure Summit 2025. And I couldn't have asked for a better kickoff panel: three cybersecurity leaders who don't just talk security, they live it. Let me introduce them. Alex Delay , CISO at IDB Bank, knows what it mean...

6.8AI score

Hive Pro Threat Advisories•added 2025/05/11 1:0 p.m.•2 views

The Pressure Is Building: Why CAASM Is Becoming a Strategic and Regulatory Imperative

Running short on time but still want to stay in the know? Well, we’ve got you covered! We’ve condensed all the key takeaways into a handy audio summary. Our AI-driven podcasts are fit for on the go. Click right here to hear it all on CAASM & CDMB Inefficiencies! Some things in cybersecurity becom...

7AI score

BDU FSTEC•added 2025/04/15 12:0 a.m.•1 views

The vulnerability of the GLPI system’s request, incident, and asset inventory management processes, related to the lack of measures taken to protect the website structure, allows attackers to carry out attacks using cross-site scripting (XSS).

The vulnerability of the GLPI system’s request, incident, and asset inventory management functions is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows attackers who operate remotely to carry out attacks using cross-site scripting XSS...

7.8CVSS5.2AI score0.0051EPSS

Tenable Nessus•added 2025/03/07 12:0 a.m.•5 views

Gradio UI Detection

The remote web server hosts Gradio UI web application %NASLMINLEVEL 80900 Tenable, Inc. include'compat.inc'; if description scriptid232290; scriptversion"1.3"; scriptsetattributeattribute:"pluginmodificationdate", value:"2026/03/18"; scriptnameenglish:"Gradio UI Detection";...

5.8AI score

The Hacker News•added 2025/02/12 11:20 a.m.•16 views

How to Steer AI Adoption: A CISO Guide

CISOs are finding themselves more involved in AI teams, often leading the cross-functional effort and AI strategy. But there aren't many resources to guide them on what their role should look like or what they should bring to these meetings. We've pulled together a framework for security leaders ...

7.2AI score

BDU FSTEC•added 2025/01/16 12:0 a.m.•2 views

The vulnerability of the GLPI system’s request, incident, and computer equipment inventory management functions is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks...

5.5CVSS5.4AI score0.01826EPSS

BDU FSTEC•added 2025/01/16 12:0 a.m.•1 views

The vulnerability of the GLPI system’s request, incident, and computer equipment inventory management systems lies in the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks...

5.5CVSS5.4AI score0.00393EPSS

BDU FSTEC•added 2025/01/16 12:0 a.m.•1 views

5.5CVSS5.4AI score0.01514EPSS