Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

54 matches found

Positive Technologies
Positive Technologiesadded 2025/03/08 12:0 a.m.3 views

PT-2025-10450 · Thinkware · Thinkware Car Dashcam F800 Pro

Name of the Vulnerable Software and Affected Versions: Thinkware Car Dashcam F800 Pro up to 20250226 Description: A vulnerability was found in the Connection Handler component of the Thinkware Car Dashcam F800 Pro, which can be exploited to cause a denial of service. The attack can only be...

5.3CVSS3.7AI score0.00715EPSS
Exploits1References13
RedhatCVE
RedhatCVEadded 2025/02/05 5:25 a.m.4 views

CVE-2024-1032

A vulnerability classified as critical was found in openBI up to 1.0.8. Affected by this vulnerability is the function testConnection of the file /application/index/controller/Databasesource.php of the component Test Connection Handler. The manipulation leads to deserialization. The attack can be...

9.8CVSS9.6AI score0.00765EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/02/04 10:26 p.m.12 views

CVE-2024-8862

A vulnerability, which was classified as critical, has been found in h2oai h2o-3 3.46.0.4. This issue affects the function getConnectionSafe of the file /dtale/chart-data/1 of the component JDBC Connection Handler. The manipulation of the argument query leads to deserialization. The attack may be...

9.8CVSS9.4AI score0.01328EPSS
Exploits1References1
SUSE CVE
SUSE CVEadded 2024/12/28 3:50 a.m.1 views

SUSE CVE-2024-53186

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in SMB request handling A race condition exists between SMB request handling in ksmbdconnhandlerloop and the freeing of ksmbdconn in the workqueue handler handleksmbdwork. This leads to a UAF. - KASAN:...

7.8CVSS7.8AI score0.00174EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2024/11/25 12:0 a.m.1 views

PT-2024-35633

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists between SMB request handling in ksmbd conn handler loop and the freeing of ksmbd conn in the workqueue handler handle ksmbd work. This leads to a use-after-free U...

7.8CVSS6.8AI score0.03558EPSS
Exploits1References92
OSV
OSVadded 2024/09/14 8:15 p.m.11 views

CVE-2024-8862

A vulnerability, which was classified as critical, has been found in h2oai h2o-3 3.46.0.4. This issue affects the function getConnectionSafe of the file /dtale/chart-data/1 of the component JDBC Connection Handler. The manipulation of the argument query leads to deserialization. The attack may be...

9.8CVSS7AI score
Exploits0References4
NVD
NVDadded 2024/09/14 8:15 p.m.38 views

CVE-2024-8862

A vulnerability, which was classified as critical, has been found in h2oai h2o-3 3.46.0.4. This issue affects the function getConnectionSafe of the file /dtale/chart-data/1 of the component JDBC Connection Handler. The manipulation of the argument query leads to deserialization. The attack may be...

9.8CVSS0.01328EPSS
Exploits1References4
Vulnrichment
Vulnrichmentadded 2024/09/14 7:31 p.m.15 views

CVE-2024-8862 h2oai h2o-3 JDBC Connection 1 getConnectionSafe deserialization

A vulnerability, which was classified as critical, has been found in h2oai h2o-3 3.46.0.4. This issue affects the function getConnectionSafe of the file /dtale/chart-data/1 of the component JDBC Connection Handler. The manipulation of the argument query leads to deserialization. The attack may be...

7.5CVSS7.2AI score0.01328EPSS
Exploits1References4
CVE
CVEadded 2024/09/14 7:31 p.m.82 views

CVE-2024-8862

CVE-2024-8862 affects H2O.ai H2O-3 (v3.46.0.4). A deserialization flaw in getConnectionSafe within the JDBC Connection Handler (/dtale/chart-data/1) is triggered by manipulating the query argument. Remote exploitation is possible and public Exploit details are disclosed. Connected advisories corr...

9.8CVSS7.4AI score0.01328EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologiesadded 2024/09/14 12:0 a.m.3 views

PT-2024-39280 · H2O.Ai · H2O-3

Name of the Vulnerable Software and Affected Versions: h2oai h2o-3 version 3.46.0.4 Description: A critical issue has been found in the getConnectionSafe function of the component JDBC Connection Handler, affecting the file /dtale/chart-data/1. The manipulation of the query argument leads to...

9.8CVSS7.3AI score0.01328EPSS
Exploits1References17
OSV
OSVadded 2024/02/02 9:15 p.m.1 views

CVE-2024-1193

A vulnerability was found in Navicat 12.0.29. It has been rated as problematic. This issue affects some unknown processing of the component MySQL Conecction Handler. The manipulation leads to denial of service. Attacking locally is a requirement. The exploit has been disclosed to the public and m...

5.5CVSS4.7AI score
Exploits0References3
NVD
NVDadded 2024/02/02 9:15 p.m.12 views

CVE-2024-1193

A vulnerability was found in Navicat 12.0.29. It has been rated as problematic. This issue affects some unknown processing of the component MySQL Conecction Handler. The manipulation leads to denial of service. Attacking locally is a requirement. The exploit has been disclosed to the public and m...

5.5CVSS4.4AI score0.00348EPSS
Exploits1References3
Cvelist
Cvelistadded 2024/02/02 8:31 p.m.16 views

CVE-2024-1193 Navicat MySQL Conecction denial of service

A vulnerability was found in Navicat 12.0.29. It has been rated as problematic. This issue affects some unknown processing of the component MySQL Conecction Handler. The manipulation leads to denial of service. Attacking locally is a requirement. The exploit has been disclosed to the public and m...

3.3CVSS5.7AI score0.00348EPSS
Exploits1References3
Vulnrichment
Vulnrichmentadded 2024/02/02 8:31 p.m.13 views

CVE-2024-1193 Navicat MySQL Conecction denial of service

A vulnerability was found in Navicat 12.0.29. It has been rated as problematic. This issue affects some unknown processing of the component MySQL Conecction Handler. The manipulation leads to denial of service. Attacking locally is a requirement. The exploit has been disclosed to the public and m...

3.3CVSS6.8AI score0.00348EPSS
Exploits1References3
CVE
CVEadded 2024/02/02 8:31 p.m.41 views

CVE-2024-1193

Navicat 12.0.29 is affected by a vulnerability in the MySQL Connection Handler component that can lead to a denial of service when a local attack is performed. The exploit has been disclosed publicly, and vendor responsiveness is unclear. The most concrete remediation noted in connected sources i...

5.5CVSS5.4AI score0.00348EPSS
Exploits1References3Affected Software1
CNNVD
CNNVDadded 2024/02/02 12:0 a.m.3 views

Navicat Security Breach

Navicat is a database management tool from Navicat, Inc. designed to provide a visual user interface to make it easier for users to manage database design, development and maintenance. A security vulnerability exists in Navicat version 12.0.29, which originates from the component MySQL Conecction...

5.5CVSS6.5AI score0.00348EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2024/02/02 12:0 a.m.5 views

PT-2024-17351 · Navicat · Navicat

Name of the Vulnerable Software and Affected Versions: Navicat version 12.0.29 Description: A vulnerability was found in the MySQL Connection Handler component of Navicat, which can lead to denial of service. The manipulation requires a local attack. The exploit has been disclosed to the public a...

5.5CVSS6.7AI score0.00348EPSS
Exploits1References9
OSV
OSVadded 2024/01/30 2:15 p.m.2 views

CVE-2024-1032

A vulnerability classified as critical was found in openBI up to 1.0.8. Affected by this vulnerability is the function testConnection of the file /application/index/controller/Databasesource.php of the component Test Connection Handler. The manipulation leads to deserialization. The attack can be...

9.8CVSS5.3AI score0.00765EPSS
Exploits0References3
Prion
Prionadded 2024/01/30 2:15 p.m.19 views

Deserialization of untrusted data

A vulnerability classified as critical was found in openBI up to 1.0.8. Affected by this vulnerability is the function testConnection of the file /application/index/controller/Databasesource.php of the component Test Connection Handler. The manipulation leads to deserialization. The attack can be...

7.5CVSS7.2AI score0.00765EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichmentadded 2024/01/30 1:31 p.m.10 views

CVE-2024-1032 openBI Test Connection Databasesource.php testConnection deserialization

A vulnerability classified as critical was found in openBI up to 1.0.8. Affected by this vulnerability is the function testConnection of the file /application/index/controller/Databasesource.php of the component Test Connection Handler. The manipulation leads to deserialization. The attack can be...

7.5CVSS7AI score0.00765EPSS
Exploits0References3
Rows per page
Query Builder