Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

86 matches found

NVD
NVDadded 2026/06/10 11:16 p.m.9 views

CVE-2026-46693

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-23, an attacker who can connect to a magick -distribute-cache service can hijack a file descriptor in the server process when a race condition is met. This issue ha...

4.1CVSS0.00102EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/06/10 9:47 p.m.4 views

CVE-2026-46693 ImageMagick: Race Condition in distributed pixel cache server can result in file descriptor hijacking

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-23, an attacker who can connect to a magick -distribute-cache service can hijack a file descriptor in the server process when a race condition is met. This issue ha...

4.1CVSS5.3AI score0.00102EPSS
Exploits0References1
EUVD
EUVDadded 2026/06/10 9:47 p.m.8 views

EUVD-2026-36176

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-23, an attacker who can connect to a magick -distribute-cache service can hijack a file descriptor in the server process when a race condition is met. This issue ha...

4.1CVSS5.3AI score0.00102EPSS
Exploits0References1
AlpineLinux
AlpineLinuxadded 2026/06/10 9:47 p.m.5 views

CVE-2026-46693

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-23, an attacker who can connect to a magick -distribute-cache service can hijack a file descriptor in the server process when a race condition is met. This issue ha...

4.1CVSS5.3AI score0.00102EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2026/05/29 12:0 a.m.16 views

ImageMagick < 6.9.13-48 / 7.x < 7.1.2-23 Multiple Vulnerabilities

The remote host has a version of ImageMagick installed that is prior to 6.9.13-47 or 7.x prior to 7.1.2-22. It is, therefore, affected by multiple vulnerabilities: — An attacker who can connect to a magick -distribute-cache service can hijack a file descriptor in the server process when a race...

5.7CVSS6AI score0.00146EPSS
Exploits0References6
Positive Technologies
Positive Technologiesadded 2026/05/21 12:0 a.m.11 views

PT-2026-42812

Name of the Vulnerable Software and Affected Versions ImageMagick affected versions not specified Description A race condition in the magick -distribute-cache service allows a remote attacker to hijack a file descriptor within the server process. Recommendations At the moment, there is no...

7.5CVSS5.5AI score0.01381EPSS
Exploits2References67
Tenable Nessus
Tenable Nessusadded 2026/01/20 12:0 a.m.4 views

MiracleLinux 7 : open-vm-tools-11.0.5-3.el7.9 (AXSA:2023-6579:12)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6579:12 advisory. open-vm-tools: SAML token signature bypass CVE-2023-34058 open-vm-tools: file descriptor hijack vulnerability in the vmware-user-suid-wrapper...

7.5CVSS5.7AI score0.00667EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/01/19 12:0 a.m.3 views

MiracleLinux 9 : open-vm-tools-12.3.5-2.el9 (AXBA:2024-8096:03)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXBA:2024-8096:03 advisory. - VMware Tools contains a SAML token signature bypass vulnerability. A malicious actor that has been granted Guest Operation Privileges...

7.5CVSS6.1AI score0.00667EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2023-38173

Malicious code in bioql PyPI...

7.4CVSS6.4AI score0.00402EPSS
Exploits0References10
Tenable Nessus
Tenable Nessusadded 2025/05/14 12:0 a.m.5 views

Alibaba Cloud Linux 3 : 0140: open-vm-tools (ALINUX3-SA-2023:0140)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2023:0140 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2023-34058: VMware Tools contains a SA...

7.5CVSS6.5AI score0.00667EPSS
Exploits0References3
OpenVAS
OpenVASadded 2024/03/15 12:0 a.m.17 views

Mageia: Security Advisory (MGASA-2024-0058)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.9AI score0.13638EPSS
Exploits0References10
OSV
OSVadded 2024/03/14 5:25 p.m.6 views

MGASA-2024-0058 Updated open-vm-tools packages fix security vulnerabilities

The updated packages fix security vulnerabilities: Authentication bypass vulnerability in the vgauth module. CVE-2023-20867 SAML token signature bypass. CVE-2023-34058 File descriptor hijack vulnerability in the vmware-user-suid-wrapper. CVE-2023-34059...

7.5CVSS6.3AI score0.13638EPSS
Exploits0References7
Mageia
Mageiaadded 2024/03/14 5:25 p.m.50 views

Updated open-vm-tools packages fix security vulnerabilities

The updated packages fix security vulnerabilities: Authentication bypass vulnerability in the vgauth module. CVE-2023-20867 SAML token signature bypass. CVE-2023-34058 File descriptor hijack vulnerability in the vmware-user-suid-wrapper. CVE-2023-34059...

7.5CVSS7.5AI score0.13638EPSS
Exploits0References6
OpenVAS
OpenVASadded 2024/03/05 12:0 a.m.27 views

CentOS: Security Advisory for open-vm-tools (CESA-2023:7279)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.4AI score0.00667EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2024/02/20 12:0 a.m.72 views

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-6.5.5.5)

The version of AOS installed on the remote host is prior to 6.5.5.5. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-6.5.5.5 advisory. - A use-after-free vulnerability in the Linux kernel's net/sched: clsu32 component can be exploited to achieve local privileg...

7.8CVSS7.4AI score0.11946EPSS
Exploits14References24
Tenable Nessus
Tenable Nessusadded 2024/01/26 12:0 a.m.36 views

RHEL 8 : open-vm-tools (RHSA-2023:7264)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:7264 advisory. The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualizati...

7.5CVSS6.7AI score0.00667EPSS
Exploits0References6
Cent OS
Cent OSadded 2024/01/12 7:15 p.m.973 views

open security update

CentOS Errata and Security Advisory CESA-2023:7279 An update for open-vm-tools is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

7.5CVSS6.7AI score0.00667EPSS
Exploits0References7
Tenable Nessus
Tenable Nessusadded 2023/12/22 12:0 a.m.60 views

CentOS 7 : open-vm-tools (RHSA-2023:7279)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:7279 advisory. - VMware Tools contains a SAML token signature bypass vulnerability. A malicious actor that has been granted Guest Operation Privileges...

7.5CVSS6.5AI score0.00667EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2023/12/06 12:0 a.m.23 views

Ubuntu 16.04 ESM / 18.04 ESM : Open VM Tools vulnerabilities (USN-6463-2)

The remote Ubuntu 16.04 ESM / 18.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6463-2 advisory. USN-6463-1 fixed vulnerabilities in Open VM Tools. This update provides the corresponding updates for Ubuntu 16.04 LTS and Ubuntu 18.04 LTS...

7.5CVSS6.5AI score0.00667EPSS
Exploits0References3
OSV
OSVadded 2023/11/28 10:43 p.m.25 views

RLSA-2023:7265 Important: open-vm-tools security update

The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualization components that enhance performance and user experience of virtual machines. Security Fixes: open-vm-tools: SAML token signature bypass CVE-2023-34058...

7.5CVSS7.5AI score0.00667EPSS
Exploits0References3
Rows per page
Query Builder