Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2026/03/09 7:11 p.m.1 views

CVE-2026-29186

A flaw was found in Backstage. The backstage/plugin-techdocs-node package uses an allowlist to filter dangerous MkDocs configuration keys during the documentation build process. A gap in this allowlist allows attackers to craft an mkdocs.yml file that causes arbitrary Python code execution...

9.8CVSS6.2AI score0.00038EPSS
Exploits0References4
EUVD
EUVDadded 2026/01/30 9:31 p.m.2 views

EUVD-2026-5004

Backstage is an open framework for building developer portals, and @backstage/plugin-techdocs-node provides common node.js functionalities for TechDocs. In versions of @backstage/plugin-techdocs-node prior to 1.13.11 and 1.14.1, when TechDocs is configured with runIn: local, a malicious actor who...

7.7CVSS6.2AI score0.0003EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/01/09 8:45 a.m.2 views

CVE-2025-40767

A vulnerability has been identified in SINEC Traffic Analyzer 6GK8822-1BG01-0BA0 All versions V3.0. The affected application runs docker containers without adequate security controls to enforce isolation. This could allow an attacker to gain elevated access, potentially accessing sensitive host...

8.8CVSS7.3AI score0.00022EPSS
Exploits0References1
NVD
NVDadded 2025/08/12 12:15 p.m.2 views

CVE-2025-40767

A vulnerability has been identified in SINEC Traffic Analyzer 6GK8822-1BG01-0BA0 All versions V3.0. The affected application runs docker containers without adequate security controls to enforce isolation. This could allow an attacker to gain elevated access, potentially accessing sensitive host...

8.8CVSS0.00022EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/08/12 11:17 a.m.2 views

CVE-2025-40767

A vulnerability has been identified in SINEC Traffic Analyzer 6GK8822-1BG01-0BA0 All versions V3.0. The affected application runs docker containers without adequate security controls to enforce isolation. This could allow an attacker to gain elevated access, potentially accessing sensitive host...

8.8CVSS7.2AI score0.00022EPSS
Exploits0References1
Veracode
Veracodeadded 2025/08/12 7:1 a.m.2 views

Network Isolation Bypass

github.com/moby/moby is vulnerable to network isolation bypass. The vulnerability is due to Docker failing to re-create iptables rules isolating bridge networks after firewalld reload, which allows an attacker to access all ports of containers across different bridge networks on the same host,...

5.2CVSS7AI score0.00019EPSS
Exploits0References3Affected Software2
CNNVD
CNNVDadded 2025/08/12 12:0 a.m.2 views

Siemens SINEC Traffic Analyzer 安全漏洞

Siemens SINEC Traffic Analyzer is a network traffic analysis tool from Siemens Germany. A security vulnerability exists in Siemens SINEC Traffic Analyzer versions prior to V3.0, which stems from insufficient docker container isolation controls and could lead to elevated privileges...

8.8CVSS6.4AI score0.00022EPSS
Exploits0References1
OSV
OSVadded 2024/11/26 6:37 p.m.3 views

CVE-2024-53844 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in labsai/eddi

E.D.D.I Enhanced Dialog Driven Interface is a middleware to connect and manage LLM API bots. A path traversal vulnerability exists in the backup export functionality of EDDI, as implemented in RestExportService.java. This vulnerability allows an attacker to access sensitive files on the server by...

6.3CVSS7.1AI score0.00083EPSS
Exploits0References4
Rows per page
Query Builder