Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

EUVD
EUVDadded 2026/04/02 3:31 p.m.2 views

EUVD-2026-18210

A flaw was found in Keycloak. The SingleUseObjectProvider, a global key-value store, lacks proper type and namespace isolation. This vulnerability allows an attacker to delete arbitrary single-use entries, which can enable the replay of consumed action tokens, such as password reset links. This...

5.3CVSS5.9AI score0.00046EPSS
Exploits0References5
OSV
OSVadded 2026/04/02 3:31 p.m.5 views

GHSA-HJ93-H7PG-FH6V Keycloak: Privilege escalation via forged authorization codes due to SingleUseObjectProvider isolation flaw

A flaw was found in Keycloak. The SingleUseObjectProvider, a global key-value store, lacks proper type and namespace isolation. This vulnerability allows an unauthenticated attacker to forge authorization codes. Successful exploitation can lead to the creation of admin-capable access tokens,...

7.4CVSS5.8AI score0.00021EPSS
Exploits0References10
CVE
CVEadded 2026/04/02 12:44 p.m.6 views

CVE-2026-4325

CVE-2026-4325 involves Keycloak’s SingleUseObjectProvider, a global key-value store, lacking proper type and namespace isolation. The issue allows an attacker to delete arbitrary single-use entries, enabling the replay of consumed action tokens (e.g., password reset links) and potentially leading...

5.3CVSS5.9AI score0.00046EPSS
Exploits0References6Affected Software1
RedhatCVE
RedhatCVEadded 2025/10/20 6:23 p.m.2 views

CVE-2025-62644

The Restaurant Brands International RBI assistant platform through 2025-09-06 has a Global Store Directory that shares personal information among authenticated users...

7.7CVSS6.6AI score0.00059EPSS
Exploits1References1
OSV
OSVadded 2025/10/17 9:15 p.m.2 views

CVE-2025-62644

The Restaurant Brands International RBI assistant platform through 2025-09-06 has a Global Store Directory that shares personal information among authenticated users...

7.7CVSS5.8AI score0.00059EPSS
Exploits1References5
NVD
NVDadded 2025/10/17 9:15 p.m.2 views

CVE-2025-62644

The Restaurant Brands International RBI assistant platform through 2025-09-06 has a Global Store Directory that shares personal information among authenticated users...

7.7CVSS0.00059EPSS
Exploits1References5
Vulnrichment
Vulnrichmentadded 2025/10/17 12:0 a.m.2 views

CVE-2025-62644

The Restaurant Brands International RBI assistant platform through 2025-09-06 has a Global Store Directory that shares personal information among authenticated users...

5CVSS6.2AI score0.00059EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/17 12:0 a.m.4 views

EUVD-2025-34931

The Restaurant Brands International RBI assistant platform through 2025-09-06 has a Global Store Directory that shares personal information among authenticated users...

5CVSS6.1AI score0.00059EPSS
Exploits1References6
CVE
CVEadded 2025/10/17 12:0 a.m.6 views

CVE-2025-62644

The RBI assistant platform (Restaurant Brands International) through 2025-09-06 is documented across connected sources to have multiple vulnerabilities. A key issue is the Global Store Directory that shares personal information among authenticated users. Additional connected details describe weak...

7.7CVSS6.2AI score0.00059EPSS
Exploits1References5Affected Software1
Cvelist
Cvelistadded 2025/10/17 12:0 a.m.7 views

CVE-2025-62644

The Restaurant Brands International RBI assistant platform through 2025-09-06 has a Global Store Directory that shares personal information among authenticated users...

5CVSS0.00059EPSS
Exploits1References5
Rows per page
Query Builder