Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

16587 matches found

OSV
OSVadded 2025/10/14 5:15 p.m.4 views

CVE-2025-55315

Inconsistent interpretation of http requests 'http request/response smuggling' in ASP.NET Core allows an authorized attacker to bypass a security feature over a network...

9.9CVSS6.9AI score0.66258EPSS
Exploits5References3
IBM Security Bulletins
IBM Security Bulletinsadded 2025/10/14 2:36 p.m.6 views

Security Bulletin: IBM DevOps Deploy / IBM UrbanCode Deploy (UCD) is susceptible to multiple vulnerabilities in Netty (CVE-2025-58056, CVE-2025-58057)

Summary Netty is used by IBM DevOps Deploy / IBM UrbanCode Deploy UCD as part of the agent-server-relay communication system and is affected by CVE-2025-58056, CVE-2025-58057. Vulnerability Details CVEID:CVE-2025-58056 DESCRIPTION: Netty is an asynchronous event-driven network application framewo...

7.5CVSS6.3AI score0.00631EPSS
Exploits2Affected Software1
Positive Technologies
Positive Technologiesadded 2025/10/14 12:0 a.m.8 views

PT-2025-42010

Name of the Vulnerable Software and Affected Versions ASP.NET Core versions prior to 10.0.0-rc.2.25502.107 ASP.NET Core versions prior to 9.0.10 ASP.NET Core versions prior to 8.0.21 Microsoft.AspNetCore.Server.Kestrel.Core versions prior to 2.3.6 Description Inconsistent interpretation of HTTP...

9.9CVSS7.4AI score0.66258EPSS
Exploits5References188
RedhatCVE
RedhatCVEadded 2025/10/10 6:27 p.m.12 views

CVE-2025-11550

A vulnerability was found in Tenda W12 3.0.0.63948. The impacted element is the function wifiScheduledSet of the file /goform/modules of the component HTTP Request Handler. The manipulation of the argument wifiScheduledSet results in null pointer dereference. The attack may be performed from...

7.1CVSS6.6AI score0.00888EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/09 6:30 p.m.3 views

EUVD-2025-33411

A vulnerability was found in Tenda W12 3.0.0.63948. The impacted element is the function wifiScheduledSet of the file /goform/modules of the component HTTP Request Handler. The manipulation of the argument wifiScheduledSet results in null pointer dereference. The attack may be performed from...

7.1CVSS6.4AI score0.00888EPSS
Exploits1References7
EUVD
EUVDadded 2025/10/09 6:30 p.m.4 views

EUVD-2025-33407

A vulnerability has been found in Tenda W12 3.0.0.63948. The affected element is the function wifiMacFilterSet of the file /goform/modules of the component HTTP Request Handler. The manipulation of the argument mac leads to stack-based buffer overflow. The attack is possible to be carried out...

9CVSS6.8AI score0.07891EPSS
Exploits1References6
OSV
OSVadded 2025/10/09 6:15 p.m.1 views

CVE-2025-11550

A vulnerability was found in Tenda W12 3.0.0.63948. The impacted element is the function wifiScheduledSet of the file /goform/modules of the component HTTP Request Handler. The manipulation of the argument wifiScheduledSet results in null pointer dereference. The attack may be performed from...

7.1CVSS5.5AI score0.00888EPSS
Exploits1References5
NVD
NVDadded 2025/10/09 5:15 p.m.4 views

CVE-2025-11549

A vulnerability has been found in Tenda W12 3.0.0.63948. The affected element is the function wifiMacFilterSet of the file /goform/modules of the component HTTP Request Handler. The manipulation of the argument mac leads to stack-based buffer overflow. The attack is possible to be carried out...

9.8CVSS0.07891EPSS
Exploits1References5
CVE
CVEadded 2025/10/09 5:2 p.m.13 views

CVE-2025-11549

CVE-2025-11549 affects Tenda W12 firmware v3.0.0.6(3948). The vulnerability is in the HTTP Request Handler’s wifiMacFilterSet function (file /goform/modules); the mac argument can be manipulated to cause a stack-based buffer overflow. The issue can be exploited remotely, and public proof-of-conce...

9.8CVSS7AI score0.07891EPSS
Exploits1References5Affected Software1
RedhatCVE
RedhatCVEadded 2025/10/09 12:14 a.m.15 views

CVE-2025-11418

A security vulnerability has been detected in Tenda CH22 up to 1.0.0.1. This issue affects the function formWrlsafeset of the file /goform/AdvSetWrlsafeset of the component HTTP Request Handler. The manipulation of the argument mitssidindex leads to stack-based buffer overflow. The attack may be...

10CVSS9.6AI score0.06192EPSS
Exploits1References1
Tenable Nessus
Tenable Nessusadded 2025/10/09 12:0 a.m.3 views

AlmaLinux 10 : git-lfs (ALSA-2025:9063)

The remote AlmaLinux 10 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2025:9063 advisory. net/http: Request smuggling due to acceptance of invalid chunked data in net/http CVE-2025-22871 Tenable has extracted the preceding description block directly fr...

9.1CVSS7.2AI score0.00682EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/10/09 12:0 a.m.5 views

AlmaLinux 10 : podman (ALSA-2025:9146)

The remote AlmaLinux 10 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:9146 advisory. net/http: Request smuggling due to acceptance of invalid chunked data in net/http CVE-2025-22871 Tenable has extracted the preceding description block directly fr...

9.1CVSS7.1AI score0.00682EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/10/09 12:0 a.m.5 views

AlmaLinux 10 : opentelemetry-collector (ALSA-2025:12850)

The remote AlmaLinux 10 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2025:12850 advisory. net/http: Request smuggling due to acceptance of invalid chunked data in net/http CVE-2025-22871 Tenable has extracted the preceding description block directly...

9.1CVSS7.2AI score0.00682EPSS
Exploits0References3
Cvelist
Cvelistadded 2025/10/08 8:2 a.m.6 views

CVE-2025-11444 TOTOLINK N600R HTTP Request cstecgi.cgi setWiFiBasicConfig buffer overflow

A security vulnerability has been detected in TOTOLINK N600R up to 4.3.0cu.7866B20220506. This impacts the function setWiFiBasicConfig of the file /cgi-bin/cstecgi.cgi of the component HTTP Request Handler. Such manipulation of the argument wepkey leads to buffer overflow. It is possible to launc...

9CVSS0.00958EPSS
Exploits1References6
Cvelist
Cvelistadded 2025/10/08 12:2 a.m.6 views

CVE-2025-11418 Tenda CH22 HTTP Request AdvSetWrlsafeset formWrlsafeset stack-based overflow

A security vulnerability has been detected in Tenda CH22 up to 1.0.0.1. This issue affects the function formWrlsafeset of the file /goform/AdvSetWrlsafeset of the component HTTP Request Handler. The manipulation of the argument mitssidindex leads to stack-based buffer overflow. The attack may be...

10CVSS0.06192EPSS
Exploits1References5
SUSE Linux
SUSE Linuxadded 2025/10/07 11:33 a.m.5 views

Security update for rubygem-puma

This update for rubygem-puma fixes the following issues: Update to version 5.6.9. CVE-2024-45614: improper header normalization allows for clients to clobber proxy set headers, which can lead to information leaks bsc1230848, fixed in an earlier update. CVE-2024-21647: unbounded resource consumpti...

7.3CVSS6.8AI score0.00958EPSS
Exploits0References12
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2014-2217

Malware in sbrugna...

9CVSS6.4AI score0.02579EPSS
Exploits0References7
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2013-6486

Malware in sbrugna...

6.8CVSS6.4AI score0.00925EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.5 views

EUVD-2017-13171

Malware in sbrugna...

8.8CVSS8.8AI score0.0253EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2015-4432

Malware in sbrugna...

6.8CVSS6.6AI score0.0128EPSS
Exploits0References2
Rows per page
Query Builder