Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
šŸ”„ Daily Hot!
šŸ’ŖšŸ½ CPE Enhanced Advisories
šŸ•¶ Shadow Exploits
šŸ•µšŸ¼ Vulners CPE
šŸ” Security news
šŸ’» Exploit updates
šŸ“‘ Blogs review
šŸ§ Linux vulnerabilities
šŸž Bugbounty
šŸ¤– AI High Score
šŸ“° CVE Feed
show all

132 matches found

Packet Storm News
Packet Storm Newsā€¢added 2026/05/14 12:0 a.m.ā€¢6 views

Capacitive Touchscreens at Risk: A Practical Side-Channel Attack on Smartphones Via Electromagnetic Emanations

Capacitive touchscreens in modern smartphones introduce severe side-channel vulnerabilities. However, existing attacks often require restrictive conditions or invasive measurements. This paper presents TESLA, a novel, contactless electromagnetic EM side-channel attack that exploits inherent EM...

5.9AI score
Exploits0
Tenable Nessus
Tenable Nessusā€¢added 2026/04/21 12:0 a.m.ā€¢3 views

Unity Linux 20.1050e / 20.1070e Security Update: kernel (UTSA-2026-011347)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011347 advisory. In the Linux kernel, the following vulnerability has been resolved: Input: croseckeyb - fix an invalid memory access If croseckeybregistermatrix isn't called due to...

5.8AI score0.00037EPSS
Exploits0References4
SUSE CVE
SUSE CVEā€¢added 2026/04/02 11:26 p.m.ā€¢2 views

SUSE CVE-2026-35093

A flaw was found in libinput. A local attacker who can place a specially crafted Lua bytecode file in certain system or user configuration directories can bypass security restrictions. This allows the attacker to run unauthorized code with the same permissions as the program using libinput, such ...

8.8CVSS5.8AI score0.0002EPSS
Exploits0References3
EUVD
EUVDā€¢added 2026/04/02 9:32 p.m.ā€¢3 views

EUVD-2024-55529

This issue was addressed through improved state management. This issue is fixed in macOS Sequoia 15.1. An attacker with physical access can input keyboard events to apps running on a locked device...

7.5CVSS5.9AI score0.00091EPSS
Exploits0References2
NVD
NVDā€¢added 2026/04/02 7:18 p.m.ā€¢5 views

CVE-2024-44286

This issue was addressed through improved state management. This issue is fixed in macOS Sequoia 15.1. An attacker with physical access can input keyboard events to apps running on a locked device...

7.5CVSS0.00091EPSS
Exploits0References1
CVE
CVEā€¢added 2026/04/02 6:13 p.m.ā€¢7 views

CVE-2024-44286

CVE-2024-44286 affects macOS Sequoia 15.1 and earlier, where an attacker with physical access can inject keyboard events into apps running on a locked device. The root cause is described as improved state management. The issue is fixed in macOS Sequoia 15.1. Remediation: update to macOS 15.1 or l...

7.5CVSS5.9AI score0.00091EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistā€¢added 2026/04/02 6:13 p.m.ā€¢12 views

CVE-2024-44286

This issue was addressed through improved state management. This issue is fixed in macOS Sequoia 15.1. An attacker with physical access can input keyboard events to apps running on a locked device...

0.00091EPSS
Exploits0References1
Vulnrichment
Vulnrichmentā€¢added 2026/04/02 6:13 p.m.ā€¢2 views

CVE-2024-44286

This issue was addressed through improved state management. This issue is fixed in macOS Sequoia 15.1. An attacker with physical access can input keyboard events to apps running on a locked device...

5.9AI score0.00091EPSS
Exploits0References1
EUVD
EUVDā€¢added 2026/04/01 3:31 p.m.ā€¢2 views

EUVD-2026-17907

A flaw was found in libinput. A local attacker who can place a specially crafted Lua bytecode file in certain system or user configuration directories can bypass security restrictions. This allows the attacker to run unauthorized code with the same permissions as the program using libinput, such ...

8.8CVSS5.9AI score0.0002EPSS
Exploits0References4
OSV
OSVā€¢added 2026/04/01 2:16 p.m.ā€¢3 views

DEBIAN-CVE-2026-35093

A flaw was found in libinput. A local attacker who can place a specially crafted Lua bytecode file in certain system or user configuration directories can bypass security restrictions. This allows the attacker to run unauthorized code with the same permissions as the program using libinput, such ...

8.8CVSS5.3AI score0.0002EPSS
Exploits0References1
Debian CVE
Debian CVEā€¢added 2026/04/01 1:54 p.m.ā€¢4 views

CVE-2026-35093

A flaw was found in libinput. A local attacker who can place a specially crafted Lua bytecode file in certain system or user configuration directories can bypass security restrictions. This allows the attacker to run unauthorized code with the same permissions as the program using libinput, such ...

8.8CVSS5.3AI score0.0002EPSS
Exploits0
Vulnrichment
Vulnrichmentā€¢added 2026/04/01 1:54 p.m.ā€¢2 views

CVE-2026-35093 Libinput: libinput: unauthorized code execution and information disclosure through lua bytecode plugins

A flaw was found in libinput. A local attacker who can place a specially crafted Lua bytecode file in certain system or user configuration directories can bypass security restrictions. This allows the attacker to run unauthorized code with the same permissions as the program using libinput, such ...

8.8CVSS5.9AI score0.0002EPSS
Exploits0References3
Cvelist
Cvelistā€¢added 2026/04/01 1:54 p.m.ā€¢25 views

CVE-2026-35093 Libinput: libinput: unauthorized code execution and information disclosure through lua bytecode plugins

A flaw was found in libinput. A local attacker who can place a specially crafted Lua bytecode file in certain system or user configuration directories can bypass security restrictions. This allows the attacker to run unauthorized code with the same permissions as the program using libinput, such ...

8.8CVSS0.0002EPSS
Exploits0References3
Fedora
Fedoraā€¢added 2026/03/25 12:56 a.m.ā€¢5 views

[SECURITY] Fedora 44 Update: musescore-4.6.5-37.fc44

MuseScore is a free cross platform WYSIWYG music notation program. Some highlights: WYSIWYG, notes are entered on a "virtual note sheet" Unlimited number of staves Up to four voices per staff Easy and fast note entry with mouse, keyboard or MIDI Integrated sequencer and FluidSynth software...

7.8CVSS5.7AI score0.00057EPSS
Exploits1
EUVD
EUVDā€¢added 2026/03/24 3:30 p.m.ā€¢1 views

EUVD-2019-19983

Pixel Studio 2.17 contains a denial of service vulnerability that allows local attackers to crash the application by providing malformed input through the keyboard interface. Attackers can trigger the vulnerability by entering arbitrary characters, causing the application to become unresponsive o...

6.9CVSS5.9AI score0.00027EPSS
Exploits1References5
EUVD
EUVDā€¢added 2026/03/23 3:30 p.m.ā€¢1 views

EUVD-2019-19982

Tree Studio 2.17 contains a denial of service vulnerability that allows local attackers to crash the application by providing malformed input through the keyboard interface. Attackers can trigger the vulnerability by entering arbitrary characters during application runtime, causing the applicatio...

6.9CVSS5.9AI score0.00021EPSS
Exploits1References5
EUVD
EUVDā€¢added 2026/03/23 3:30 p.m.ā€¢1 views

EUVD-2019-19988

Liquid Studio 2.17 contains a denial of service vulnerability that allows local attackers to crash the application by providing malformed input through the keyboard interface. Attackers can trigger the vulnerability by entering arbitrary characters during application runtime, causing the...

6.9CVSS5.9AI score0.00023EPSS
Exploits1References5
NVD
NVDā€¢added 2026/03/23 2:16 p.m.ā€¢5 views

CVE-2019-25623

Luminance Studio 2.17 contains a denial of service vulnerability that allows local attackers to crash the application by providing malformed input through the keyboard interface. Attackers can create a text file with arbitrary character sequences and trigger the application to process the input,...

6.9CVSS0.00024EPSS
Exploits1References4
NVD
NVDā€¢added 2026/03/23 2:16 p.m.ā€¢2 views

CVE-2019-25621

Pixel Studio 2.17 contains a denial of service vulnerability that allows local attackers to crash the application by providing malformed input through the keyboard interface. Attackers can trigger the vulnerability by entering arbitrary characters, causing the application to become unresponsive o...

6.9CVSS0.00027EPSS
Exploits1References4
NVD
NVDā€¢added 2026/03/23 2:16 p.m.ā€¢2 views

CVE-2019-25620

Tree Studio 2.17 contains a denial of service vulnerability that allows local attackers to crash the application by providing malformed input through the keyboard interface. Attackers can trigger the vulnerability by entering arbitrary characters during application runtime, causing the applicatio...

6.9CVSS0.00021EPSS
Exploits1References4
Rows per page
Query Builder