Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1417 matches found

CVE
CVEadded 2026/03/24 2:13 p.m.38 views

CVE-2026-27784

The CVE-2026-27784 issue affects 32-bit builds of NGINX Open Source that are compiled with the ngx_http_mp4_module and configured to use the mp4 directive. The vulnerability arises in the 32-bit implementation of NGINX Open Source when processing a specially crafted MP4 file via the ngx_http_mp4_...

8.5CVSS5.8AI score0.00285EPSS
Exploits0References1Affected Software1
AlpineLinux
AlpineLinuxadded 2026/03/24 2:13 p.m.2 views

CVE-2026-27784

The 32-bit implementation of NGINX Open Source has a vulnerability in the ngxhttpmp4module module, which might allow an attacker to over-read or over-write NGINX worker memory resulting in its termination, using a specially crafted MP4 file. The issue only affects 32-bit NGINX Open Source if it i...

8.5CVSS5.8AI score0.00285EPSS
Exploits0
CNNVD
CNNVDadded 2026/03/16 12:0 a.m.7 views

PX4-Autopilot 安全漏洞

PX4-Autopilot is an open-source drone autopilot system developed by PX4. Versions of PX4-Autopilot prior to 1.17.0-rc2 contained security vulnerabilities. These vulnerabilities stemmed from tattucan’s use of unbounded memory copying during its multi-frame assembly cycle, which could lead to stack...

6.1CVSS5.8AI score0.0027EPSS
Exploits2References1
OSV
OSVadded 2026/03/04 3:34 p.m.4 views

USN-8074-1 linux-azure vulnerabilities

It was discovered that improper initialization of CPU cache memory could allow a local attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data integrity. CVE-2024-36331 Oleksii Oleksenko, Cedric Fournet, Jana Hofmann, Boris Köpf, Stavros Volos, and Flavien Solt...

9.8CVSS6.8AI score0.09072EPSS
Exploits10References754
Ubuntu
Ubuntuadded 2026/03/04 3:34 p.m.8 views

USN-8074-1: Linux kernel (Azure) vulnerabilities

It was discovered that improper initialization of CPU cache memory could allow a local attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data integrity. CVE-2024-36331 Oleksii Oleksenko, Cedric Fournet, Jana Hofmann, Boris Köpf, Stavros Volos, and Flavien Solt...

9.8CVSS7AI score0.09072EPSS
Exploits10
Ubuntu
Ubuntuadded 2026/02/24 6:57 p.m.18 views

USN-8052-2: Linux kernel (Xilinx) vulnerabilities

It was discovered that improper initialization of CPU cache memory could allow a local attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data integrity. CVE-2024-36331 Oleksii Oleksenko, Cedric Fournet, Jana Hofmann, Boris Köpf, Stavros Volos, and Flavien Solt...

9.8CVSS8.7AI score0.09072EPSS
Exploits8
OSV
OSVadded 2026/02/19 12:29 p.m.12 views

USN-8028-7 linux-nvidia-lowlatency vulnerabilities

It was discovered that improper initialization of CPU cache memory could allow a local attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data integrity. CVE-2024-36331 Oleksii Oleksenko, Cedric Fournet, Jana Hofmann, Boris Köpf, Stavros Volos, and Flavien Solt...

9.8CVSS6.8AI score0.09072EPSS
Exploits8References754
Ubuntu
Ubuntuadded 2026/02/19 9:26 a.m.3 views

USN-8031-3: Linux kernel vulnerabilities

It was discovered that improper initialization of CPU cache memory could allow a local attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data integrity. CVE-2024-36331 Oleksii Oleksenko, Cedric Fournet, Jana Hofmann, Boris Köpf, Stavros Volos, and Flavien Solt...

9.8CVSS7.1AI score0.09072EPSS
Exploits8
OSV
OSVadded 2026/02/19 9:1 a.m.7 views

USN-8028-6 linux-hwe-6.8, linux-lowlatency-hwe-6.8 vulnerabilities

It was discovered that improper initialization of CPU cache memory could allow a local attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data integrity. CVE-2024-36331 Oleksii Oleksenko, Cedric Fournet, Jana Hofmann, Boris Köpf, Stavros Volos, and Flavien Solt...

9.8CVSS6.8AI score0.09072EPSS
Exploits8References754
Ubuntu
Ubuntuadded 2026/02/19 9:1 a.m.9 views

USN-8028-6: Linux kernel (HWE) vulnerabilities

It was discovered that improper initialization of CPU cache memory could allow a local attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data integrity. CVE-2024-36331 Oleksii Oleksenko, Cedric Fournet, Jana Hofmann, Boris Köpf, Stavros Volos, and Flavien Solt...

9.8CVSS7.6AI score0.09072EPSS
Exploits8
Tenable Nessus
Tenable Nessusadded 2026/02/19 12:0 a.m.7 views

Ubuntu 24.04 LTS : Linux kernel (Low Latency) vulnerabilities (USN-8052-1)

"The remote Ubuntu 24.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-8052-1 advisory. It was discovered that improper initialization of CPU cache memory could allow a local attacker with hypervisor access to overwrite SEV-SNP guest memory...

9.8CVSS7.1AI score0.09072EPSS
Exploits8References754
NVD
NVDadded 2026/02/18 10:16 p.m.7 views

CVE-2019-25364

MailCarrier 2.51 contains a buffer overflow vulnerability in the POP3 USER command that allows remote attackers to execute arbitrary code. Attackers can send a crafted oversized buffer to the POP3 service, overwriting memory and potentially gaining remote system access...

9.8CVSS0.00835EPSS
Exploits1References3
Ubuntu
Ubuntuadded 2026/02/17 2:41 p.m.3 views

USN-8028-4: Linux kernel (FIPS) vulnerabilities

It was discovered that improper initialization of CPU cache memory could allow a local attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data integrity. CVE-2024-36331 Oleksii Oleksenko, Cedric Fournet, Jana Hofmann, Boris Köpf, Stavros Volos, and Flavien Solt...

9.8CVSS8.7AI score0.09072EPSS
Exploits8
RedhatCVE
RedhatCVEadded 2026/02/16 7:30 p.m.5 views

CVE-2025-48515

Insufficient parameter sanitization in AMD Secure Processor ASP Boot Loader could allow an attacker with access to SPIROM upgrade to overwrite the memory, potentially resulting in arbitrary code execution...

5.4CVSS5.8AI score0.00126EPSS
Exploits0References1
Rosalinux
Rosalinuxadded 2026/02/16 7:14 a.m.9 views

Advisory ROSA-SA-2026-3142

Software: cups 2.2.6 OS: ROSA Virtualization 3.1 unaffected versions = cups-2.2.6-66.rv31 affected versions cups-2.2.6-66.rv31 CVE-ID: CVE-2025-58364 BDU-ID: 2025-12439 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the CUPS print server libcups library is related to null pointer dereferencing du...

6.7CVSS7.1AI score0.01063EPSS
Exploits3
Rosalinux
Rosalinuxadded 2026/02/16 7:8 a.m.8 views

Advisory ROSA-SA-2026-3137

Software: cups 2.2.6 OS: ROSA Virtualization 3.0 unaffected versions = cups-2.2.6-66.rv30 affected versions cups-2.2.6-66.rv30 CVE-ID: CVE-2025-58364 BDU-ID: 2025-12439 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the CUPS print server libcups library is related to null pointer dereferencing du...

6.7CVSS7.1AI score0.01063EPSS
Exploits3
Rosalinux
Rosalinuxadded 2026/02/16 7:7 a.m.6 views

Advisory ROSA-SA-2026-3132

Software: cups 2.2.6 OS: ROSA Virtualization 2.1 unaffected versions = cups-2.2.6-66.0.1.rv3 affected versions cups-2.2.6-66.0.1.rv3 CVE-ID: CVE-2025-58364 BDU-ID: 2025-12439 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the CUPS print server libcups library is related to null pointer...

6.7CVSS7.4AI score0.01063EPSS
Exploits3
RedhatCVE
RedhatCVEadded 2026/02/13 1:22 p.m.3 views

CVE-2025-29951

A buffer overflow in the AMD Secure Processor ASP bootloader could allow an attacker to overwrite memory, potentially resulting in privilege escalation and arbitrary code execution...

7.3CVSS6.2AI score0.00137EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/02/12 8:26 a.m.3 views

CVE-2020-37182

A flaw was found in redir. A remote attacker can exploit a stack overflow vulnerability in the doproxyconnect function by sending oversized input. This vulnerability, caused by improper length checking in the sprintf function, allows attackers to overwrite memory, leading to a segmentation fault...

8.7CVSS5.6AI score0.00477EPSS
Exploits0References2
OSV
OSVadded 2026/02/11 9:16 p.m.2 views

CVE-2020-37182

Redir 3.3 contains a stack overflow vulnerability in the doproxyconnect function that allows attackers to crash the application by sending oversized input. Attackers can exploit the sprintf buffer without proper length checking to overwrite memory and cause a segmentation fault, resulting in...

7.5CVSS6AI score
Exploits0References3
Rows per page
Query Builder