Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

147 matches found

Imperva Blog
Imperva Blogadded 2026/05/06 6:28 p.m.5 views

Your Redis Server Looks Fine. That’s the Problem.

Introduction There’s an automated attack circulating right now that breaks into unprotected Redis servers, takes over the underlying machine, and then carefully puts everything back the way it found it. It restores the database filename. It deletes the tools it used. It detaches from the...

10CVSS7.5AI score0.94398EPSS
Exploits8
NVD
NVDadded 2026/04/21 3:16 p.m.1 views

CVE-2025-31981

HCL BigFix Service Management SM Discovery is vulnerable to unenforced encryption due to port 80 HTTP being open, allowing unencrypted access. An attacker with access to the network traffic can sniff packets from the connection and uncover the data...

5.3CVSS0.0001EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/04/21 2:26 p.m.2 views

CVE-2025-31981

HCL BigFix Service Management SM Discovery is vulnerable to unenforced encryption due to port 80 HTTP being open, allowing unencrypted access. An attacker with access to the network traffic can sniff packets from the connection and uncover the data...

5.3CVSS5.8AI score0.0001EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2026/04/21 2:26 p.m.3 views

CVE-2025-31981

HCL BigFix Service Management (SM) Discovery is affected by unenforced encryption caused by HTTP port 80 being open. An attacker with network access can sniff unencrypted traffic, potentially exposing data (Confidentiality impact: LOW per CVSS). The provided documents do not specify a remediation...

5.3CVSS5.8AI score0.0001EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2026/04/21 2:26 p.m.26 views

CVE-2025-31981 HCL BigFix Service Management (SM) Discovery is vulnerable to unenforced encryption

HCL BigFix Service Management SM Discovery is vulnerable to unenforced encryption due to port 80 HTTP being open, allowing unencrypted access. An attacker with access to the network traffic can sniff packets from the connection and uncover the data...

5.3CVSS0.0001EPSS
Exploits0References1
CNNVD
CNNVDadded 2026/04/21 12:0 a.m.4 views

HCL BigFix Service Management Discovery 安全漏洞

HCL BigFix Service Management Discovery is an IT asset and service dependency discovery tool developed by the Indian company HCL. HCL BigFix Service Management Discovery has a security vulnerability; this vulnerability arises from the open port 80, which allows encrypted data to be transmitted...

5.3CVSS5.8AI score0.0001EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/03/31 12:0 a.m.2 views

PT-2026-29264

Nhost is an open source Firebase alternative with GraphQL. Prior to version 1.41.0, The Nhost CLI MCP server, when explicitly configured to listen on a network port, applies no inbound authentication and does not enforce strict CORS. This allows a malicious website visited on the same machine to...

7.7CVSS5.7AI score0.00132EPSS
Exploits1References4
RedhatCVE
RedhatCVEadded 2026/02/25 4:6 a.m.2 views

CVE-2025-9120

Improper Control of Generation of Code 'Code Injection' vulnerability in OpenText™ Carbonite Safe Server Backup allows Code Injection. The vulnerability could be exploited through an open port, potentially allowing unauthorized access. This issue affects Carbonite Safe Server Backup: through 6.8....

8.6CVSS5.5AI score0.00039EPSS
Exploits0References1
NVD
NVDadded 2026/02/24 1:16 a.m.2 views

CVE-2025-9120

Improper Control of Generation of Code 'Code Injection' vulnerability in OpenText™ Carbonite Safe Server Backup allows Code Injection. The vulnerability could be exploited through an open port, potentially allowing unauthorized access. This issue affects Carbonite Safe Server Backup: through 6.8....

8.6CVSS0.00039EPSS
Exploits0References1
EUVD
EUVDadded 2026/02/24 12:3 a.m.1 views

EUVD-2025-207564

Improper Control of Generation of Code 'Code Injection' vulnerability in OpenText™ Carbonite Safe Server Backup allows Code Injection. The vulnerability could be exploited through an open port, potentially allowing unauthorized access. This issue affects Carbonite Safe Server Backup: through 6.8....

8.6CVSS5.4AI score0.00039EPSS
Exploits0References1
CVE
CVEadded 2026/02/24 12:3 a.m.8 views

CVE-2025-9120

CVE-2025-9120 : OpenText Carbonite Safe Server Backup is affected up to version 6.8.3 by an improper generation of code vulnerability (code injection). The issue can be exploited via an open port to potentially gain unauthorized access, with a CVSSv4.0 base score of 8.6 (HIGH) and local attack Ve...

8.6CVSS5.5AI score0.00039EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/02/24 12:0 a.m.4 views

PT-2026-21583

Improper Control of Generation of Code 'Code Injection' vulnerability in OpenText™ Carbonite Safe Server Backup allows Code Injection. The vulnerability could be exploited through an open port, potentially allowing unauthorized access. This issue affects Carbonite Safe Server Backup: through 6.8....

8.6CVSS5.4AI score0.00039EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2026/01/09 9:52 a.m.3 views

CVE-2020-10612

Opto 22 SoftPAC Project Version 9.6 and prior. SoftPACAgent communicates with SoftPACMonitor over network Port 22000. However, this port is open without any restrictions. This allows an attacker with network access to control the SoftPACAgent service including updating SoftPAC firmware, starting ...

9.1CVSS6.9AI score0.00216EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/01/09 8:56 a.m.1 views

CVE-2023-40308

SAP CommonCryptoLib allows an unauthenticated attacker to craft a request, which when submitted to an open port causes a memory corruption error in a library which in turn causes the target component to crash making it unavailable. There is no ability to view or modify any information...

7.5CVSS7AI score0.00131EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2020-15018

Malware in sbrugna...

9.8CVSS9.2AI score0.00619EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2020-4795

Malware in sbrugna...

10CVSS8.7AI score0.00299EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2019-19227

Malware in sbrugna...

10CVSS9.5AI score0.06893EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2018-1144

Malware in sbrugna...

9.8CVSS9.5AI score0.026EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2018-19035

Malware in sbrugna...

9.8CVSS9.5AI score0.00221EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2020-3060

Malware in sbrugna...

9.1CVSS9AI score0.00216EPSS
Exploits0References2
Rows per page
Query Builder