Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

106094 matches found

GithubExploit
GithubExploitadded 2026/06/09 8:54 p.m.54 views

Exploit for CVE-2024-21182

CVE-2024-21182 - Oracle WebLogic Server JNDI Injection → RCE C...

7.5CVSS7.5AI score0.49689EPSS
Exploits3
CVE
CVEadded 2026/06/09 4:3 p.m.54 views

CVE-2026-42768

The CVE-2026-42768 issue concerns Bleichenbacher-style side-channel attacks against CMS_decrypt() and PKCS7_decrypt() in OpenSSL. The vulnerability arises when processing CMS or S/MIME messages with multiple RecipientInfo entries (KTRI). In variant 1, decryption is attempted without a recipient c...

3.7CVSS5.5AI score0.0035EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologiesadded 2026/06/09 12:0 a.m.11 views

PT-2026-48310

Name of the Vulnerable Software and Affected Versions Spring Security versions 5.7.0 through 5.7.23 Spring Security versions 5.8.0 through 5.8.25 Spring Security versions 6.3.0 through 6.3.16 Spring Security versions 6.4.0 through 6.4.16 Spring Security versions 6.5.0 through 6.5.10 Spring Securi...

5.3CVSS5.2AI score0.00137EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2026/06/09 12:0 a.m.11 views

Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2026-50305)

The remote Oracle Linux 8 / 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-50305 advisory. - arm64: errata: Mitigate TLBI errata on various Arm CPUs Mark Rutland Orabug: 39017590 CVE-2025-10263 - net: skbuff: propagate shared-frag marker through...

9.8CVSS6.9AI score0.96775EPSS
Exploits267References2
Tenable Nessus
Tenable Nessusadded 2026/06/09 12:0 a.m.14 views

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2026-50306)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-50306 advisory. - arm64: errata: Mitigate TLBI errata on various Arm CPUs Mark Rutland Orabug: 39017592 CVE-2025-10263 - ptrace: slightly saner 'getdumpable' logic Linus...

9.8CVSS6.9AI score0.96775EPSS
Exploits269References2
Tenable Nessus
Tenable Nessusadded 2026/06/09 12:0 a.m.11 views

Oracle Linux 10 / 9 : Unbreakable Enterprise kernel (ELSA-2026-50304)

The remote Oracle Linux 10 / 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-50304 advisory. - arm64: errata: Mitigate TLBI errata on various Arm CPUs Mark Rutland Orabug: 39017589 CVE-2025-10263 Tenable has extracted the preceding description blo...

9.1CVSS5.6AI score0.00658EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2026/06/09 12:0 a.m.8 views

Oracle Linux 8 : libyang (ELSA-2026-24545)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2026-24545 advisory. 1.0.184-2 - DoS or arbitrary code execution via maliciously crafted LYB binary blob - Resolves: RHEL-177017 - CVE-2026-44673 Tenable has extracted the precedin...

7.5CVSS6.3AI score0.00273EPSS
Exploits0References2
OSV
OSVadded 2026/06/09 12:0 a.m.4 views

UBUNTU-CVE-2026-42768

Issue summary: The CMSdecrypt and PKCS7decrypt functions are vulnerable to Bleichenbacher-style attack when an attacker is able to provide the CMS or S/MIME messages and observe the error code and/or decryption output. Impact summary: The Bleichenbacher-style attack allows an attacker to use the...

3.7CVSS5.6AI score0.0035EPSS
Exploits0References4
Snyk
Snykadded 2026/06/09 12:0 a.m.3 views

Information Exposure

Overview org.springframework.security:spring-security-saml2-service-provider is a security component for the Spring Framework. Affected versions of this package are vulnerable to Information Exposure via SAML message decryption prior to signature validation. An attacker can use the Service Provid...

6.3CVSS5.4AI score0.00137EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2026/06/08 12:0 a.m.10 views

Oracle Linux 8 : unbound (ELSA-2026-24365)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-24365 advisory. - Fix CVE-2026-42944 RHEL-177909 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...

8.7CVSS5.6AI score0.00512EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/06/08 12:0 a.m.7 views

Oracle Linux 8 : frr (ELSA-2026-24340)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-24340 advisory. - Fix off-by-one error in FlowSpec operator array bounds checking CVE-2026-37457 Tenable has extracted the preceding description block directly from the Oracle...

7.5CVSS5.6AI score0.00263EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2026/06/08 12:0 a.m.9 views

Oracle Linux 7 : ImageMagick (ELSA-2026-17618)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-17618 advisory. - Fix CVE-2026-32636 Orabug: 39375225 - Fix CVE-2026-28691 and CVE-2026-28693 Orabug: 39174244 - Fixes Local File Disclosure via Path Traversal CVE-2026-25965...

9.8CVSS7.5AI score0.00794EPSS
Exploits3References2
Tenable Nessus
Tenable Nessusadded 2026/06/08 12:0 a.m.8 views

TencentOS Server 4: java-17-konajdk (TSSA-2026:0329)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2026:0329 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

7.5CVSS7.5AI score0.00358EPSS
Exploits0References8
Tenable Nessus
Tenable Nessusadded 2026/06/08 12:0 a.m.11 views

TencentOS Server 4: java-8-konajdk (TSSA-2026:0331)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2026:0331 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

7.5CVSS7.5AI score0.00358EPSS
Exploits0References7
Tenable Nessus
Tenable Nessusadded 2026/06/08 12:0 a.m.12 views

TencentOS Server 4: java-11-konajdk (TSSA-2026:0330)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2026:0330 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

7.5CVSS7.5AI score0.00358EPSS
Exploits0References8
Tenable Nessus
Tenable Nessusadded 2026/06/08 12:0 a.m.11 views

Oracle Linux 8 : bind (ELSA-2026-24339)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-24339 advisory. - Fix GSS-API resource leak CVE-2026-3039 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...

7.5CVSS5.7AI score0.00966EPSS
Exploits0References3
Friends Of PHP
Friends Of PHPadded 2026/06/06 4:27 p.m.4 views

RSA1_5 (RSAES-PKCS1-v1_5) decryption lacks implicit rejection, exposing a Bleichenbacher/Marvin padding oracle

Impact RSACrypt::decryptWithRSA15 used by the RSA15 key-encryption algorithm implements RSAES-PKCS1-v15 decryption by inspecting the padding after RSADP and throwing InvalidArgumentException as soon as the padding is malformed. It does not implement the implicit-rejection countermeasure required ...

5.4AI score
Exploits0Affected Software1
Friends Of PHP
Friends Of PHPadded 2026/06/06 4:27 p.m.4 views

RSA1_5 (RSAES-PKCS1-v1_5) decryption lacks implicit rejection, exposing a Bleichenbacher/Marvin padding oracle

Impact RSACrypt::decryptWithRSA15 used by the RSA15 key-encryption algorithm implements RSAES-PKCS1-v15 decryption by inspecting the padding after RSADP and throwing InvalidArgumentException as soon as the padding is malformed. It does not implement the implicit-rejection countermeasure required ...

5.4AI score
Exploits0Affected Software1
RedhatCVE
RedhatCVEadded 2026/06/05 7:50 p.m.7 views

CVE-2026-34312

Vulnerability in the RDBMS component of Oracle Database Server. Supported versions that are affected are 19.3-19.30. Easily exploitable vulnerability allows high privileged attacker having Row Access Method privilege with network access via multiple protocols to compromise RDBMS. Successful attac...

2.4CVSS7.2AI score0.00201EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/06/05 7:45 p.m.9 views

CVE-2026-22014

Vulnerability in the Oracle User Management product of Oracle E-Business Suite component: Workflow and Business Events. Supported versions that are affected are 12.2.7-12.2.15. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle User...

3.8CVSS7.3AI score0.00193EPSS
Exploits0References1
Rows per page
Query Builder