Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
šŸ”„ Daily Hot!
šŸ’ŖšŸ½ CPE Enhanced Advisories
šŸ•¶ Shadow Exploits
šŸ•µšŸ¼ Vulners CPE
šŸ” Security news
šŸ’» Exploit updates
šŸ“‘ Blogs review
šŸ§ Linux vulnerabilities
šŸž Bugbounty
šŸ¤– AI High Score
šŸ“° CVE Feed
show all

71 matches found

RedhatCVE
RedhatCVEā€¢added yesterdayā€¢3 views

CVE-2026-21388

Mattermost Plugins versions =2.3.1 fail to limit the request body size on the /lifecycle webhook endpoint which allows an authenticated attacker to cause memory exhaustion and denial of service via sending an oversized JSON payload. Mattermost Advisory ID: MMSA-2026-00610...

6.5CVSS5.5AI score0.00018EPSS
Exploits0References1
RedhatCVE
RedhatCVEā€¢added yesterdayā€¢2 views

CVE-2026-47309

Uncontrolled Recursion vulnerability in Samsung Open Source Escargot allows Oversized Serialized Data Payloads. This issue affects Escargot: 590345cc6258317c5da850d846ce6baaf2afc2d3...

7.5CVSS5.4AI score0.0001EPSS
Exploits0References1
NVD
NVDā€¢added 2 days agoā€¢5 views

CVE-2026-47320

Access of uninitialized pointer, Uncontrolled Recursion vulnerability in Samsung Open Source rlottie allows Pointer Manipulation, Oversized Serialized Data Payloads. This issue affects rlottie: before eae37633fda13ac05b25c6c95aacea4bc33c80a3...

6.1CVSS0.00013EPSS
Exploits0References1
NVD
NVDā€¢added 2 days agoā€¢5 views

CVE-2026-47306

Uncontrolled Recursion vulnerability in Samsung Open Source rlottie allows Oversized Serialized Data Payloads. This issue affects rlottie: before e2d19e3b150e0e4a9586fa90b56fd3061cc98945...

6.1CVSS0.00013EPSS
Exploits0References1
Vulnrichment
Vulnrichmentā€¢added 2 days agoā€¢4 views

CVE-2026-47306

Uncontrolled Recursion vulnerability in Samsung Open Source rlottie allows Oversized Serialized Data Payloads. This issue affects rlottie: before e2d19e3b150e0e4a9586fa90b56fd3061cc98945...

6.1CVSS5.8AI score0.00013EPSS
Exploits0References1
Cvelist
Cvelistā€¢added 2 days agoā€¢33 views

CVE-2026-47306

Uncontrolled Recursion vulnerability in Samsung Open Source rlottie allows Oversized Serialized Data Payloads. This issue affects rlottie: before e2d19e3b150e0e4a9586fa90b56fd3061cc98945...

6.1CVSS0.00013EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBā€¢added 2 days agoā€¢3 views

CVE-2026-47306

Uncontrolled Recursion vulnerability in Samsung Open Source rlottie allows Oversized Serialized Data Payloads. This issue affects rlottie: before e2d19e3b150e0e4a9586fa90b56fd3061cc98945...

6.1CVSS5.8AI score0.00013EPSS
Exploits0References2
EUVD
EUVDā€¢added 2 days agoā€¢5 views

EUVD-2026-34232

Access of uninitialized pointer, Uncontrolled Recursion vulnerability in Samsung Open Source rlottie allows Pointer Manipulation, Oversized Serialized Data Payloads. This issue affects rlottie: before eae37633fda13ac05b25c6c95aacea4bc33c80a3...

6.1CVSS5.8AI score0.00013EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBā€¢added 2 days agoā€¢4 views

CVE-2026-47320

Access of uninitialized pointer, Uncontrolled Recursion vulnerability in Samsung Open Source rlottie allows Pointer Manipulation, Oversized Serialized Data Payloads. This issue affects rlottie: before eae37633fda13ac05b25c6c95aacea4bc33c80a3...

6.1CVSS5.8AI score0.00013EPSS
Exploits0References2
Vulnrichment
Vulnrichmentā€¢added 2 days agoā€¢4 views

CVE-2026-47320

Access of uninitialized pointer, Uncontrolled Recursion vulnerability in Samsung Open Source rlottie allows Pointer Manipulation, Oversized Serialized Data Payloads. This issue affects rlottie: before eae37633fda13ac05b25c6c95aacea4bc33c80a3...

6.1CVSS5.8AI score0.00013EPSS
Exploits0References1
CVE
CVEā€¢added 2 days agoā€¢14 views

CVE-2026-47320

CVE-2026-47320 affects the Samsung Open Source library rlottie (pre-commit eae37633fda13ac05b25c6c95aacea4bc33c80a3). The issue is described as an access of an uninitialized pointer and uncontrolled recursion, enabling pointer manipulation and handling of oversized serialized data payloads. Accor...

6.1CVSS5.8AI score0.00013EPSS
Exploits0References1
Positive Technologies
Positive Technologiesā€¢added 2 days agoā€¢8 views

PT-2026-46171

Access of uninitialized pointer, Uncontrolled Recursion vulnerability in Samsung Open Source rlottie allows Pointer Manipulation, Oversized Serialized Data Payloads. This issue affects rlottie: before eae37633fda13ac05b25c6c95aacea4bc33c80a3...

6.1CVSS5.8AI score0.00013EPSS
Exploits0References2
EUVD
EUVDā€¢added 2026/05/19 4:47 a.m.ā€¢6 views

EUVD-2026-30839

Uncontrolled Recursion vulnerability in Samsung Open Source Escargot allows Oversized Serialized Data Payloads. This issue affects Escargot: 590345cc6258317c5da850d846ce6baaf2afc2d3...

5.5CVSS5.8AI score0.0001EPSS
Exploits0References1
Vulnrichment
Vulnrichmentā€¢added 2026/05/19 4:47 a.m.ā€¢6 views

CVE-2026-47309

Uncontrolled Recursion vulnerability in Samsung Open Source Escargot allows Oversized Serialized Data Payloads. This issue affects Escargot: 590345cc6258317c5da850d846ce6baaf2afc2d3...

5.5CVSS5.8AI score0.0001EPSS
Exploits0References1
CVE
CVEā€¢added 2026/05/19 4:47 a.m.ā€¢9 views

CVE-2026-47309

Technical details for CVE-2026-47309 are not publicly available in the provided documents. Monitor for updates.

7.5CVSS5.8AI score0.0001EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKBā€¢added 2026/05/13 2:58 p.m.ā€¢3 views

CVE-2026-44456

Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.16, bodyLimit does not reliably enforce maxSize for requests without a usable Content-Length e.g. Transfer-Encoding: chunked. Oversized requests can reach handlers and return 200 instead of 413. Th...

6.5CVSS5.8AI score0.00012EPSS
Exploits0References2Affected Software1
Snyk
Snykā€¢added 2026/05/06 11:50 p.m.ā€¢7 views

Allocation of Resources Without Limits or Throttling

Overview hono is an Ultrafast web framework for the Edges Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling via the bodyLimit function. An attacker can bypass request size restrictions by sending chunked or unknown-length requests, allowing...

8.7CVSS5.8AI score0.00012EPSS
Exploits0References2
EUVD
EUVDā€¢added 2026/04/14 10:31 p.m.ā€¢0 views

EUVD-2026-22770

Jellyfin is an open source self hosted media server. Versions prior to 10.11.7 contain a denial of service vulnerability in the SyncPlay group creation endpoint POST /SyncPlay/New, where an authenticated user can create groups with names of unlimited size due to insufficient input validation. By...

6.5CVSS5.9AI score0.00057EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBā€¢added 2026/04/09 10:12 a.m.ā€¢1 views

CVE-2026-24661

Mattermost Plugins versions =2.1.3.0 fail to limit the request body size on the /changes webhook endpoint which allows an authenticated attacker to cause memory exhaustion and denial of service via sending an oversized JSON payload. Mattermost Advisory ID: MMSA-2026-00611...

3.7CVSS5.9AI score0.00018EPSS
Exploits0References2
OSV
OSVā€¢added 2026/04/09 12:31 a.m.ā€¢1 views

GHSA-C3F2-QG8V-25Q2 Duplicate Advisory: Unfurl's unbounded zlib decompression allows decompression bomb DoS

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-h5qv-qjv4-pc5m. This link is maintained to preserve external references. Original Description Unfurl before 2026.04 contains an unbounded zlib decompression vulnerability in parsecompressed.py that allows remote...

8.7CVSS5.8AI score0.00211EPSS
Exploits1References6
Rows per page
Query Builder