Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CVE
CVEadded 2026/02/03 7:14 p.m.6 views

CVE-2026-24441

The CVE-2026-24441 entry concerns Shenzhen Tenda AC7 firmware (versions prior to and including V03.03.03.01_cn) that transmits account credentials in plaintext via HTTP responses. The underlying issue is the lack of encryption for authentication material, enabling an on-path attacker to intercept...

8.2CVSS5.5AI score0.00017EPSS
Exploits0References2Affected Software1
OSV
OSVadded 2025/07/01 11:15 a.m.1 views

CVE-2025-6224

Certificate generation in juju/utils using the cert.NewLeaf function could include private information. If this certificate were then transferred over the network in plaintext, an attacker listening on that network could sniff the certificate and trivially extract the private key from it...

6.5CVSS7AI score
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 7:46 p.m.13 views

CVE-2021-32982

Automation Direct CLICK PLC CPU Modules: C0-1x CPUs with firmware prior to v3.00 passwords are sent as plaintext during unlocking and project transfers. An attacker who has network visibility can observe the password exchange...

7.5CVSS7.1AI score0.00116EPSS
Exploits0
Cvelist
Cvelistadded 2021/03/31 1:41 p.m.12 views

CVE-2021-23985

If an attacker is able to alter specific about:config values for example malware running on the user's computer, the Devtools remote debugging feature could have been enabled in a way that was unnoticable to the user. This would have allowed a remote attacker able to make a direct network...

6.9AI score0.00747EPSS
Exploits0References2
Veracode
Veracodeadded 2021/03/25 1:22 a.m.19 views

Information Disclosure

firefox is vulnerable to information disclosure. The vulnerability exists due to the Devtools remote debugging feature which could be enabled in a way that was unnoticable to the user, which allow an attacker to make direct network connection to the victim to monitor the user's browsing activity...

6.5CVSS2.4AI score0.00747EPSS
Exploits0References4Affected Software7
Google Chrome Security Advisories
Google Chrome Security Advisoriesadded 2017/10/27 12:0 a.m.47 views

Stable Channel Update for Chrome OS

The Stable channel has been updated to 62.0.3202.74 Platform version: 9901.54.0/1 for most Chrome OS devices. This build contains a number of bug fixes and security updates. Systems will be receiving updates over the next several days. New Features Kerberos SSO integration for Active Directory...

9.6CVSS8.4AI score0.01175EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linuxadded 2016/11/02 11:5 a.m.3 views

OpenJDK: exposure of server authentication credentials to proxy (Networking, 8160838)

A flaw was found in the way the Networking component of OpenJDK handled HTTP proxy authentication. A Java application could possibly expose HTTPS server authentication credentials via a plain text network connection to an HTTP proxy if proxy asked for authentication...

5.9CVSS7.2AI score0.01445EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2016/10/20 12:37 p.m.5 views

OpenJDK: exposure of server authentication credentials to proxy (Networking, 8160838)

A flaw was found in the way the Networking component of OpenJDK handled HTTP proxy authentication. A Java application could possibly expose HTTPS server authentication credentials via a plain text network connection to an HTTP proxy if proxy asked for authentication...

5.9CVSS7.2AI score0.01445EPSS
Exploits0References5
Rows per page
Query Builder