Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1235 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.5 views

EUVD-2023-0607

Malicious code in bioql PyPI...

9.8CVSS8.6AI score0.00371EPSS
Exploits0References10
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-1603

Malicious code in bioql PyPI...

5.8CVSS5.3AI score0.00131EPSS
Exploits0References7
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-18178

Malicious code in bioql PyPI...

3.1CVSS6.6AI score0.00295EPSS
Exploits0References7
RedhatCVE
RedhatCVEadded 2025/10/02 4:51 p.m.2 views

CVE-2024-58040

Crypt::RandomEncryption for Perl version 0.01 uses insecure rand function during encryption...

9.1CVSS7AI score0.00031EPSS
Exploits0References1
Microsoft CVE
Microsoft CVEadded 2025/10/02 6:11 a.m.1 views

In Samba, GnuTLS gnutls_rnd() can fail and give predictable random values.

...

5.5CVSS7AI score0.00259EPSS
Exploits1
Redos
Redosadded 2025/10/01 12:0 a.m.2 views

ROS-20251001-04

A vulnerability in the gnutlsrnd function of the Samba networking software package is related to the use of insufficiently random values. insufficiently randomized values. Exploitation of the vulnerability could allow an attacker to gain access to confidential data...

5.5CVSS7AI score0.00259EPSS
Exploits1
OSV
OSVadded 2025/09/30 11:37 a.m.0 views

CVE-2024-58040

Crypt::RandomEncryption for Perl version 0.01 uses insecure rand function during encryption...

9.1CVSS5.8AI score
Exploits0References3
Vulnrichment
Vulnrichmentadded 2025/09/29 11:54 p.m.2 views

CVE-2024-58040 Crypt::RandomEncryption for Perl uses insecure rand() function during encryption

Crypt::RandomEncryption for Perl version 0.01 uses insecure rand function during encryption...

6.6AI score0.00031EPSS
Exploits0References3
CVE
CVEadded 2025/09/29 11:54 p.m.8 views

CVE-2024-58040

Affected software: Crypt::RandomEncryption (Perl) version 0.01. Root cause: uses insecure rand() during encryption, potentially weakening confidentiality and integrity. Impact (per CVSS metrics): high confidentiality impact, high integrity impact, network attack vector, no user interaction, no pr...

9.1CVSS6.6AI score0.00031EPSS
Exploits0References3Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2025/09/29 3:23 p.m.5 views

Security Bulletin: Multiple security vulnerabilities in IBM Business Automation Manager Open Editions.

Summary Multiple vulnerabilities were addressed in IBM Business Automation Manager Open Editions 9.3.0. Vulnerability Details CVEID:CVE-2025-48989 DESCRIPTION: Improper Resource Shutdown or Release vulnerability in Apache Tomcat made Tomcat vulnerable to the made you reset attack. This issue...

7.5CVSS6.9AI score0.01022EPSS
Exploits2Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2025/09/29 7:30 a.m.4 views

Security Bulletin:IBM Event Streams is vulnerable to HTTP Parameter Pollution (HPP) attack (CVE-2025-7783).

Summary IBM Event Streams is vulnerable to an HTTP Parameter Pollution HPP attack due to the use of random values in the form-data module. This vulnerability affects how data from HTML forms is processed, particularly during form submission or when interacting with event listeners tied to form...

9.4CVSS6.6AI score0.01319EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2025/09/26 6:32 p.m.10 views

Security Bulletin: Vulnerabilities in Apache Tomcat and form-data might affect IBM Storage Defender Copy Data Management.

Summary IBM Storage Defender Copy Data Management can be affected by vulnerabilities in Apache Tomcat and form-data. Vulnerabilities include a memory leak which result in a denial of service, possible for a specially crafted request to bypass some rewrite rules which could be bypassed security...

9.8CVSS6.8AI score0.10908EPSS
Exploits7Affected Software1
Debian CVE
Debian CVEadded 2025/09/25 12:0 a.m.2 views

CVE-2025-55556

TensorFlow v2.18.0 was discovered to output random results when compiling Embedding, leading to unexpected behavior in the application...

6.5CVSS5.2AI score0.00032EPSS
Exploits1
RedhatCVE
RedhatCVEadded 2025/09/20 2:33 p.m.6 views

CVE-2025-10671

A vulnerability has been found in youth-is-as-pale-as-poetry e-learning 1.0. Impacted is the function encryptSecret of the file e-learning-master\exam-api\src\main\java\com\yf\exam\ability\shiro\jwt\JwtUtils.java of the component JWT Token Handler. The manipulation leads to insufficiently random...

6.3CVSS6.2AI score0.00054EPSS
Exploits0References1
NVD
NVDadded 2025/09/18 3:15 p.m.3 views

CVE-2025-10671

A vulnerability has been found in youth-is-as-pale-as-poetry e-learning 1.0. Impacted is the function encryptSecret of the file e-learning-master\exam-api\src\main\java\com\yf\exam\ability\shiro\jwt\JwtUtils.java of the component JWT Token Handler. The manipulation leads to insufficiently random...

6.3CVSS0.00054EPSS
Exploits0References4
Cvelist
Cvelistadded 2025/09/18 2:32 p.m.8 views

CVE-2025-10671 youth-is-as-pale-as-poetry e-learning JWT Token JwtUtils.java encryptSecret random values

A vulnerability has been found in youth-is-as-pale-as-poetry e-learning 1.0. Impacted is the function encryptSecret of the file e-learning-master\exam-api\src\main\java\com\yf\exam\ability\shiro\jwt\JwtUtils.java of the component JWT Token Handler. The manipulation leads to insufficiently random...

6.3CVSS0.00054EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2025/09/18 2:32 p.m.2 views

CVE-2025-10671 youth-is-as-pale-as-poetry e-learning JWT Token JwtUtils.java encryptSecret random values

A vulnerability has been found in youth-is-as-pale-as-poetry e-learning 1.0. Impacted is the function encryptSecret of the file e-learning-master\exam-api\src\main\java\com\yf\exam\ability\shiro\jwt\JwtUtils.java of the component JWT Token Handler. The manipulation leads to insufficiently random...

6.3CVSS4.2AI score0.00054EPSS
Exploits0References4
CVE
CVEadded 2025/09/18 2:32 p.m.10 views

CVE-2025-10671

CVE-2025-10671 concerns youth-is-as-pale-as-poetry e-learning 1.0, specifically the JWT Token Handler’s JwtUtils.encryptSecret. Multiple connected sources confirm the vulnerability is due to insufficiently random values generated by encryptSecret, which can be exploited remotely. The issue affect...

6.3CVSS4.5AI score0.00054EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2025/09/18 12:0 a.m.2 views

PT-2025-38404

Name of the Vulnerable Software and Affected Versions youth-is-as-pale-as-poetry e-learning version 1.0 Description A vulnerability exists due to insufficiently random values generated by the encryptSecret function within the JWT Token Handler component. The vulnerable file is...

6.3CVSS4.4AI score0.00054EPSS
Exploits0References6
IBM Security Bulletins
IBM Security Bulletinsadded 2025/09/17 5:29 p.m.6 views

Security Bulletin: Watsonx BI is affected by the use of Insufficiently Random Values causing a vulnerability in form-data allowing HTTP Parameter Pollution (HPP)

Summary Watsonx BI is affected by the use of Insufficiently Random Values causing a vulnerability in form-data allowing HTTP Parameter Pollution HPP. This vulnerability is associated with program files lib/formdata.Js. Vulnerability Details CVEID:CVE-2025-25724 DESCRIPTION: listitemverbose in...

7.8CVSS7.1AI score0.00028EPSS
Exploits1Affected Software1
Rows per page
Query Builder