Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

21797 matches found

OSV
OSVadded 2026/05/15 1:45 p.m.4 views

ECHO-50E5-DFFB-2CC0

Bulletin has no description...

8.3CVSS5.7AI score0.00207EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/05/15 1:59 a.m.39 views

CVE-2024-21962

Improper Input Validation in the AMD RAID driver could allow an attacker to point to an arbitrary memory location potentially resulting in privilege escalation and arbitrary code execution...

8.6CVSS0.00106EPSS
Exploits0References1
Circl
Circladded 2026/05/15 1:19 a.m.14 views

CVE-2026-44662

creationtimestamp| type| source ---|---|--- 2026-05-15 01:19:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlu63ckcem2t...

5.1CVSS5.7AI score0.00172EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/05/15 12:0 a.m.9 views

PT-2026-41418

wow CVE-2026-22931203921321321...

5.8AI score
Exploits0References1
CNNVD
CNNVDadded 2026/05/15 12:0 a.m.17 views

OpenMRS 代码注入漏洞

OpenMRS is an open-source electronic health record system developed by OpenMRS Inc. Versions of OpenMRS from 2.7.0 to 2.7.9 and before 2.8.6 have a code injection vulnerability. This vulnerability arises from the ConceptReferenceRangeUtility.evaluateCriteria method, which evaluates condition...

9.1CVSS5.9AI score0.00317EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2026/05/15 12:0 a.m.13 views

Open WebUI < 0.9.5 Multiple Vulnerabilities

The version of Open WebUI running on the remote host is prior to 0.9.5. It is, therefore, affected by multiple vulnerabilities: - An insecure direct object reference IDOR vulnerability in the retrieval API allows any authenticated user who knows a private knowledge base UUID to bypass access...

8.5CVSS5.9AI score0.00331EPSS
Exploits2References4
OSV
OSVadded 2026/05/14 10:1 p.m.4 views

MINI-JC9C-Q4C5-324F

Bulletin has no description...

7CVSS7.2AI score0.00157EPSS
Exploits0
OSV
OSVadded 2026/05/14 9:15 p.m.2 views

MINI-6XFV-8RWH-33RV

Bulletin has no description...

7.5CVSS5.7AI score0.00565EPSS
Exploits0
OSV
OSVadded 2026/05/14 8:27 p.m.4 views

GHSA-X3QM-P8HR-3C3H Open WebUI has an Indirect Object Reference (IDOR) in user notes

Summary The API /api/v1/notes/noteid endpoint lacks proper authorization checks, allowing authenticated users to retrieve notes belonging to other users by guessing or enumerating UUIDs. This results in unauthorized disclosure of potentially sensitive or private user data. Details - if notes is...

6.5CVSS5.8AI score0.00277EPSS
Exploits1References5
Github Security Blog
Github Security Blogadded 2026/05/14 8:27 p.m.9 views

Open WebUI has an Indirect Object Reference (IDOR) in user notes

Summary The API /api/v1/notes/noteid endpoint lacks proper authorization checks, allowing authenticated users to retrieve notes belonging to other users by guessing or enumerating UUIDs. This results in unauthorized disclosure of potentially sensitive or private user data. Details - if notes is...

6.5CVSS5.8AI score0.00277EPSS
Exploits1References5Affected Software1
vulnersOsv
vulnersOsvadded 2026/05/14 8:27 p.m.5 views

hubzoid (>=0.2.2 <=0.4.5), openwebui-token-tracking (>=0.1.7 <=0.1.10) +1 more potentially affected by CVE-2026-45400 via open-webui (>=0.6.0 <=0.8.8)

open-webui PYPI version =0.6.0, =0.2.2, =0.1.7, =0.1.0, =0.1.5 Source cves: CVE-2026-45400 Source advisory: SNYK:PYTHON-OPENWEBUI-16755281...

8.5CVSS5.4AI score0.00292EPSS
Exploits1
NVD
NVDadded 2026/05/14 6:16 p.m.9 views

CVE-2026-44544

gittuf is a platform-agnostic Git security system. Prior to 0.14.0, an attacker with push access to gittuf's Reference State Log RSL can roll back the current policy to any previous policy trusted by the current set of root keys. gittuf determines the policy to load by inspecting the RSL. Except...

4.9CVSS0.00198EPSS
Exploits0References2
OSV
OSVadded 2026/05/14 6:16 p.m.7 views

UBUNTU-CVE-2026-44544

gittuf is a platform-agnostic Git security system. Prior to 0.14.0, an attacker with push access to gittuf's Reference State Log RSL can roll back the current policy to any previous policy trusted by the current set of root keys. gittuf determines the policy to load by inspecting the RSL. Except...

4.9CVSS5.8AI score0.00198EPSS
Exploits0References4
UbuntuCve
UbuntuCveadded 2026/05/14 6:16 p.m.7 views

CVE-2026-44544

gittuf is a platform-agnostic Git security system. Prior to 0.14.0, an attacker with push access to gittuf's Reference State Log RSL can roll back the current policy to any previous policy trusted by the current set of root keys. gittuf determines the policy to load by inspecting the RSL. Except...

4.9CVSS5.8AI score0.00198EPSS
Exploits0References3
Circl
Circladded 2026/05/14 6:0 p.m.7 views

CVE-2026-32643

creationtimestamp| type| source ---|---|--- 2026-05-14 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/f5-products-multiple-vulnerabilities20260515...

8.7CVSS5.8AI score0.00156EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/05/14 5:35 p.m.5 views

CVE-2026-7805

REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2026-3258. Reason: This candidate is a reservation duplicate of CVE-2026-3258. Notes: All CVE users should reference CVE-2026-3258instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

5.8AI score
Exploits0References1
CVE
CVEadded 2026/05/14 5:34 p.m.16 views

CVE-2026-44544

Summary of the vulnerability (CVE-2026-44544) : In gittuf, before version 0.14.0, an attacker with push access to the Reference State Log (RSL) could roll back the current policy to a previously trusted version by inserting an RSL entry that references an older policy. This works because policy l...

4.9CVSS5.8AI score0.00198EPSS
Exploits0References2
EUVD
EUVDadded 2026/05/14 5:34 p.m.7 views

EUVD-2026-30348

gittuf is a platform-agnostic Git security system. Prior to 0.14.0, an attacker with push access to gittuf's Reference State Log RSL can roll back the current policy to any previous policy trusted by the current set of root keys. gittuf determines the policy to load by inspecting the RSL. Except...

4.9CVSS5.8AI score0.00198EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/05/14 5:34 p.m.33 views

CVE-2026-44544 gittuf: Policy can be rolled back to prior valid version

gittuf is a platform-agnostic Git security system. Prior to 0.14.0, an attacker with push access to gittuf's Reference State Log RSL can roll back the current policy to any previous policy trusted by the current set of root keys. gittuf determines the policy to load by inspecting the RSL. Except...

4.9CVSS0.00198EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/05/14 5:34 p.m.7 views

CVE-2026-44544 gittuf: Policy can be rolled back to prior valid version

gittuf is a platform-agnostic Git security system. Prior to 0.14.0, an attacker with push access to gittuf's Reference State Log RSL can roll back the current policy to any previous policy trusted by the current set of root keys. gittuf determines the policy to load by inspecting the RSL. Except...

4.9CVSS5.8AI score0.00198EPSS
Exploits0References2
Rows per page
Query Builder