Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

289 matches found

Positive Technologies
Positive Technologiesadded 2026/05/27 12:0 a.m.3 views

PT-2026-44145

Name of the Vulnerable Software and Affected Versions symfony/monolog-bridge versions prior to 5.4.52 symfony/monolog-bridge versions prior to 6.4.40 symfony/monolog-bridge versions prior to 7.4.12 symfony/monolog-bridge versions prior to 8.0.12 symfony/symfony versions prior to 5.4.52...

9.3CVSS6.5AI score
Exploits0References8
RedhatCVE
RedhatCVEadded 2026/05/26 8:15 p.m.6 views

CVE-2026-9497

A flaw has been found in changmingxie tcc-transaction up to 2.1.0. This issue affects the function Fastjson.parseObject of the component Fastjson AutoType REST API. This manipulation causes deserialization. It is possible to initiate the attack remotely. The vendor was contacted early about this...

6.5CVSS6.3AI score0.00045EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/05/20 3:3 a.m.35 views

CVE-2026-24163

NVIDIA TRT-LLM for any platform contains a vulnerability in RPC testing, where an attacker could cause an unsafe deserialization. A successful exploit of this vulnerability might lead to code execution, denial of service, data tampering, and information disclosure...

7.5CVSS0.00027EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2026/05/18 7:59 p.m.4 views

CVE-2026-8751

A security flaw has been discovered in h2oai h2o-3 up to 7402. This affects the function importBinaryModel of the file h2o-core/src/main/java/hex/Model.java of the component JAR Handler. Performing a manipulation results in deserialization. The attack is possible to be carried out remotely. The...

9.8CVSS6.7AI score0.00038EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/05/18 7:59 p.m.5 views

CVE-2026-8735

A vulnerability was identified in Oinone Pamirs up to 7.2.0. This affects the function JsonUtils.parseMap of the file PamirsParserConfig.java of the component appConfigQuery Interface. Such manipulation leads to deserialization. The attack can be launched remotely. The exploit is publicly availab...

6.5CVSS6.3AI score0.00045EPSS
Exploits0References1
NVD
NVDadded 2026/05/17 12:16 p.m.6 views

CVE-2026-8751

A security flaw has been discovered in h2oai h2o-3 up to 7402. This affects the function importBinaryModel of the file h2o-core/src/main/java/hex/Model.java of the component JAR Handler. Performing a manipulation results in deserialization. The attack is possible to be carried out remotely. The...

9.8CVSS0.00038EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/05/17 11:30 a.m.34 views

CVE-2026-8751 h2oai h2o-3 JAR Model.java importBinaryModel deserialization

A security flaw has been discovered in h2oai h2o-3 up to 7402. This affects the function importBinaryModel of the file h2o-core/src/main/java/hex/Model.java of the component JAR Handler. Performing a manipulation results in deserialization. The attack is possible to be carried out remotely. The...

7.5CVSS0.00038EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2026/05/17 11:30 a.m.5 views

CVE-2026-8751 h2oai h2o-3 JAR Model.java importBinaryModel deserialization

A security flaw has been discovered in h2oai h2o-3 up to 7402. This affects the function importBinaryModel of the file h2o-core/src/main/java/hex/Model.java of the component JAR Handler. Performing a manipulation results in deserialization. The attack is possible to be carried out remotely. The...

7.5CVSS6.7AI score0.00038EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/05/17 11:30 a.m.1 views

CVE-2026-8751

A security flaw has been discovered in h2oai h2o-3 up to 7402. This affects the function importBinaryModel of the file h2o-core/src/main/java/hex/Model.java of the component JAR Handler. Performing a manipulation results in deserialization. The attack is possible to be carried out remotely. The...

7.5CVSS6.7AI score0.00038EPSS
Exploits0References4Affected Software1
CVE
CVEadded 2026/05/17 11:30 a.m.12 views

CVE-2026-8751

Affected software: h2oai h2o-3 (versions before 7402). The issue lies in the JAR Handler component, specifically the importBinaryModel() function in h2o-core/src/main/java/hex/Model.java, where input manipulation can trigger deserialization. This enables remote exploitation, with the exploit publ...

9.8CVSS6.7AI score0.00038EPSS
Exploits0References4Affected Software1
EUVD
EUVDadded 2026/05/17 11:30 a.m.8 views

EUVD-2026-30697

A security flaw has been discovered in h2oai h2o-3 up to 7402. This affects the function importBinaryModel of the file h2o-core/src/main/java/hex/Model.java of the component JAR Handler. Performing a manipulation results in deserialization. The attack is possible to be carried out remotely. The...

7.5CVSS6.7AI score0.00038EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/05/17 5:15 a.m.32 views

CVE-2026-8735 Oinone Pamirs appConfigQuery PamirsParserConfig.java JsonUtils.parseMap deserialization

A vulnerability was identified in Oinone Pamirs up to 7.2.0. This affects the function JsonUtils.parseMap of the file PamirsParserConfig.java of the component appConfigQuery Interface. Such manipulation leads to deserialization. The attack can be launched remotely. The exploit is publicly availab...

6.5CVSS0.00045EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/05/17 5:15 a.m.3 views

CVE-2026-8735

A vulnerability was identified in Oinone Pamirs up to 7.2.0. This affects the function JsonUtils.parseMap of the file PamirsParserConfig.java of the component appConfigQuery Interface. Such manipulation leads to deserialization. The attack can be launched remotely. The exploit is publicly availab...

6.5CVSS6.3AI score0.00045EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologiesadded 2026/05/17 12:0 a.m.4 views

PT-2026-41520

A vulnerability was identified in Oinone Pamirs up to 7.2.0. This affects the function JsonUtils.parseMap of the file PamirsParserConfig.java of the component appConfigQuery Interface. Such manipulation leads to deserialization. The attack can be launched remotely. The exploit is publicly availab...

6.5CVSS6.3AI score0.00045EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2026/05/17 12:0 a.m.5 views

PT-2026-41541

Name of the Vulnerable Software and Affected Versions h2oai h2o-3 versions prior to 7402 Description A flaw in the JAR Handler component allows remote attackers to trigger deserialization by manipulating the importBinaryModel function within the h2o-core/src/main/java/hex/Model.java file...

7.5CVSS7.3AI score0.00038EPSS
Exploits0References6
Vulnrichment
Vulnrichmentadded 2026/05/03 11:45 p.m.1 views

CVE-2026-7712 MindsDB Pickle pickle.loads deserialization

A security vulnerability has been detected in MindsDB up to 26.01. Affected is the function pickle.loads of the component Pickle Handler. The manipulation leads to deserialization. The attack is possible to be carried out remotely. The exploit has been disclosed publicly and may be used. The vend...

6.5CVSS6.1AI score0.00015EPSS
Exploits0References4
CVE
CVEadded 2026/05/03 11:45 p.m.7 views

CVE-2026-7712

CVE-2026-7712 affects MindsDB up to version 26.01, with the vulnerability centered on the Pickle Handler's pickle.loads deserialization. The issue allows remote manipulation that leads to deserialization, and the exploit has been publicly disclosed and may be used. The vendor has not responded to...

6.5CVSS6.1AI score0.00015EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/05/03 11:45 p.m.2 views

CVE-2026-7712

A security vulnerability has been detected in MindsDB up to 26.01. Affected is the function pickle.loads of the component Pickle Handler. The manipulation leads to deserialization. The attack is possible to be carried out remotely. The exploit has been disclosed publicly and may be used. The vend...

6.5CVSS6.1AI score0.00015EPSS
Exploits0References4
NVD
NVDadded 2026/05/02 10:16 p.m.4 views

CVE-2026-7669

A vulnerability was detected in sgl-project SGLang up to 0.5.9. Impacted is the function gettokenizer of the file python/sglang/srt/utils/hftransformersutils.py of the component HuggingFace Transformer Handler. The manipulation of the argument trustremotecode with the input False as part of Boole...

6.3CVSS0.00018EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/05/02 10:0 p.m.6 views

CVE-2026-7669

A vulnerability was detected in sgl-project SGLang up to 0.5.9. Impacted is the function gettokenizer of the file python/sglang/srt/utils/hftransformersutils.py of the component HuggingFace Transformer Handler. The manipulation of the argument trustremotecode with the input False as part of Boole...

6.3CVSS6AI score0.00018EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder