Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4220 matches found

Cvelist
Cvelistadded 2020/03/30 9:30 p.m.10 views

CVE-2020-11105

An issue was discovered in USC iLab cereal through 1.3.0. It employs caching of std::sharedptr values, using the raw pointer address as a unique identifier. This becomes problematic if an std::sharedptr variable goes out of scope and is freed, and a new std::sharedptr is allocated at the same...

9.4AI score0.0052EPSS
Exploits1References1
OSV
OSVadded 2020/03/30 7:15 p.m.1 views

DEBIAN-CVE-2020-7610

All versions of bson before 1.1.4 are vulnerable to Deserialization of Untrusted Data. The package will ignore an unknown value for an object's bsotype, leading to cases where an object is serialized as a document rather than the intended BSON type...

9.8CVSS6.9AI score0.00541EPSS
Exploits0References1
NVD
NVDadded 2020/03/30 7:15 p.m.8 views

CVE-2020-7610

All versions of bson before 1.1.4 are vulnerable to Deserialization of Untrusted Data. The package will ignore an unknown value for an object's bsotype, leading to cases where an object is serialized as a document rather than the intended BSON type...

9.8CVSS9.5AI score0.00541EPSS
Exploits0References1
Prion
Prionadded 2020/03/30 7:15 p.m.14 views

Deserialization of untrusted data

All versions of bson before 1.1.4 are vulnerable to Deserialization of Untrusted Data. The package will ignore an unknown value for an object's bsotype, leading to cases where an object is serialized as a document rather than the intended BSON type...

7.5CVSS9.3AI score0.00541EPSS
Exploits0References1Affected Software1
GitLab Advisory Database
GitLab Advisory Databaseadded 2020/03/30 12:0 a.m.16 views

Release of Invalid Pointer or Reference

An issue was discovered in USC iLab cereal. It employs caching of std::sharedptr values, using the raw pointer address as a unique identifier. This becomes problematic if a std::sharedptr variable goes out of scope and is freed, and a new std::sharedptr is allocated at the same address...

9.8CVSS1.6AI score0.0052EPSS
Exploits1References1Affected Software1
Fedora
Fedoraadded 2020/03/29 12:16 a.m.30 views

[SECURITY] Fedora 32 Update: PyYAML-5.3.1-1.fc32

YAML is a data serialization format designed for human readability and interaction with scripting languages. PyYAML is a YAML parser and emitter for Python. PyYAML features a complete YAML 1.1 parser, Unicode support, pickle support, capable extension API, and sensible error messages. PyYAML...

10CVSS1.7AI score0.01846EPSS
Exploits1
OpenVAS
OpenVASadded 2020/03/29 12:0 a.m.29 views

Fedora: Security Advisory for PyYAML (FEDORA-2020-e9741a6a15)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

10CVSS9.8AI score0.01846EPSS
Exploits1References2
Fedora
Fedoraadded 2020/03/27 1:10 p.m.23 views

[SECURITY] Fedora 31 Update: PyYAML-5.3.1-1.fc31

YAML is a data serialization format designed for human readability and interaction with scripting languages. PyYAML is a YAML parser and emitter for Python. PyYAML features a complete YAML 1.1 parser, Unicode support, pickle support, capable extension API, and sensible error messages. PyYAML...

10CVSS1.7AI score0.01846EPSS
Exploits1
Fedora
Fedoraadded 2020/03/27 10:46 a.m.39 views

[SECURITY] Fedora 30 Update: PyYAML-5.3.1-1.fc30

YAML is a data serialization format designed for human readability and interaction with scripting languages. PyYAML is a YAML parser and emitter for Python. PyYAML features a complete YAML 1.1 parser, Unicode support, pickle support, capable extension API, and sensible error messages. PyYAML...

10CVSS1.7AI score0.01846EPSS
Exploits1
Node.js
Node.jsadded 2020/03/26 6:40 p.m.15 views

Incorrect Account Used for Signing

Overview Versions of eth-ledger-bridge-keyring prior to 0.2.1 may use incorrect accounts for signing transactions. The vulnerability impacts cases where the user signs a personal message or transaction without first adding the account. This includes cases where the user has already added the...

6.7AI score
Exploits0Affected Software1
OSV
OSVadded 2020/03/26 1:15 p.m.0 views

DEBIAN-CVE-2020-10969

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to javax.swing.JEditorPane...

8.8CVSS7.1AI score0.01035EPSS
Exploits0References1
NVD
NVDadded 2020/03/26 1:15 p.m.18 views

CVE-2020-10969

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to javax.swing.JEditorPane...

8.8CVSS9AI score0.01035EPSS
Exploits0References8
OSV
OSVadded 2020/03/26 1:15 p.m.27 views

CVE-2020-10969

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to javax.swing.JEditorPane...

8.8CVSS6.5AI score
Exploits0References8
OSV
OSVadded 2020/03/26 1:15 p.m.36 views

CVE-2020-10968

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to org.aoju.bus.proxy.provider.remoting.RmiProvider aka bus-proxy...

8.8CVSS6.5AI score
Exploits0References8
OSV
OSVadded 2020/03/26 1:15 p.m.1 views

DEBIAN-CVE-2020-10968

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to org.aoju.bus.proxy.provider.remoting.RmiProvider aka bus-proxy...

8.8CVSS7.1AI score0.03824EPSS
Exploits0References1
NVD
NVDadded 2020/03/26 1:15 p.m.32 views

CVE-2020-10968

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to org.aoju.bus.proxy.provider.remoting.RmiProvider aka bus-proxy...

8.8CVSS9AI score0.03824EPSS
Exploits0References8
Prion
Prionadded 2020/03/26 1:15 p.m.26 views

Open redirect

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to org.aoju.bus.proxy.provider.remoting.RmiProvider aka bus-proxy...

6.8CVSS8.9AI score0.03824EPSS
Exploits0References8Affected Software30
Prion
Prionadded 2020/03/26 1:15 p.m.23 views

Design/Logic Flaw

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to javax.swing.JEditorPane...

6.8CVSS9AI score0.01035EPSS
Exploits0References8Affected Software30
UbuntuCve
UbuntuCveadded 2020/03/26 1:15 p.m.27 views

CVE-2020-10969

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to javax.swing.JEditorPane...

8.8CVSS7.1AI score0.01035EPSS
Exploits0References4
UbuntuCve
UbuntuCveadded 2020/03/26 1:15 p.m.35 views

CVE-2020-10968

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to org.aoju.bus.proxy.provider.remoting.RmiProvider aka bus-proxy...

8.8CVSS7.1AI score0.03824EPSS
Exploits0References4
Rows per page
Query Builder