Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

12548 matches found

RedHat Linux
RedHat Linuxadded 2026/01/26 2:47 p.m.20 views

Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.8CVSS6.9AI score0.00195EPSS
Exploits0References9
RedHat Linux
RedHat Linuxadded 2026/01/26 2:47 p.m.1 views

kernel: Bluetooth: hci_sock: Prevent race in socket write iter and sock bind

A use-after-free vulnerability was found in the Linux kernel's Bluetooth HCI socket implementation. A race condition between socket bind and write operations allows mgmtpending to free a command structure while writeiter is still attempting to send it, resulting in use-after-free when the freed...

5.8AI score0.00156EPSS
Exploits0References5
OSV
OSVadded 2026/01/26 2:47 p.m.3 views

BIT-NODE-2025-59465

A malformed HTTP/2 HEADERS frame with oversized, invalid HPACK data can cause Node.js to crash by triggering an unhandled TLSSocket error ECONNRESET. Instead of safely closing the connection, the process crashes, enabling a remote denial of service. This primarily affects applications that do not...

7.5CVSS5.9AI score0.00929EPSS
Exploits0References2
RedHat Linux
RedHat Linuxadded 2026/01/26 2:47 p.m.5 views

kernel: Linux kernel: vsock vulnerability may lead to memory corruption

A flaw was found in the Linux kernel's vsock component. This vulnerability occurs when a connect operation on an already established socket is interrupted by a signal or timeout, causing the system to mishandle the socket's state. This incorrect handling can lead to a race condition, potentially...

5.8AI score0.00195EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2026/01/26 2:32 p.m.1 views

kernel: mptcp: fix race condition in mptcp_schedule_work()

A race in mptcpschedulework could lead to a use-after-free: the function queued work and only then acquired a reference to the socket. If the worker ran to completion immediately, the subsequent sockhold operated on a freed object. Impact ranges from kernel crash DoS to potential privilege...

5.8AI score0.00165EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2026/01/26 2:32 p.m.0 views

kernel: Bluetooth: ISO: Fix possible UAF on iso_conn_free

A vulnerability was found in isosockkill in net/bluetooth/iso.c in Bluetooth protocol stack in the Linux Kernel. In this flaw if the conn-sk is not set to NULL may lead to UAF on isoconnfree...

5.8AI score0.00174EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2026/01/26 1:44 p.m.4 views

kernel: Linux kernel: vsock vulnerability may lead to memory corruption

A flaw was found in the Linux kernel's vsock component. This vulnerability occurs when a connect operation on an already established socket is interrupted by a signal or timeout, causing the system to mishandle the socket's state. This incorrect handling can lead to a race condition, potentially...

5.8AI score0.00195EPSS
Exploits0References5
OSV
OSVadded 2026/01/26 12:30 p.m.3 views

GHSA-JMW5-58C7-587H Apache Karaf Decanter has Deserialization of Untrusted Data in its Log Socket Collector

Deserialization of Untrusted Data vulnerability in Apache Karaf Decanter. The Decanter Log Socket Collector exposes port 4560 without authentication. If the collector exposes allowed classes property, this configuration can be bypassed. The Log Socket Collector is vulnerable to deserialization of...

3.7CVSS5.8AI score0.00655EPSS
Exploits0References6
Github Security Blog
Github Security Blogadded 2026/01/26 12:30 p.m.10 views

Apache Karaf Decanter has Deserialization of Untrusted Data in its Log Socket Collector

Deserialization of Untrusted Data vulnerability in Apache Karaf Decanter. The Decanter Log Socket Collector exposes port 4560 without authentication. If the collector exposes allowed classes property, this configuration can be bypassed. The Log Socket Collector is vulnerable to deserialization of...

3.7CVSS5.8AI score0.00655EPSS
Exploits0References6Affected Software1
Snyk
Snykadded 2026/01/26 10:50 a.m.5 views

Deserialization of Untrusted Data

Overview Affected versions of this package are vulnerable to Deserialization of Untrusted Data via the log-socket collector process. An attacker can execute arbitrary code or cause a denial of service by sending specially crafted serialized objects to the exposed port 4560 when the allowed classe...

8.7CVSS6.2AI score0.00655EPSS
Exploits0References2
NVD
NVDadded 2026/01/26 10:16 a.m.6 views

CVE-2026-24656

Deserialization of Untrusted Data vulnerability in Apache Karaf Decanter. The Decanter log socket collector exposes the port 4560, without authentication. If the collector exposes allowed classes property, this configuration can be bypassed. It means that the log socket collector is vulnerable to...

3.7CVSS0.00655EPSS
Exploits0References2
OSV
OSVadded 2026/01/26 10:16 a.m.4 views

CVE-2026-24656

Deserialization of Untrusted Data vulnerability in Apache Karaf Decanter. The Decanter log socket collector exposes the port 4560, without authentication. If the collector exposes allowed classes property, this configuration can be bypassed. It means that the log socket collector is vulnerable to...

3.7CVSS5.8AI score
Exploits0References2
NVD
NVDadded 2026/01/26 10:16 a.m.12 views

CVE-2025-59098

The Access Manager is offering a trace functionality to debug errors and issues with the device. The trace functionality is implemented as a simple TCP socket. A tool called TraceClient.exe, provided by dormakaba via the Access Manager web interface, is used to connect to the socket and receive...

8.7CVSS0.00339EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2026/01/26 10:4 a.m.3 views

CVE-2025-59098 Trace Functionality Leaking Sensitive Data in dormakaba access manager

The Access Manager is offering a trace functionality to debug errors and issues with the device. The trace functionality is implemented as a simple TCP socket. A tool called TraceClient.exe, provided by dormakaba via the Access Manager web interface, is used to connect to the socket and receive...

8.7CVSS5.9AI score0.00339EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/01/26 10:4 a.m.3 views

CVE-2025-59098

The Access Manager is offering a trace functionality to debug errors and issues with the device. The trace functionality is implemented as a simple TCP socket. A tool called TraceClient.exe, provided by dormakaba via the Access Manager web interface, is used to connect to the socket and receive...

8.7CVSS5.9AI score0.00339EPSS
Exploits0References4
EUVD
EUVDadded 2026/01/26 10:4 a.m.5 views

EUVD-2025-206362

The Access Manager is offering a trace functionality to debug errors and issues with the device. The trace functionality is implemented as a simple TCP socket. A tool called TraceClient.exe, provided by dormakaba via the Access Manager web interface, is used to connect to the socket and receive...

8.7CVSS5.9AI score0.00339EPSS
Exploits0References3
EUVD
EUVDadded 2026/01/26 9:41 a.m.7 views

EUVD-2026-4680

Deserialization of Untrusted Data vulnerability in Apache Karaf Decanter. The Decanter log socket collector exposes the port 4560, without authentication. If the collector exposes allowed classes property, this configuration can be bypassed. It means that the log socket collector is vulnerable to...

3.7CVSS5.8AI score0.00655EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/01/26 9:41 a.m.33 views

CVE-2026-24656 Apache Karaf: Decanter log-socket collector has deserialization vulnerability

Deserialization of Untrusted Data vulnerability in Apache Karaf Decanter. The Decanter log socket collector exposes the port 4560, without authentication. If the collector exposes allowed classes property, this configuration can be bypassed. It means that the log socket collector is vulnerable to...

0.00655EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/01/26 9:41 a.m.3 views

CVE-2026-24656

Deserialization of Untrusted Data vulnerability in Apache Karaf Decanter. The Decanter log socket collector exposes the port 4560, without authentication. If the collector exposes allowed classes property, this configuration can be bypassed. It means that the log socket collector is vulnerable to...

3.7CVSS5.8AI score0.00655EPSS
Exploits0References2
CVE
CVEadded 2026/01/26 9:41 a.m.17 views

CVE-2026-24656

Concretely, CVE-2026-24656 affects Apache Karaf Decanter before 2.12.0, specifically the Decanter log socket collector that exposes port 4560 without authentication. If the collector exposes the allowed-classes property, this configuration can be bypassed, allowing deserialization of untrusted da...

3.7CVSS5.8AI score0.00655EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder