Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CVE
CVEadded 2025/05/09 12:0 a.m.55 views

CVE-2025-47735

CVE-2025-47735 affects the Rust wgp crate (versions 0.2.0 and earlier). The root cause is missing drop_slow thread synchronization in inner::drop (inner.rs), leading to a race condition in multithreaded contexts. Exploit details are not provided in the documents; remediation references suggest av...

9.8CVSS7.2AI score0.00159EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2025/02/13 3:20 p.m.9 views

CVE-2025-24903 libsignal-service-rs Doesn't Check Origin of Sync Messages

libsignal-service-rs is a Rust version of the libsignal-service-java library which implements the core functionality to communicate with Signal servers. Prior to commit 82d70f6720e762898f34ae76b0894b0297d9b2f8, any contact may forge a sync message, impersonating another device of the local user...

8.5CVSS6.8AI score0.00095EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/02/05 12:7 a.m.5 views

CVE-2024-4154

In lunary-ai/lunary version 1.2.2, an incorrect synchronization vulnerability allows unprivileged users to rename projects they do not have access to. Specifically, an unprivileged user can send a PATCH request to the project's endpoint with a new name for a project, despite not having the...

7.1CVSS6.4AI score0.00106EPSS
Exploits1
OSV
OSVadded 2024/05/21 6:15 p.m.7 views

CVE-2024-4154

In lunary-ai/lunary version 1.2.2, an incorrect synchronization vulnerability allows unprivileged users to rename projects they do not have access to. Specifically, an unprivileged user can send a PATCH request to the project's endpoint with a new name for a project, despite not having the...

6.5CVSS6.7AI score0.00106EPSS
Exploits1References2
OSV
OSVadded 2023/01/18 12:15 a.m.2 views

CVE-2023-21853

Vulnerability in the Oracle Mobile Field Service product of Oracle E-Business Suite component: Synchronization. Supported versions that are affected are 12.2.3-12.2.12. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Mobile Field...

7.5CVSS7.2AI score
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2022/02/07 12:0 a.m.58 views

Mitsubishi Electric GOT2000 series and GT SoftGOT2000 (CVE-2021-20592)

Missing synchronization vulnerability in GOT2000 series GT27 model communication driver versions 01.19.000 through 01.39.010, GT25 model communication driver versions 01.19.000 through 01.39.010 and GT23 model communication driver versions 01.19.000 through 01.39.010 and GT SoftGOT2000 versions...

7.7AI score0.00388EPSS
Exploits0References4
Microsoft KB
Microsoft KBadded 2019/11/12 8:0 a.m.320 views

November 12, 2019—KB4523205 (OS Build 17763.864)

November 12, 2019—KB4523205 OS Build 17763.864 Note This release also contains updates for Microsoft HoloLens OS Build 17763.865 released November 12, 2019. Microsoft will release an update directly to the Windows Update Client to improve Windows Update reliability on Microsoft HoloLens that have...

9.3CVSS7.2AI score0.83036EPSS
Exploits31
Rows per page
Query Builder