Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

267 matches found

Amazon
Amazonadded 2026/04/01 12:0 a.m.5 views

Important: gstreamer1-plugins-bad-free

Issue Overview: GStreamer JPEG Parser Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack...

7.8CVSS7.6AI score0.00078EPSS
Exploits0
Rosalinux
Rosalinuxadded 2026/03/22 9:45 p.m.5 views

Advisory ROSA-SA-2026-3255

software: ffmpeg 4.4.6 OS: ROSA-CHROME unaffected versions = ffmpeg-4.4.6-3 affected versions ffmpeg-4.4.6-3 CVE-ID: CVE-2025-10256 BDU-ID: 2025-11446 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the configinput function of the FFmpeg multimedia library is related to pointer dereferencing...

5.5CVSS6.4AI score0.00007EPSS
Exploits0
Rosalinux
Rosalinuxadded 2026/03/22 9:17 p.m.4 views

Advisory ROSA-SA-2026-3244

software: xrdp 0.10.5 WASP: ROSA-CHROME unaffected versions = xrdp-0.10.5-1 affected versions xrdp-0.10.5-1 CVE-ID: CVE-2025-68670 BDU-ID: 2026-00962 CVE-Crit: CRITICAL CVE-DESC.: An XRDP server vulnerability is related to an operation exceeding buffer boundaries in memory. Exploitation of the...

9.8CVSS7.6AI score0.00207EPSS
Exploits0
Rosalinux
Rosalinuxadded 2026/03/22 9:2 p.m.6 views

Advisory ROSA-SA-2026-3233

software: libcupsfilters 2.0.0 OS: ROSA-CHROME unaffected versions = libcupsfilters-2.0.0.0-8 affected versions libcupsfilters-2.0.0-8 CVE-ID: CVE-2025-57812 BDU-ID: 2025-15977 CVE-Crit: LOW CVE-DESC.: A vulnerability in the cfFilterImageToRaster function of the CUPS print server is related to...

3.7CVSS5.7AI score0.00023EPSS
Exploits1
Rosalinux
Rosalinuxadded 2026/03/22 8:49 p.m.4 views

Advisory ROSA-SA-2026-3231

software: curl 8.7.1 OS: ROSA-CHROME unaffected versions = curl-8.7.1-5 affected versions curl-8.7.1-5 CVE-ID: CVE-2025-14524 BDU-ID: 2026-02955 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the cURL server communication software tool is related to URL redirection to an untrusted site...

9.8CVSS6.3AI score0.00513EPSS
Exploits2
Rosalinux
Rosalinuxadded 2026/03/22 6:55 p.m.5 views

Advisory ROSA-SA-2026-3227

software: qemu 7.2.22 OS: ROSA-CHROME unaffected versions = qemu-7.2.22-1 affected versions qemu-7.2.22-1 CVE-ID: CVE-2023-3019 BDU-ID: 2024-04883 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the e1000e component of the QEMU server is related to DMA re-entry. Exploitation of the vulnerability...

9.8CVSS7.5AI score0.01848EPSS
Exploits4
Rosalinux
Rosalinuxadded 2026/03/22 6:39 p.m.5 views

Advisory ROSA-SA-2026-3224

software: tpm2-tools 5.5.1 OS: ROSA-CHROME unaffected versions = tpm2-tools-5.5.1-1 affected versions tpm2-tools-5.5.1-1 CVE-ID: CVE-2024-29039 BDU-ID: 2025-16174 CVE-Crit: CRITICAL CVE-DESC.: A vulnerability in the tpm2 checkquote component of the Trusted Platform Module tpm2-tools repository fo...

9CVSS6.4AI score0.01708EPSS
Exploits1
Rosalinux
Rosalinuxadded 2026/03/22 6:31 p.m.4 views

Advisory ROSA-SA-2026-3217

software: runc 1.3.4 OS: ROSA-CHROME unaffected versions = runc-1.3.4-1 affected versions runc-1.3.4-1 CVE-ID: CVE-2024-45310 BDU-ID: 2024-06891 CVE-Crit: LOW CVE-DESC.: A vulnerability in the Runc isolated container tool is associated with a race condition that allows link tracking. Exploitation...

8.4CVSS6.8AI score0.0015EPSS
Exploits4
Rosalinux
Rosalinuxadded 2026/03/15 5:58 p.m.4 views

Advisory ROSA-SA-2026-3207

software: libxslt 1.1.43 OS: ROSA-CHROME unaffected versions = libxslt-1.1.43-1 affected versions libxslt-1.1.43-1 CVE-ID: CVE-2024-55549 BDU-ID: 2025-03641 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the xsltGetInheritedNsList function of the libxslt library is related to memory usage after it...

7.8CVSS6.7AI score0.00104EPSS
Exploits3
Amazon
Amazonadded 2026/02/18 12:0 a.m.6 views

Important: nvidia-xconfig

Issue Overview: NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attacker could cause an integer overflow or wraparound. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of servic...

7.8CVSS5.7AI score0.0001EPSS
Exploits0
Amazon
Amazonadded 2026/02/18 12:0 a.m.6 views

Medium: docker

Issue Overview: net/http: memory exhaustion in Request.ParseForm CVE-2025-61726 archive/zip: denial of service when parsing arbitrary ZIP archives CVE-2025-61728 crypto/tls: handshake messages may be processed at the incorrect encryption level CVE-2025-61730 crypto/tls: Config.Clone copies...

10CVSS8.3AI score0.00045EPSS
Exploits2
Rosalinux
Rosalinuxadded 2026/02/16 10:56 a.m.4 views

Advisory ROSA-SA-2026-3180

Software: perl 5.26.3 OS: ROSA Virtualization 3.0 unaffected versions = perl-5.26.3-423.rv30 affected versions perl-5.26.3-423.rv30 CVE-ID: CVE-2025-40909 BDU-ID: 2025-10307 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the Perl programming language interpreter is related to the use of an...

5.9CVSS7.3AI score0.00031EPSS
Exploits0
Rosalinux
Rosalinuxadded 2026/02/16 10:56 a.m.5 views

Advisory ROSA-SA-2026-3181

Software: rsync 3.1.3 OS: ROSA Virtualization 3.0 unaffected versions = rsync-3.1.3-23.rv30 affected versions rsync-3.1.3-23.rv30 CVE-ID: CVE-2025-4638 BDU-ID: None CVE-Crit: CRITICAL CVE-DESC.: A vulnerability in the zlib library embedded in PointCloudLibrary PCL allows attackers to cause...

9.8CVSS7.5AI score0.92544EPSS
Exploits2
Rosalinux
Rosalinuxadded 2026/02/16 7:27 a.m.4 views

Advisory ROSA-SA-2026-3156

Software: modauthopenidc 2.4.9.4 OS: ROSA Virtualization 3.1 unaffected versions = modauthopenidc-2.4.9.4-8.rv31 affected versions modauthopenidc-2.4.9.4-8.rv31 CVE-ID: CVE-2025-3891 BDU-ID: 2025-10948 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the authentication and authorization module for...

8.2CVSS6.4AI score0.00673EPSS
Exploits1
Rosalinux
Rosalinuxadded 2026/02/16 7:27 a.m.3 views

Advisory ROSA-SA-2026-3163

Software: sysstat 11.7.3 OS: ROSA Virtualization 3.1 unaffected versions = sysstat-11.7.3-13.rv31 affected versions sysstat-11.7.3-13.rv31 CVE-ID: CVE-2019-16167 BDU-ID: 2022-06244 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the remapstruct function of the sacommon.c component of the Sysstat...

7.8CVSS7.2AI score0.01477EPSS
Exploits2
Amazon
Amazonadded 2026/02/05 12:0 a.m.6 views

Important: kernel-livepatch-6.1.158-178.288

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: remove never-working support for setting nsh fields CVE-2025-40254 Affected Packages: kernel-livepatch-6.1.158-178.288 Issue Correction: Please ensure you have live patching enabled. Run dnf upda...

5.3AI score0.00102EPSS
Exploits0
Rosalinux
Rosalinuxadded 2026/01/26 12:35 p.m.4 views

Advisory ROSA-SA-2026-3124

software: cups 2.4.14 OS: ROSA-CHROME unaffected versions = cups-2.4.14-1 affected versions cups-2.4.14-1 CVE-ID: CVE-2025-58060 BDU-ID: 2025-11019 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the CUPS Common UNIX Printing System is related to flaws in the authentication procedure. Exploitation o...

8CVSS5.9AI score0.00053EPSS
Exploits1
Rosalinux
Rosalinuxadded 2026/01/26 12:16 p.m.6 views

Advisory ROSA-SA-2026-3120

software: qpdfview 0.5 WASP: ROSA-CHROME unaffected versions = qpdfview-0.5-4 affected versions qpdfview-0.5-4 CVE-ID: CVE-2025-46206 BDU-ID: 2025-11246 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the mutool clean utility of the MuPDF PDF viewer is related to infinite recursion. Exploitation of...

6.5CVSS5.8AI score0.00719EPSS
Exploits1
Amazon
Amazonadded 2026/01/22 12:0 a.m.6 views

Important: docker

Issue Overview: SSH Agent servers do not validate the size of messages when processing new identity requests, which may cause the program to panic if the message is malformed due to an out of bounds read. CVE-2025-47914 SSH servers parsing GSSAPI authentication requests do not validate the number...

7.5CVSS6.8AI score0.00055EPSS
Exploits3
OSV
OSVadded 2026/01/13 8:28 p.m.2 views

GHSA-FR4J-65PV-GJJJ Renovate vulnerable to arbitrary command injection via npm manager and malicious Renovate configuration

Summary The user-provided string packageName in the npm manager is appended to the npm install command during lock maintenance without proper sanitization. Details Adversaries can provide a maliciously crafted Renovate configuration file to trick Renovate to execute arbitrary code. The...

6.7CVSS8AI score
Exploits0References2
Rows per page
Query Builder