Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2019-14767

Malware in sbrugna...

9.9CVSS9AI score0.02695EPSS
Exploits1References2
CVE
CVEadded 2025/03/20 10:10 a.m.82 views

CVE-2025-1474

Summary: CVE-2025-1474 affects mlflow/mlflow 2.18, where an admin can create a new user account without a password, potentially enabling unauthorized access. The issue is fixed in version 2.19.0. Reports across multiple sources (Red Hat, CIRCL, GHSA, osv, NVD, OSV) corroborate the same descriptio...

5.5CVSS4AI score0.00336EPSS
Exploits1References2Affected Software1
CVE
CVEadded 2025/02/07 12:0 a.m.45 views

CVE-2024-57707

CVE-2024-57707 affects DataEase v1. The vulnerability enables arbitrary code execution through the user account and password components. Base CVSS 3.1 score is 9.8 (CRITICAL) with network attack vector, no privileges, no user interaction required. Connected sources identify DataEase as the affect...

9.8CVSS8AI score0.00702EPSS
Exploits1References1Affected Software1
NVD
NVDadded 2023/12/13 6:15 p.m.16 views

CVE-2023-50770

Jenkins OpenId Connect Authentication Plugin 2.6 and earlier stores a password of a local user account used as an anti-lockout feature in a recoverable format, allowing attackers with access to the Jenkins controller file system to recover the plain text password of that account, likely gaining...

6.7CVSS0.00286EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2023/02/15 4:3 a.m.2 views

SUSE CVE-2020-5422

BOSH System Metrics Server releases prior to 0.1.0 exposed the UAA password as a flag to a process running on the BOSH director. It exposed the password to any user or process with access to the same VM through ps or looking at process details...

6.5CVSS6.7AI score0.00906EPSS
Exploits0References3
CNVD
CNVDadded 2019/09/11 12:0 a.m.2 views

CentOS Web Panel Input Validation Error Vulnerability (CNVD-2019-32252)

CentOS Web Panel CWP is a free web hosting control panel. An input validation error vulnerability exists in CentOS Web Panel version 0.9.8.851, which can be exploited by an attacker to change the email password in an affected user account...

6.5CVSS7AI score0.01787EPSS
Exploits2References1
NVD
NVDadded 2018/01/09 9:29 p.m.15 views

CVE-2017-12695

An Improper Authentication issue was discovered in General Motors GM and Shanghai OnStar SOS SOS iOS Client 7.1. Successful exploitation of this vulnerability may allow an attacker to subvert security mechanisms and reset a user account password...

8.8CVSS8.4AI score0.01852EPSS
Exploits0References2
Prion
Prionadded 2018/01/09 9:29 p.m.14 views

Authentication flaw

An Improper Authentication issue was discovered in General Motors GM and Shanghai OnStar SOS SOS iOS Client 7.1. Successful exploitation of this vulnerability may allow an attacker to subvert security mechanisms and reset a user account password...

4CVSS8.2AI score0.01852EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder