Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

NVD
NVDadded 2026/03/19 9:17 p.m.5 views

CVE-2026-4428

A logic error in CRL distribution point validation in AWS-LC before 1.71.0 causes partitioned CRLs to be incorrectly rejected as out of scope, which allows a revoked certificate to bypass certificate revocation checks. To remediate this issue, users should upgrade to AWS-LC 1.71.0 or...

9.1CVSS0.00026EPSS
Exploits0References2
EUVD
EUVDadded 2026/03/19 8:37 p.m.5 views

EUVD-2026-13237

A logic error in CRL distribution point validation in AWS-LC before 1.71.0 causes partitioned CRLs to be incorrectly rejected as out of scope, which allows a revoked certificate to bypass certificate revocation checks. To remediate this issue, users should upgrade to AWS-LC 1.71.0 or...

9.1CVSS5.7AI score0.00026EPSS
Exploits0References2
CNNVD
CNNVDadded 2026/03/19 12:0 a.m.3 views

AWS libcrypto 安全漏洞

AWS libcrypto is a general-purpose encryption library open sourced by Amazon Web Services. Prior to version 1.71.0 of AWS libcrypto, there was a security vulnerability. This vulnerability stemmed from a logical error in the CRL distribution point validation process, which incorrectly rejected CRL...

9.1CVSS5.8AI score0.00026EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2025/11/16 10:47 p.m.2 views

CVE-2025-64179

lakeFS is an open-source tool that transforms object storage into a Git-like repositories. In versions 1.69.0 and below, missing authentication in the /api/v1/usage-report/summary endpoint allows anyone to retrieve aggregate API usage counts. While no sensitive data is disclosed, the endpoint may...

5.3CVSS6.7AI score0.00052EPSS
Exploits0References1
NVD
NVDadded 2025/11/06 10:15 p.m.1 views

CVE-2025-64179

lakeFS is an open-source tool that transforms object storage into a Git-like repositories. In versions 1.69.0 and below, missing authentication in the /api/v1/usage-report/summary endpoint allows anyone to retrieve aggregate API usage counts. While no sensitive data is disclosed, the endpoint may...

5.3CVSS0.00052EPSS
Exploits0References2
Cvelist
Cvelistadded 2025/11/06 9:57 p.m.5 views

CVE-2025-64179 lakeFS: Unauthenticated access to API usage metrics

lakeFS is an open-source tool that transforms object storage into a Git-like repositories. In versions 1.69.0 and below, missing authentication in the /api/v1/usage-report/summary endpoint allows anyone to retrieve aggregate API usage counts. While no sensitive data is disclosed, the endpoint may...

5.3CVSS0.00052EPSS
Exploits0References2
OSV
OSVadded 2025/11/06 9:57 p.m.4 views

CVE-2025-64179 lakeFS: Unauthenticated access to API usage metrics

lakeFS is an open-source tool that transforms object storage into a Git-like repositories. In versions 1.69.0 and below, missing authentication in the /api/v1/usage-report/summary endpoint allows anyone to retrieve aggregate API usage counts. While no sensitive data is disclosed, the endpoint may...

5.3CVSS6.7AI score0.00052EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-5624

Malicious code in bioql PyPI...

10CVSS8.7AI score0.0024EPSS
Exploits0References2
OSV
OSVadded 2025/03/03 2:15 p.m.2 views

CVE-2025-26970

Improper Control of Generation of Code 'Code Injection' vulnerability in NotFound Ark Theme Core ark-core allows Code Injection.This issue affects Ark Theme Core: from n/a before 1.71.0...

9.8CVSS5.8AI score0.0024EPSS
Exploits0References1
Rows per page
Query Builder