Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

714 matches found

Cvelist
Cvelistadded 2025/11/03 7:47 p.m.5 views

CVE-2025-12531 IBM InfoSphere Information Server is affected by an XML external entity injection (XXE) vulnerability

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to an XML external entity injection XXE attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources...

7.1CVSS0.00757EPSS
Exploits0References1
Amazon
Amazonadded 2025/10/27 12:0 a.m.6 views

Medium: java-17-amazon-corretto

Issue Overview: Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Security. Supported versions that are affected are Oracle Java SE: 8u461, 8u461-perf, 11.0.28, 17.0.16, 21.0.8, 25; Oracle GraalVM for JDK: 17.0.16 a...

7.5CVSS6.6AI score0.00574EPSS
Exploits0
RedHat Linux
RedHat Linuxadded 2025/10/22 7:49 p.m.3 views

openjdk: Enhance Path Factories (Oracle CPU 2025-10)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JAXP. Supported versions that are affected are Oracle Java SE: 8u461, 8u461-perf, 11.0.28, 17.0.16, 21.0.8, 25; Oracle GraalVM for JDK: 17.0.16 and 21.0.8; Oracle...

7.5CVSS7.2AI score0.00574EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2025/10/22 7:48 p.m.5 views

openjdk: Enhance Path Factories (Oracle CPU 2025-10)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JAXP. Supported versions that are affected are Oracle Java SE: 8u461, 8u461-perf, 11.0.28, 17.0.16, 21.0.8, 25; Oracle GraalVM for JDK: 17.0.16 and 21.0.8; Oracle...

7.5CVSS7.2AI score0.00574EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2025/10/22 7:45 p.m.4 views

openjdk: Enhance Path Factories (Oracle CPU 2025-10)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JAXP. Supported versions that are affected are Oracle Java SE: 8u461, 8u461-perf, 11.0.28, 17.0.16, 21.0.8, 25; Oracle GraalVM for JDK: 17.0.16 and 21.0.8; Oracle...

7.5CVSS7.2AI score0.00574EPSS
Exploits0References5
OSV
OSVadded 2025/10/22 12:11 p.m.3 views

SUSE-SU-2025:20895-1 Security update for expat

This update for expat fixes the following issues: - CVE-2025-59375: memory amplification vulnerability allows attackers to trigger excessive dynamic memory allocations by submitting crafted XML input bsc1249584...

7.5CVSS6.3AI score0.01238EPSS
Exploits1References3
OSV
OSVadded 2025/10/21 8:20 p.m.1 views

CVE-2025-53066

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JAXP. Supported versions that are affected are Oracle Java SE: 8u461, 8u461-perf, 11.0.28, 17.0.16, 21.0.8, 25; Oracle GraalVM for JDK: 17.0.16 and 21.0.8; Oracle...

7.5CVSS5.9AI score
Exploits0References2
OSV
OSVadded 2025/10/21 8:20 p.m.2 views

DEBIAN-CVE-2025-53066

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JAXP. Supported versions that are affected are Oracle Java SE: 8u461, 8u461-perf, 11.0.28, 17.0.16, 21.0.8, 25; Oracle GraalVM for JDK: 17.0.16 and 21.0.8; Oracle...

7.5CVSS5.9AI score0.00574EPSS
Exploits0References1
AlpineLinux
AlpineLinuxadded 2025/10/21 8:3 p.m.2 views

CVE-2025-53066

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JAXP. Supported versions that are affected are Oracle Java SE: 8u461, 8u461-perf, 11.0.28, 17.0.16, 21.0.8, 25; Oracle GraalVM for JDK: 17.0.16 and 21.0.8; Oracle...

7.5CVSS6.4AI score0.00574EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2025/10/21 12:0 a.m.4 views

Amazon Corretto Java 17.x < 17.0.17.10.1 Multiple Vulnerabilities

The version of Amazon Corretto installed on the remote host is 17 prior to 17.0.17.10.1. It is, therefore, affected by multiple vulnerabilities as referenced in the corretto-17-2025-Oct-21 advisory. - Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition...

7.5CVSS7.4AI score0.00574EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/10/21 12:0 a.m.3 views

Amazon Corretto Java 11.x < 11.0.29.7.1 Multiple Vulnerabilities

The version of Amazon Corretto installed on the remote host is 11 prior to 11.0.29.7.1. It is, therefore, affected by multiple vulnerabilities as referenced in the corretto-11-2025-Oct-21 advisory. - Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition...

7.5CVSS7.4AI score0.00574EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2025/10/20 12:0 a.m.5 views

PT-2025-46530

Name of the Vulnerable Software and Affected Versions libvirt affected versions not specified Description A flaw exists in libvirt related to XML file processing. Specifically, user-provided XML files are parsed before Access Control List ACL checks. A malicious user with limited permissions coul...

6.2CVSS8.9AI score0.00486EPSS
Exploits0References36
OSV
OSVadded 2025/10/17 5:40 p.m.3 views

JLSEC-2025-74 valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes.

valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes...

7.5CVSS7AI score0.0601EPSS
Exploits0References19
IBM Security Bulletins
IBM Security Bulletinsadded 2025/10/09 2:27 p.m.7 views

Security Bulletin: IBM Maximo Application Suite - Visual Inspection component uses xmldom-0.8.10.tgz which is vulnerable to this CVE-2021-32796

Summary Security Bulletin: IBM Maximo Application Suite - Visual Inspection component uses xmldom-0.8.10.tgz which is vulnerable to this CVE-2021-32796 Vulnerability Details CVEID:CVE-2021-32796 DESCRIPTION: xmldom is an open source pure JavaScript W3C standard-based XML DOM Level 2 Core DOMParse...

6.5CVSS6.6AI score0.01347EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2025/10/08 9:36 p.m.8 views

Security Bulletin: Multiple vulnerabilities in IBM Aspera Faspex

Summary Multiple vulnerabilities were addressed in IBM Aspera Faspex version 5.0.14. Vulnerability Details CVEID:CVE-2025-55193 DESCRIPTION: Active Record connects classes to relational database tables. Prior to versions 7.1.5.2, 7.2.2.2, and 8.0.2.1, the ID passed to find or similar methods may ...

6.9CVSS6.6AI score0.00527EPSS
Exploits0Affected Software6
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2021-22138

Malware in sbrugna...

7.5CVSS7.5AI score0.00621EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.12 views

EUVD-2018-0482

Malware in sbrugna...

7.5CVSS7.6AI score0.077EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2021-2309

Malware in sbrugna...

7.5CVSS7.4AI score0.01434EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.6 views

EUVD-2020-27738

Malware in sbrugna...

7.5CVSS7.5AI score0.01046EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.5 views

EUVD-2021-2007

Malware in sbrugna...

7.5CVSS7.6AI score0.04007EPSS
Exploits0References10
Rows per page
Query Builder