Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2127 matches found

Tenable Nessus
Tenable Nessusadded 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2024-34062

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tqdm is an open source progress bar for Python and CLI. Any optional non-boolean CLI arguments e.g. --delim, --buf-size, --manpath are passed through python's...

4.8CVSS6.5AI score0.00432EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/03/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2024-40630

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation via a format-agnostic API with ...

4.3CVSS5.3AI score0.00423EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2022-21712

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - twisted is an event-driven networking engine written in Python. In affected versions twisted exposes cookies and authorization headers when following cross-orig...

7.5CVSS7.2AI score0.0142EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/03/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2022-31116

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+. Affected versions were found to improperly decode certain...

7.5CVSS7.1AI score0.01828EPSS
Exploits1References3
Tenable Nessus
Tenable Nessusadded 2025/03/05 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2024-24826

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in...

5.5CVSS5.5AI score0.0024EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/03/05 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2023-39353

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. Affected versions are subject to a missing offset...

9.1CVSS6.9AI score0.01247EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2025/03/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2023-40569

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. Affected versions are subject to an Out-Of-Bounds Write ...

9.8CVSS7.4AI score0.01106EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2025/03/05 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-24758

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Undici is an HTTP/1.1 client, written from scratch for Node.js. Undici already cleared Authorization headers on cross-origin redirects, but did not clear...

4.5CVSS6.7AI score0.00765EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/03/05 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2024-31449

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Redis is an open source, in-memory database that persists on disk. An authenticated user may use a specially crafted Lua script to trigger a stack buffer overfl...

8.8CVSS6.9AI score0.04488EPSS
Exploits1References3
Tenable Nessus
Tenable Nessusadded 2025/03/05 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2023-39356

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. In affected versions a missing offset validation may lea...

9.1CVSS7AI score0.01529EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2025/03/05 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2023-40567

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. Affected versions are subject to an Out-Of-Bounds Write ...

9.8CVSS7.3AI score0.0127EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2025/03/05 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2023-28642

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - runc is a CLI tool for spawning and running containers according to the OCI specification. It was found that AppArmor can be bypassed when /proc inside the...

7.8CVSS7.1AI score0.00343EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/03/05 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2023-48233

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vim is an open source command line text editor. If the count after the :s command is larger than what fits into a signed long variable, abort with evaluetoolarg...

4.3CVSS6.2AI score0.00749EPSS
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/03/03 7:47 a.m.1 views

Malicious code in @sie-ppr-web-store/app (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d7ee7dd1669e5fd58f27d9ea70c3d100d6f4f4bdafe541ff2185eefc2041c2c5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/03/03 12:0 a.m.8 views

CBL Mariner 2.0 Security Update: ruby / rubygem-rexml (CVE-2024-39908)

The version of ruby / rubygem-rexml installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-39908 advisory. - REXML is an XML toolkit for Ruby. The REXML gem before 3.3.1 has some DoS vulnerabilities when...

4.3CVSS7AI score0.01379EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2025/02/26 12:0 a.m.2 views

PT-2025-8183 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability has been resolved in the Linux kernel, specifically in the f2fs file system. The issue is related to a missing free nid in f2fs handle failed inode, which can cause a...

6.5AI score0.00241EPSS
Exploits0References15
Amazon
Amazonadded 2025/02/25 12:0 a.m.5 views

Important: ecs-service-connect-agent

Issue Overview: Envoy is a cloud-native high-performance edge/middle/service proxy. In affected versions sendOverloadError is going to assume the active request exists when envoy.loadshedpoints.http1serverabortdispatch is configured. If activerequest is nullptr, only onMessageBeginImpl is called...

7.5CVSS6.8AI score0.00687EPSS
Exploits1
Positive Technologies
Positive Technologiesadded 2025/02/24 12:0 a.m.4 views

PT-2025-7794 · Metabase · Metabase Enterprise Edition

Name of the Vulnerable Software and Affected Versions: Metabase Enterprise Edition versions 1.47.0 through 1.49.x Metabase Enterprise Edition versions 1.50.0 through 1.50.35 Metabase Enterprise Edition versions 1.51.0 through 1.51.13 Metabase Enterprise Edition versions 1.52.0 through 1.52.10...

6.5CVSS7.1AI score0.00336EPSS
Exploits0References8
RedhatCVE
RedhatCVEadded 2025/02/23 10:26 p.m.24 views

CVE-2025-27104

vyper is a Pythonic Smart Contract Language for the EVM. Multiple evaluation of a single expression is possible in the iterator target of a for loop. While the iterator expression cannot produce multiple writes, it can consume side effects produced in the loop body e.g. read a storage variable...

7.5CVSS7.4AI score0.00403EPSS
Exploits1References5
RedhatCVE
RedhatCVEadded 2025/02/23 12:18 a.m.5 views

CVE-2025-27100

lakeFS is an open-source tool that transforms your object storage into a Git-like repository. In affected versions an authenticated user can crash lakeFS by exhausting server memory. This is an authenticated denial-of-service issue. This problem has been patched in version 1.50.0. Users on versio...

6.5CVSS6.4AI score0.00402EPSS
Exploits0References1
Rows per page
Query Builder