Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

789 matches found

Tenable Nessus
Tenable Nessusadded 2025/11/11 12:0 a.m.5 views

Amazon Linux 2 : curl, --advisory ALAS2-2025-3056 (ALAS-2025-3056)

The version of curl installed on the remote host is prior to 8.3.0-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-3056 advisory. Out of bounds read for cookie path NOTE: https://curl.se/docs/CVE-2025-9086.htmlNOTE: Introduced with:...

7.5CVSS6.5AI score0.00364EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2025/11/11 12:0 a.m.2 views

Amazon Linux 2 : docker, --advisory ALAS2DOCKER-2025-084 (ALASDOCKER-2025-084)

The version of docker installed on the remote host is prior to 25.0.13-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2DOCKER-2025-084 advisory. net/url: insufficient validation of bracketed IPv6 hostnames The Parse function permitted values other than IPv6...

7.5CVSS7.3AI score0.00044EPSS
Exploits0References22
Tenable Nessus
Tenable Nessusadded 2025/11/11 12:0 a.m.7 views

Amazon Linux 2 : runc, --advisory ALAS2NITRO-ENCLAVES-2025-077 (ALASNITRO-ENCLAVES-2025-077)

The version of runc installed on the remote host is prior to 1.3.3-2. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2NITRO-ENCLAVES-2025-077 advisory. Placeholder CVE. Details forthcoming CVE-2025-31133 net/url: insufficient validation of bracketed IPv6 hostnames...

8.4CVSS7.3AI score0.00044EPSS
Exploits4References28
Tenable Nessus
Tenable Nessusadded 2025/11/11 12:0 a.m.2 views

Amazon Linux 2 : nerdctl, --advisory ALAS2-2025-3060 (ALAS-2025-3060)

The version of nerdctl installed on the remote host is prior to 2.1.5-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-3060 advisory. go-viper's mapstructure May Leak Sensitive Information in Logs When Processing Malformed Data CVE-2025-11065 Tenable has extracted...

5.3CVSS5.5AI score0.00009EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2025/11/11 12:0 a.m.3 views

Amazon Linux 2 : qemu, --advisory ALAS2-2025-3061 (ALAS-2025-3061)

The version of qemu installed on the remote host is prior to 3.1.0-8. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-3061 advisory. A flaw was found in the QXL display device emulation in QEMU. An integer overflow in the cursoralloc function can lead to the...

8.2CVSS7.1AI score0.00161EPSS
Exploits1References6
Tenable Nessus
Tenable Nessusadded 2025/11/11 12:0 a.m.4 views

Amazon Linux 2 : kernel, --advisory ALAS2-2025-3075 (ALAS-2025-3075)

The version of kernel installed on the remote host is prior to 4.14.355-280.708. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-3075 advisory. In the Linux kernel, the following vulnerability has been resolved: fs: dlm: fix invalid derefence of sblvbptr...

7.8CVSS6.7AI score0.00026EPSS
Exploits0References6
Tenable Nessus
Tenable Nessusadded 2025/11/11 12:0 a.m.3 views

Amazon Linux 2 : amazon-efs-utils, --advisory ALAS2-2025-3076 (ALAS-2025-3076)

The version of amazon-efs-utils installed on the remote host is prior to 2.4.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-3076 advisory. regex is an implementation of regular expressions for the Rust language. The regex crate features built-in...

7.5CVSS7.2AI score0.10404EPSS
Exploits1References6
Tenable Nessus
Tenable Nessusadded 2025/11/11 12:0 a.m.2 views

Amazon Linux 2 : containerd, --advisory ALAS2DOCKER-2025-082 (ALASDOCKER-2025-082)

The version of containerd installed on the remote host is prior to 2.1.4-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2DOCKER-2025-082 advisory. net/url: insufficient validation of bracketed IPv6 hostnames The Parse function permitted values other than IPv6...

7.5CVSS7.3AI score0.00044EPSS
Exploits0References22
Tenable Nessus
Tenable Nessusadded 2025/11/11 12:0 a.m.1 views

Amazon Linux 2 : runfinch-finch, --advisory ALAS2DOCKER-2025-081 (ALASDOCKER-2025-081)

The version of runfinch-finch installed on the remote host is prior to 1.10.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2DOCKER-2025-081 advisory. net/url: insufficient validation of bracketed IPv6 hostnames The Parse function permitted values other than...

7.5CVSS7.3AI score0.00044EPSS
Exploits0References22
Tenable Nessus
Tenable Nessusadded 2025/11/11 12:0 a.m.5 views

Amazon Linux 2 : pam, --advisory ALAS2-2025-3057 (ALAS-2025-3057)

The version of pam installed on the remote host is prior to 1.1.8-23. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-3057 advisory. A flaw was found in linux-pam. The pamnamespace module may improperly handle user-controlled paths, allowing local users to exploit...

7.8CVSS7.5AI score0.00072EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2025/11/11 12:0 a.m.2 views

Amazon Linux 2 : oci-add-hooks, --advisory ALAS2NITRO-ENCLAVES-2025-075 (ALASNITRO-ENCLAVES-2025-075)

The version of oci-add-hooks installed on the remote host is prior to 0-0.5.20200504git325a340. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2NITRO-ENCLAVES-2025-075 advisory. net/url: insufficient validation of bracketed IPv6 hostnames The Parse function...

7.5CVSS7.4AI score0.00044EPSS
Exploits0References22
Tenable Nessus
Tenable Nessusadded 2025/11/11 12:0 a.m.4 views

Amazon Linux 2 : webkitgtk4, --advisory ALAS2-2025-3073 (ALAS-2025-3073)

The version of webkitgtk4 installed on the remote host is prior to 2.48.7-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-3073 advisory. The issue was addressed with improved memory handling. This issue is fixed in Safari 26, visionOS 26, watchOS 26, macO...

9.8CVSS6.9AI score0.00616EPSS
Exploits0References12
Tenable Nessus
Tenable Nessusadded 2025/11/10 12:0 a.m.6 views

Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.4-2025-114 (ALASKERNEL-5.4-2025-114)

The version of kernel installed on the remote host is prior to 5.4.301-221.445. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.4-2025-114 advisory. In the Linux kernel, the following vulnerability has been resolved: fs: dlm: fix invalid derefence of...

5.5CVSS6.7AI score0.00231EPSS
Exploits1References80
Amazon
Amazonadded 2025/11/10 12:0 a.m.3 views

Low: curl

Issue Overview: Out of bounds read for cookie path NOTE: https://curl.se/docs/CVE-2025-9086.html NOTE: Introduced with: https://github.com/curl/curl/commit/f24dc09d209a2f91ca38d854f0c15ad93f3d7e2d curl-7310 NOTE: Fixed by: https://github.com/curl/curl/commit/c6ae07c6a541e0e96d0040afb62b45dd377113...

7.5CVSS7.8AI score0.00364EPSS
Exploits1
Tenable Nessus
Tenable Nessusadded 2025/11/10 12:0 a.m.5 views

Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.10-2025-110 (ALASKERNEL-5.10-2025-110)

The version of kernel installed on the remote host is prior to 5.10.245-241.978. It is, therefore, affected by a vulnerability as referenced in the ALAS2KERNEL-5.10-2025-110 advisory. In the Linux kernel, the following vulnerability has been resolved: fs: dlm: fix invalid derefence of sblvbptr...

5.5CVSS6.6AI score0.00026EPSS
Exploits0References4
Amazon
Amazonadded 2025/11/10 12:0 a.m.7 views

Low: lz4

Issue Overview: No CVE associated with this advisory Affected Packages: lz4 Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras advisories. Issue Correction: Run yum update lz4 or yum update --advisory...

5.8AI score
Exploits0
Amazon
Amazonadded 2025/11/10 12:0 a.m.2 views

Important: amazon-ecr-credential-helper

Issue Overview: net/url: insufficient validation of bracketed IPv6 hostnames The Parse function permitted values other than IPv6 addresses to be included in square brackets within the host component of a URL. RFC 3986 permits IPv6 addresses to be included within the host component, enclosed withi...

7.5CVSS8.8AI score0.00044EPSS
Exploits0
Amazon
Amazonadded 2025/11/10 12:0 a.m.2 views

Important: webkitgtk4

Issue Overview: The issue was addressed with improved memory handling. This issue is fixed in Safari 26, visionOS 26, watchOS 26, macOS Tahoe 26, iOS 26 and iPadOS 26. Processing maliciously crafted web content may lead to an unexpected Safari crash. CVE-2025-43272 A correctness issue was address...

9.8CVSS6AI score0.00616EPSS
Exploits0
Amazon
Amazonadded 2025/11/10 12:0 a.m.7 views

Medium: fontforge

Issue Overview: FontForge v20230101 was discovered to contain a memory leak via the component DlgCreate8. CVE-2025-50949 Affected Packages: fontforge Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras...

6.5CVSS7.4AI score0.00037EPSS
Exploits0
Amazon
Amazonadded 2025/11/10 12:0 a.m.2 views

Important: amazon-efs-utils

Issue Overview: regex is an implementation of regular expressions for the Rust language. The regex crate features built-in mitigations to prevent denial of service attacks caused by untrusted regexes, or untrusted input matched by trusted regexes. Those tunable mitigations already provide sane...

7.5CVSS8.9AI score0.10404EPSS
Exploits1
Rows per page
Query Builder