Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

76 matches found

OSV
OSVadded 2026/02/17 9:22 p.m.1 views

CVE-2026-23598

Vulnerabilities in the API error handling of an HPE Aruba Networking 5G Core server API could allow an unauthenticated remote attacker to obtain sensitive information. Successful exploitation could allow an attacker to access details such as user accounts, roles, and system configuration, as well...

6.5CVSS5.8AI score
Exploits0References1
NVD
NVDadded 2026/02/12 7:15 p.m.3 views

CVE-2026-21434

webtransport-go is an implementation of the WebTransport protocol. From 0.3.0 to 0.9.0, an attacker can cause excessive memory consumption in webtransport-go's session implementation by sending a WTCLOSESESSION capsule containing an excessively large Application Error Message. The implementation...

7.5CVSS0.0002EPSS
Exploits0References2
CVE
CVEadded 2026/02/12 6:18 p.m.9 views

CVE-2026-21434

This CVE affects webtransport-go (versions 0.3.0 to 0.9.0). A WT_CLOSE_SESSION capsule with an oversized Application Error Message can be fully read and stored in memory due to lack of the draft-mandated 1024-byte limit, enabling memory exhaustion. The issue is fixed in version 0.10.0. Affected i...

7.5CVSS5.8AI score0.0002EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/02/12 6:18 p.m.4 views

CVE-2026-21434 webtransport-go affected by Memory Exhaustion Attack due to Missing Length Check in WT_CLOSE_SESSION Capsule

webtransport-go is an implementation of the WebTransport protocol. From 0.3.0 to 0.9.0, an attacker can cause excessive memory consumption in webtransport-go's session implementation by sending a WTCLOSESESSION capsule containing an excessively large Application Error Message. The implementation...

5.3CVSS5.8AI score0.0002EPSS
Exploits0References2
OSV
OSVadded 2026/02/12 3:28 p.m.2 views

GHSA-G6X7-JQ8P-6Q9Q webtransport-go: Memory Exhaustion Attack due to Missing Length Check in WT_CLOSE_SESSION Capsule

Summary An attacker can cause excessive memory consumption in webtransport-go's session implementation by sending a WTCLOSESESSION capsule containing an excessively large Application Error Message. The implementation does not enforce the draft-mandated limit of 1024 bytes on this field, allowing ...

5.3CVSS6.1AI score0.0002EPSS
Exploits0References4
Github Security Blog
Github Security Blogadded 2026/02/12 3:28 p.m.3 views

webtransport-go: Memory Exhaustion Attack due to Missing Length Check in WT_CLOSE_SESSION Capsule

Summary An attacker can cause excessive memory consumption in webtransport-go's session implementation by sending a WTCLOSESESSION capsule containing an excessively large Application Error Message. The implementation does not enforce the draft-mandated limit of 1024 bytes on this field, allowing ...

7.5CVSS6.1AI score0.0002EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologiesadded 2026/02/12 12:0 a.m.7 views

PT-2026-7868

Name of the Vulnerable Software and Affected Versions webtransport-go versions 0.3.0 through 0.9.0 Description webtransport-go’s session implementation is susceptible to excessive memory consumption. An attacker can send a WT CLOSE SESSION capsule containing an excessively large Application Error...

9.9CVSS5.7AI score0.00733EPSS
Exploits44References118
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2020-29978

Malware in sbrugna...

5.5CVSS5.6AI score0.00023EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2016-0277

Malware in sbrugna...

4.3CVSS4.8AI score0.00155EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2023-2978

Malicious code in bioql PyPI...

4.3CVSS4.7AI score0.00222EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2024-29714

Malicious code in bioql PyPI...

5.3CVSS6.6AI score0.0011EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-27986

Malicious code in bioql PyPI...

6.9CVSS5.4AI score0.00157EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 4:53 p.m.6 views

CVE-2020-9149

An application error verification vulnerability exists in a component interface of Huawei Smartphone. Local attackers can exploit this vulnerability to modify and delete user SMS messages...

5.5CVSS6.8AI score0.00023EPSS
Exploits0References1
CNVD
CNVDadded 2025/05/14 12:0 a.m.1 views

Google Chrome Buffer Overflow Vulnerability (CNVD-2025-10057)

Google Chrome is a web browser from Google, an American company. A buffer overflow vulnerability exists in versions of Google Chrome prior to 136.0.7103.59, which stems from an application boundary error when handling untrusted input, and can be exploited by an attacker to cause heap corruption...

8.8CVSS7.3AI score0.00195EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/04/24 12:0 a.m.3 views

PT-2025-17867

Name of the Vulnerable Software and Affected Versions React Router versions 7.2.0 through 7.5.2 Description The issue allows an attacker to force an application to switch to SPA mode by adding a header to the request. If the application uses SSR and is forced to switch to SPA, this causes an erro...

7.5CVSS7.5AI score0.00954EPSS
Exploits0References42
Citrix
Citrixadded 2024/07/13 12:0 a.m.5 views

Error: "Cannot Access the Store" When Accessing StoreFront Through NetScaler Gateway

Access to applications work internally however externally accessing the applications through NetScaler Gateway displays the following error: Cannot Access the Store...

7.1AI score
Exploits0
NVD
NVDadded 2024/05/21 4:15 p.m.10 views

CVE-2024-31844

An issue was discovered in Italtel Embrace 1.6.4. The server does not properly handle application errors. In some cases, this leads to a disclosure of information about the server. An unauthenticated user is able craft specific requests in order to make the application generate an error. Inside a...

5.3CVSS6.4AI score0.0011EPSS
Exploits1References1
OSV
OSVadded 2023/11/22 2:15 a.m.22 views

CVE-2021-22143

The Elastic APM .NET Agent can leak sensitive HTTP header information when logging the details during an application error. Normally, the APM agent will sanitize sensitive HTTP header details before sending the information to the APM server. During an application error it is possible the headers...

4.3CVSS4.5AI score
Exploits0References2
Prion
Prionadded 2023/11/22 2:15 a.m.14 views

Design/Logic Flaw

The Elastic APM .NET Agent can leak sensitive HTTP header information when logging the details during an application error. Normally, the APM agent will sanitize sensitive HTTP header details before sending the information to the APM server. During an application error it is possible the headers...

4CVSS6.6AI score0.00222EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2023/11/22 1:21 a.m.15 views

CVE-2021-22143 Elastic APM .NET Agent information disclosure

The Elastic APM .NET Agent can leak sensitive HTTP header information when logging the details during an application error. Normally, the APM agent will sanitize sensitive HTTP header details before sending the information to the APM server. During an application error it is possible the headers...

2.1CVSS6.4AI score0.00222EPSS
Exploits0References2
Rows per page
Query Builder