Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

441 matches found

ATTACKERKB
ATTACKERKBadded 2026/05/01 12:0 a.m.3 views

CVE-2026-37525

AGL app-framework-binder afb-daemon through v19.90.0 contains a privilege escalation vulnerability in the supervision Do command. The onsupervisioncall function in src/afb-supervision.c explicitly nullifies the request credentials by calling afbcontextchangecred&xreq-;context, NULL before...

7.8CVSS5.9AI score0.00006EPSS
Exploits0References3
CVE
CVEadded 2026/05/01 12:0 a.m.2 views

CVE-2026-37525

The CVE-2026-37525 entry concerns the AGL app-framework-binder (afb-daemon) up to v19.90.0. The vulnerability resides in the supervision Do command: the on_supervision_call path explicitly_nullifies credentials via afb_context_change_cred(&xreq->context, NULL) before dispatching an attacker-co...

7.8CVSS5.9AI score0.00006EPSS
Exploits0References2Affected Software1
CNNVD
CNNVDadded 2026/04/21 12:0 a.m.5 views

Oracle Application Development Framework 安全漏洞

The Oracle Application Development Framework is an enterprise-level application development framework developed by Oracle, a company in the United States. Versions 12.2.1.4.0 and 14.1.2.0.0.0 of the Oracle Application Development Framework contain security vulnerabilities. These vulnerabilities...

7.8CVSS7.2AI score0.00028EPSS
Exploits0References2
CVE
CVEadded 2026/02/06 4:41 p.m.5 views

CVE-2019-25266

Wundersoft Wondershare Application Framework Service 2.4.3.231 is affected by an unquoted service path vulnerability that can let local attackers execute arbitrary code with elevated privileges by placing a malicious executable in specific directories to hijack the service’s execution context. Af...

8.5CVSS6.1AI score0.00018EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/02/06 4:41 p.m.25 views

CVE-2019-25266 Wondershare Application Framework Service 2.4.3.231 - 'WsAppService' Unquote Service Path

Wondershare Application Framework Service 2.4.3.231 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code with elevated privileges. Attackers can exploit the unquoted service path by placing malicious executables in specific directory...

8.5CVSS0.00018EPSS
Exploits0References4
EUVD
EUVDadded 2026/02/06 4:41 p.m.4 views

EUVD-2019-19407

Wondershare Application Framework Service 2.4.3.231 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code with elevated privileges. Attackers can exploit the unquoted service path by placing malicious executables in specific directory...

8.5CVSS6.1AI score0.00018EPSS
Exploits0References4
CVE
CVEadded 2026/02/01 2:38 p.m.6 views

CVE-2020-37048

Iskysoft Application Framework Service 2.4.3.241 is affected by an unquoted service path vulnerability (IsAppService). The vulnerability arises from an unquoted service executable path in the service configuration, enabling local attackers to insert a malicious executable that runs with the servi...

8.5CVSS6.2AI score0.00007EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2026/01/21 10:24 p.m.1 views

CVE-2026-21924

Vulnerability in the Oracle Utilities Application Framework product of Oracle Utilities Applications component: General. Supported versions that are affected are 4.4.0.3.0, 4.5.0.0.0, 4.5.0.1.1, 4.5.0.1.3, 4.5.0.2.0, 25.4 and 25.10. Easily exploitable vulnerability allows low privileged attacker...

5.4CVSS5.4AI score0.00042EPSS
Exploits0References1
EUVD
EUVDadded 2026/01/21 12:31 a.m.2 views

EUVD-2026-3585

Vulnerability in the Oracle Utilities Application Framework product of Oracle Utilities Applications component: General. Supported versions that are affected are 4.4.0.3.0, 4.5.0.0.0, 4.5.0.1.1, 4.5.0.1.3, 4.5.0.2.0, 25.4 and 25.10. Easily exploitable vulnerability allows low privileged attacker...

5.4CVSS5.5AI score0.00042EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/01/20 12:0 a.m.3 views

PT-2026-3674

Name of the Vulnerable Software and Affected Versions Oracle Utilities Application Framework versions 4.4.0.3.0 through 4.5.0.2.0 Oracle Utilities Application Framework versions 25.4 and 25.10 Description A flaw exists within the Oracle Utilities Application Framework component of Oracle Utilitie...

5.4CVSS7.3AI score0.00042EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2025/11/12 6:59 a.m.4 views

CVE-2025-5718

The ACAP Application framework could allow privilege escalation through a symlink attack. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an attacker convinces the victim to install a malicious ACAP...

6.8CVSS7AI score0.00055EPSS
Exploits0References1
EUVD
EUVDadded 2025/11/11 9:30 a.m.2 views

EUVD-2025-74044

The ACAP Application framework could allow privilege escalation through a symlink attack. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an attacker convinces the victim to install a malicious ACAP...

6.8CVSS6.5AI score0.00055EPSS
Exploits0References2
Cvelist
Cvelistadded 2025/11/11 6:52 a.m.5 views

CVE-2025-5718

The ACAP Application framework could allow privilege escalation through a symlink attack. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an attacker convinces the victim to install a malicious ACAP...

6.8CVSS0.00055EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/11/11 6:52 a.m.2 views

CVE-2025-5718

The ACAP Application framework could allow privilege escalation through a symlink attack. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an attacker convinces the victim to install a malicious ACAP...

6.8CVSS6.6AI score0.00055EPSS
Exploits0References1
CVE
CVEadded 2025/11/11 6:52 a.m.9 views

CVE-2025-5718

The CVE-2025-5718 issue concerns the Axis ACAP Application framework on Axis OS devices. It describes a privilege-escalation vulnerability via a symbolic-link (symlink) attack, exploitable only if the device is configured to allow unsigned ACAP applications and an attacker persuades a user to ins...

6.8CVSS6.6AI score0.00055EPSS
Exploits0References1Affected Software1
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2009-3674

Malware in sbrugna...

4.3CVSS6AI score0.02191EPSS
Exploits8References17
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2021-2607

Malware in sbrugna...

6.5CVSS6.9AI score0.00381EPSS
Exploits0References33
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2006-3543

Malware in sbrugna...

4.3CVSS6.1AI score0.01138EPSS
Exploits1References18
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2009-4331

Malware in sbrugna...

4.3CVSS6.1AI score0.00477EPSS
Exploits1References10
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2005-4185

Malware in sbrugna...

3.5CVSS6.1AI score0.00828EPSS
Exploits0References19
Rows per page
Query Builder