Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

113851 matches found

OSV
OSVadded 2026/05/26 6:16 p.m.2 views

DEBIAN-CVE-2026-44728

Babel is a compiler for writing next generation JavaScript. From 7.12.0 to before 7.29.4 and 8.0.0-alpha.13, using Babel to compile code that was specifically crafted by an attacker can cause Babel to generate output code that executes arbitrary code. This vulnerability is fixed in 7.29.4 and...

7.8CVSS6AI score0.0002EPSS
Exploits0References1
EUVD
EUVDadded 2026/05/26 5:48 p.m.10 views

EUVD-2026-31946

Babel is a compiler for writing next generation JavaScript. From 7.12.0 to before 7.29.4 and 8.0.0-alpha.13, using Babel to compile code that was specifically crafted by an attacker can cause Babel to generate output code that executes arbitrary code. This vulnerability is fixed in 7.29.4 and...

8.2CVSS6AI score0.0002EPSS
Exploits0References1
Debian CVE
Debian CVEadded 2026/05/26 5:48 p.m.6 views

CVE-2026-44728

Babel is a compiler for writing next generation JavaScript. From 7.12.0 to before 7.29.4 and 8.0.0-alpha.13, using Babel to compile code that was specifically crafted by an attacker can cause Babel to generate output code that executes arbitrary code. This vulnerability is fixed in 7.29.4 and...

8.2CVSS6AI score0.0002EPSS
Exploits0
ATTACKERKB
ATTACKERKBadded 2026/05/26 5:9 p.m.6 views

CVE-2026-7454

A maliciously crafted WRL file, when parsed through Autodesk 3ds Max, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...

7.8CVSS6.2AI score0.00023EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichmentadded 2026/05/26 5:9 p.m.7 views

CVE-2026-7454 WRL File Parsing Memory Corruption in Autodesk 3ds Max

A maliciously crafted WRL file, when parsed through Autodesk 3ds Max, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...

7.8CVSS6.2AI score0.00023EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/05/26 5:6 p.m.9 views

CVE-2026-7452 WRL File Parsing Memory Corruption in Autodesk 3ds Max

A maliciously crafted WRL file, when parsed through Autodesk 3ds Max, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...

7.8CVSS6.2AI score0.00007EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/05/26 5:5 p.m.8 views

CVE-2026-7451

A maliciously crafted TIF file, when parsed through Autodesk 3ds Max, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process...

7.8CVSS6.2AI score0.00009EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2026/05/26 5:5 p.m.7 views

CVE-2026-7451

CVE-2026-7451 : A maliciously crafted TIF file, when parsed by Autodesk 3ds Max , can trigger an Out-of-Bounds Write in the process. The vulnerability may allow a malicious actor to cause a crash, data corruption, or execute arbitrary code in the context of the current process. Connected sources ...

7.8CVSS6.2AI score0.00009EPSS
Exploits0References2Affected Software1
EUVD
EUVDadded 2026/05/26 5:5 p.m.9 views

EUVD-2026-31910

A maliciously crafted TIF file, when parsed through Autodesk 3ds Max, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process...

7.8CVSS6.2AI score0.00009EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/05/26 5:5 p.m.9 views

CVE-2026-7451 TIF File Parsing Out-of-Bounds Write in Autodesk 3ds Max

A maliciously crafted TIF file, when parsed through Autodesk 3ds Max, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process...

7.8CVSS6.2AI score0.00009EPSS
Exploits0References2
NVD
NVDadded 2026/05/26 4:16 p.m.9 views

CVE-2026-48686

FastNetMon Community Edition through 1.2.9 contains a stack-based buffer overflow in the BGP NLRI Network Layer Reachability Information decoder. The function decodebgpsubnetencodingipv4raw in src/bgpprotocol.cpp reads prefixbitlength directly from the BGP packet line 99 without validating it is ...

9.8CVSS0.00033EPSS
Exploits0References3
Rockylinux
Rockylinuxadded 2026/05/26 12:1 p.m.12 views

ruby:3.3 security update

An update is available for module.rubygem-abrt, module.ruby, module.rubygem-mysql2, module.rubygem-pg, rubygem-mysql2, ruby, rubygem-abrt, rubygem-pg. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

8.1CVSS6.2AI score0.00048EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2026/05/26 11:9 a.m.8 views

CVE-2026-48700

A flaw was found in PCManFM-Qt. This vulnerability allows an attacker to achieve arbitrary code execution or bypass network security restrictions. This occurs when a specially crafted file path, provided as a Uniform Resource Identifier URI in a D-Bus method call, causes PCManFM-Qt to open the fi...

9.3CVSS6.2AI score0.00016EPSS
Exploits0References2
RedHat Linux
RedHat Linuxadded 2026/05/26 9:24 a.m.6 views

rsync: Rsync: Use-after-free vulnerability in extended attribute handling

A flaw was found in rsync. When rsync is configured to handle extended attributes using the -X or --xattrs option, a remote attacker can exploit a use-after-free vulnerability. This occurs because the receivexattr function incorrectly processes an untrusted length value during a sorting operation...

7.8CVSS6AI score0.00027EPSS
Exploits1References7
OSV
OSVadded 2026/05/26 9:10 a.m.6 views

MAL-2026-4790 Malicious code in makecoder (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf72d8ec7b803169421eb83d7ccbbdcd0af3671592775e25df2f92b33dfde5a4 scripts/postinstall.js runs automatically on npm install. When bun is not already present, it unconditionally executes curl -fsSL...

6.4AI score
Exploits0References3
RedHat Linux
RedHat Linuxadded 2026/05/26 7:42 a.m.9 views

Important: Red Hat Security Advisory: ruby:4.0 security update

An update for the ruby:4.0 module is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.1CVSS6.7AI score0.00048EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2026/05/26 7:37 a.m.9 views

erb: ERB: Arbitrary code execution via deserialization bypass

A flaw was found in ERB, a templating system for Ruby. An attacker who can trigger deserialization of untrusted data in a Ruby application can bypass existing protections. This vulnerability allows for arbitrary code execution by exploiting specific public methods that evaluate template source...

8.1CVSS6.3AI score0.00048EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2026/05/26 5:33 a.m.12 views

erb: ERB: Arbitrary code execution via deserialization bypass

A flaw was found in ERB, a templating system for Ruby. An attacker who can trigger deserialization of untrusted data in a Ruby application can bypass existing protections. This vulnerability allows for arbitrary code execution by exploiting specific public methods that evaluate template source...

8.1CVSS6.3AI score0.00048EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2026/05/26 5:33 a.m.10 views

Important: Red Hat Security Advisory: ruby4.0 security update

An update for ruby4.0 is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

9.1CVSS6.7AI score0.00048EPSS
Exploits0References3
RedHat Linux
RedHat Linuxadded 2026/05/26 5:5 a.m.10 views

FreeRDP: FreeRDP: Memory corruption vulnerability allows denial of service or arbitrary code execution

A flaw was found in FreeRDP, a free implementation of the Remote Desktop Protocol. A memory corruption vulnerability exists in the persistent cache handling. If a memory reallocation fails, an internal size variable is incorrectly updated, while the data pointer still refers to the original,...

7.1CVSS6AI score0.00019EPSS
Exploits0References6
Rows per page
Query Builder