Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

205317 matches found

Snyk
Snykadded 2026/04/20 9:16 a.m.0 views

Arbitrary Code Injection

Overview Affected versions of this package are vulnerable to Arbitrary Code Injection via the -env-vars process when multi-step templates are used against untrusted targets. An attacker can execute arbitrary code by injecting malicious DSL expressions. This is only exploitable if multi-step...

7.5CVSS6.1AI score0.00066EPSS
Exploits0References2
Snyk
Snykadded 2026/04/20 9:16 a.m.1 views

Arbitrary Code Injection

Overview Affected versions of this package are vulnerable to Arbitrary Code Injection via the -env-vars process when multi-step templates are used against untrusted targets. An attacker can execute arbitrary code by injecting malicious DSL expressions. This is only exploitable if multi-step...

7.5CVSS6.1AI score0.00066EPSS
Exploits0References2
CVE
CVEadded 2026/04/20 8:4 a.m.4 views

CVE-2026-39454

The CVE-2026-39454 entry concerns SKYSEA Client View and SKYMEC IT Manager from Sky Co., Ltd. Allowing a non-administrative user to place or manipulate files in the product installation folder due to improper access permissions, potentially enabling arbitrary code execution with administrative pr...

8.5CVSS7.3AI score0.00017EPSS
Exploits0References2Affected Software2
Cvelist
Cvelistadded 2026/04/20 8:4 a.m.26 views

CVE-2026-39454

SKYSEA Client View and SKYMEC IT Manager provided by Sky Co.,LTD. configure the installation folder with improper file access permission settings. A non-administrative user may manipulate and/or place arbitrary files within the installation folder of the product. As a result, arbitrary code may b...

8.5CVSS0.00017EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/04/20 6:54 a.m.2 views

CVE-2026-6644 A command injection vulnerability was found in the PPTP VPN Clients on the ADM

A command injection vulnerability was found in the PPTP VPN Clients on the ADM. The vulnerability allows an administrative user to break out of the restricted web environment and execute arbitrary code on the underlying operating system. This occurs due to insufficient validation of user-supplied...

9.4CVSS6.2AI score0.00352EPSS
Exploits1References1
Vulnrichment
Vulnrichmentadded 2026/04/20 6:34 a.m.1 views

CVE-2026-6643 A stack-based buffer overflow vulnerability in the VPN Clients on the ADM

A stack-based buffer overflow vulnerability was found in the VPN Clients on the ADM. The issue stems from the use of unbounded sscanf and passing user-controlled data directly to printf. Due to the lack of PIE and Stack Canary protections, an authenticated remote attacker can exploit these to...

8.6CVSS6.5AI score0.00154EPSS
Exploits1References1
EUVD
EUVDadded 2026/04/20 6:31 a.m.1 views

EUVD-2026-23749

SD-330AC and AMC Manager provided by silex technology, Inc. contain a heap-based buffer overflow vulnerability in processing the redirect URLs. Arbitrary code may be executed on the device...

9.8CVSS6.1AI score0.00062EPSS
Exploits0References4
Snyk
Snykadded 2026/04/20 6:13 a.m.1 views

Arbitrary Code Injection

Overview agentscope is an AgentScope: A Flexible yet Robust Multi-Agent Platform. Affected versions of this package are vulnerable to Arbitrary Code Injection via the executeshellcommand function. An attacker can execute arbitrary code by supplying crafted input remotely. Remediation There is no...

7.5CVSS7.9AI score0.00062EPSS
Exploits0References2
RedHat Linux
RedHat Linuxadded 2026/04/20 4:34 a.m.2 views

GStreamer: GStreamer: Arbitrary code execution via ASF file processing

A flaw was found in GStreamer. This heap-based buffer overflow vulnerability in the ASF Demuxer component allows a remote attacker to execute arbitrary code. The issue arises from insufficient validation of user-supplied data length when processing stream headers within ASF Advanced Systems Forma...

7.8CVSS6.8AI score0.00078EPSS
Exploits0References6
RedHat Linux
RedHat Linuxadded 2026/04/20 4:13 a.m.5 views

GStreamer: GStreamer: Arbitrary code execution via RIFF palette integer overflow in AVI file handling

A flaw was found in GStreamer. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. The flaw exists within the handling of palette data in AVI files, where a lack of proper validation of user-supplied data can lead to an integer overflow...

7.8CVSS7.7AI score0.00041EPSS
Exploits0References6
RedHat Linux
RedHat Linuxadded 2026/04/20 4:1 a.m.2 views

Important: Red Hat Security Advisory: openexr security update

An update for openexr is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

8.4CVSS6.3AI score0.00023EPSS
Exploits2References2
RedHat Linux
RedHat Linuxadded 2026/04/20 3:50 a.m.2 views

giflib: Giflib: Double-free vulnerability leading to memory corruption

A flaw was found in giflib. This double-free vulnerability, caused by a shallow copy in GifMakeSavedImage and incorrect error handling, may allow an attacker to corrupt memory. While difficult to trigger, successful exploitation could potentially lead to arbitrary code execution or a denial of...

5.1CVSS6.3AI score0.00019EPSS
Exploits0References6
RedHat Linux
RedHat Linuxadded 2026/04/20 3:46 a.m.3 views

Important: Red Hat Security Advisory: openexr security update

An update for openexr is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

8.4CVSS6.3AI score0.00023EPSS
Exploits2References2
RedHat Linux
RedHat Linuxadded 2026/04/20 3:46 a.m.3 views

openexr: OpenEXR: Arbitrary code execution via integer overflow in EXR file processing

A flaw was found in OpenEXR, an image storage format library for the motion picture industry. An attacker can craft a malicious EXR file that, when processed, causes an integer overflow in the CompositeDeepScanLine::readPixels function. This overflow leads to an undersized buffer allocation, whic...

8.4CVSS6.5AI score0.00023EPSS
Exploits2References5
Vulnrichment
Vulnrichmentadded 2026/04/20 3:20 a.m.2 views

CVE-2026-32956

SD-330AC and AMC Manager provided by silex technology, Inc. contain a heap-based buffer overflow vulnerability in processing the redirect URLs. Arbitrary code may be executed on the device...

9.8CVSS6.1AI score0.00062EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/04/20 3:20 a.m.0 views

CVE-2026-32956

SD-330AC and AMC Manager provided by silex technology, Inc. contain a heap-based buffer overflow vulnerability in processing the redirect URLs. Arbitrary code may be executed on the device...

9.8CVSS6.1AI score0.00062EPSS
Exploits0References4Affected Software2
CVE
CVEadded 2026/04/20 3:20 a.m.15 views

CVE-2026-32956

CVE-2026-32956 affects SD-330AC and AMC Manager by silex technology, Inc. A heap-based buffer overflow occurs when processing redirect URLs, allowing arbitrary code execution on the device. The CVE description and CVE listing provide no details on affected firmware versions, fixes, or mitigations...

9.8CVSS6.1AI score0.00062EPSS
Exploits0References3Affected Software1
RedHat Linux
RedHat Linuxadded 2026/04/20 3:19 a.m.1 views

openexr: OpenEXR: Arbitrary code execution via integer overflow in EXR file processing

A flaw was found in OpenEXR, an image storage format library for the motion picture industry. An attacker can craft a malicious EXR file that, when processed, causes an integer overflow in the CompositeDeepScanLine::readPixels function. This overflow leads to an undersized buffer allocation, whic...

8.4CVSS6.5AI score0.00023EPSS
Exploits2References5
ATTACKERKB
ATTACKERKBadded 2026/04/20 3:19 a.m.0 views

CVE-2026-32955

SD-330AC and AMC Manager provided by silex technology, Inc. contain a stack-based buffer overflow vulnerability in processing the redirect URLs. Arbitrary code may be executed on the device...

8.8CVSS6.2AI score0.00055EPSS
Exploits0References4Affected Software2
Cvelist
Cvelistadded 2026/04/20 3:19 a.m.22 views

CVE-2026-32955

SD-330AC and AMC Manager provided by silex technology, Inc. contain a stack-based buffer overflow vulnerability in processing the redirect URLs. Arbitrary code may be executed on the device...

8.8CVSS0.00055EPSS
Exploits0References3
Rows per page
Query Builder