Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

192116 matches found

OSV
OSVadded 2026/05/04 3:16 p.m.3 views

DEBIAN-CVE-2025-70070

An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial of service via the FBXMeshGeometry.cpp, MeshGeometry::MeshGeometry...

6.5CVSS5.8AI score0.00246EPSS
Exploits0References1
OSV
OSVadded 2026/05/04 3:16 p.m.3 views

DEBIAN-CVE-2026-33006

A timing attack against modauthdigest in Apache HTTP Server 2.4.66 allows a bypass of Digest authentication by a remote attacker. Users are recommended to upgrade to version 2.4.67, which fixes this issue...

4.8CVSS5.8AI score0.00557EPSS
Exploits1References1
OSV
OSVadded 2026/05/04 3:16 p.m.2 views

ALPINE-CVE-2026-33006

A timing attack against modauthdigest in Apache HTTP Server 2.4.66 allows a bypass of Digest authentication by a remote attacker. Users are recommended to upgrade to version 2.4.67, which fixes this issue...

4.8CVSS5.8AI score0.00557EPSS
Exploits1References1
NVD
NVDadded 2026/05/04 3:16 p.m.10 views

CVE-2026-33006

A timing attack against modauthdigest in Apache HTTP Server 2.4.66 allows a bypass of Digest authentication by a remote attacker. Users are recommended to upgrade to version 2.4.67, which fixes this issue...

4.8CVSS0.00557EPSS
Exploits1References2
UbuntuCve
UbuntuCveadded 2026/05/04 3:16 p.m.3 views

CVE-2025-70072

An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial of service via the FBXConverter.cpp, FBXConverter::ConvertMeshMultiMaterial components...

6.5CVSS5.8AI score0.00246EPSS
Exploits0References2
OSV
OSVadded 2026/05/04 3:16 p.m.3 views

UBUNTU-CVE-2025-70070

An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial of service via the FBXMeshGeometry.cpp, MeshGeometry::MeshGeometry...

6.5CVSS5.8AI score0.00246EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/05/04 2:42 p.m.75 views

CVE-2026-33006 Apache HTTP Server: mod_auth_digest timing attack

A timing attack against modauthdigest in Apache HTTP Server 2.4.66 allows a bypass of Digest authentication by a remote attacker. Users are recommended to upgrade to version 2.4.67, which fixes this issue...

0.00557EPSS
Exploits1References1
EUVD
EUVDadded 2026/05/04 2:42 p.m.7 views

EUVD-2026-26961

A timing attack against modauthdigest in Apache HTTP Server 2.4.66 allows a bypass of Digest authentication by a remote attacker. Users are recommended to upgrade to version 2.4.67, which fixes this issue...

4.8CVSS5.8AI score0.00557EPSS
Exploits1References1
CVE
CVEadded 2026/05/04 2:42 p.m.171 views

CVE-2026-33006

The CVE-2026-33006 issue affects Apache HTTP Server 2.4.66 and its mod_auth_digest component. A timing-based flaw allows a remote attacker to bypass Digest authentication. The known remediation is upgrading to Apache HTTP Server 2.4.67, which fixes the vulnerability. The NVD entry documents a MED...

4.8CVSS5.8AI score0.00557EPSS
Exploits1References2Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/05/04 2:42 p.m.10 views

CVE-2026-33006

A timing attack against modauthdigest in Apache HTTP Server 2.4.66 allows a bypass of Digest authentication by a remote attacker. Users are recommended to upgrade to version 2.4.67, which fixes this issue...

5.8AI score0.00557EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2026/05/04 2:42 p.m.6 views

CVE-2026-33006 Apache HTTP Server: mod_auth_digest timing attack

A timing attack against modauthdigest in Apache HTTP Server 2.4.66 allows a bypass of Digest authentication by a remote attacker. Users are recommended to upgrade to version 2.4.67, which fixes this issue...

5.8AI score0.00557EPSS
Exploits1References1
AlpineLinux
AlpineLinuxadded 2026/05/04 2:42 p.m.2 views

CVE-2026-33006

A timing attack against modauthdigest in Apache HTTP Server 2.4.66 allows a bypass of Digest authentication by a remote attacker. Users are recommended to upgrade to version 2.4.67, which fixes this issue...

4.8CVSS5.8AI score0.00557EPSS
Exploits1
Debian CVE
Debian CVEadded 2026/05/04 2:42 p.m.4 views

CVE-2026-33006

A timing attack against modauthdigest in Apache HTTP Server 2.4.66 allows a bypass of Digest authentication by a remote attacker. Users are recommended to upgrade to version 2.4.67, which fixes this issue...

4.8CVSS5.8AI score0.00557EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletinsadded 2026/05/04 2:38 p.m.3 views

Security Bulletin: IBM Edge Data Collector uses picomatch-2.3.1.tgz which is vulnerable to CVE-2026-33671, CVE-2026-33672.

Summary IBM Edge Data Collector uses picomatch-2.3.1.tgz which is vulnerable to CVE-2026-33671, CVE-2026-33672. This bulletin contains information addressing the vulnerability. Vulnerability Details CVEID:CVE-2026-33671 DESCRIPTION: Picomatch is a glob matcher written JavaScript. Versions prior t...

7.5CVSS6.1AI score0.00412EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linuxadded 2026/05/04 2:10 p.m.6 views

minimatch: minimatch: Denial of Service via specially crafted glob patterns

A flaw was found in minimatch. A remote attacker could exploit this Regular Expression Denial of Service ReDoS vulnerability by providing a specially crafted glob pattern. This pattern, containing numerous consecutive wildcard characters, causes excessive processing and exponential backtracking i...

8.7CVSS6.8AI score0.005EPSS
Exploits1References6
Wiz blog
Wiz blogadded 2026/05/04 2:0 p.m.7 views

Practical Package Security: The Unofficial Guide

Get actionable best practices to shrink your attack surface, protect execution environments, control package ingestion, and catch compromises early...

5.9AI score
Exploits0
HackRead
HackReadadded 2026/05/04 10:55 a.m.6 views

Cyber-Secure Philanthropy: Tech Infrastructure for Global Donations

Secure philanthropy needs hardened payments, API security, and compliance controls to protect global donations from fraud and attacks...

5.8AI score
Exploits0
NVD
NVDadded 2026/05/04 10:16 a.m.31 views

CVE-2026-7749

A security vulnerability has been detected in Totolink N300RH 3.2.4-B20220812. This affects the function setWanConfig of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation of the argument priDns leads to buffer overflow. The attack may be initiated remotely. The...

9CVSS0.00563EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2026/05/04 9:53 a.m.13 views

CVE-2026-6536

A flaw was found in Wireshark. A remote attacker could exploit this vulnerability by sending a specially crafted DLMS/COSEM protocol packet. This could lead to an infinite loop in the DLMS/COSEM protocol dissector, resulting in a Denial of Service DoS for the affected system. Mitigation To mitiga...

6.5CVSS5.8AI score0.0018EPSS
Exploits1References5
RedhatCVE
RedhatCVEadded 2026/05/04 9:49 a.m.4 views

CVE-2026-5654

A flaw was found in Wireshark. This vulnerability allows a remote attacker to cause the application to crash by exploiting an issue within the AMR-NB codec. Successful exploitation leads to a denial of service, which prevents Wireshark from functioning and analyzing network traffic. Mitigation To...

7.5CVSS5.8AI score0.00206EPSS
Exploits1References5
Rows per page
Query Builder