Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Positive Technologies
Positive Technologiesadded 2025/08/21 12:0 a.m.8 views

PT-2025-34248 · Wegia · Wegia

Name of the Vulnerable Software and Affected Versions: WeGIA versions prior to 3.4.10 Description: WeGIA is a Web manager for charitable institutions. A SQL Injection vulnerability exists in the /html/funcionario/dependente remover.php endpoint, specifically in the id funcionario parameter. This...

9.4CVSS7.9AI score0.00393EPSS
Exploits1References10
Tenable Nessus
Tenable Nessusadded 2025/08/15 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2020-15106

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In etcd before versions 3.3.23 and 3.4.10, a large slice causes panic in decodeRecord method. The size of a record is stored in the length field of a WAL file a...

6.5CVSS6.8AI score0.01291EPSS
Exploits0References2
OSV
OSVadded 2023/11/07 8:15 a.m.1 views

CVE-2023-42542

Improper access control vulnerability in Samsung Push Service prior to 3.4.10 allows local attackers to get register ID to identify the device...

3.3CVSS5.8AI score
Exploits0References1
Positive Technologies
Positive Technologiesadded 2023/11/07 12:0 a.m.4 views

PT-2023-28408 · Samsung · Samsung Push Service

Name of the Vulnerable Software and Affected Versions: Samsung Push Service versions prior to 3.4.10 Description: The issue is related to improper authorization in the PushClientProvider of the Samsung Push Service. This allows an attacker to access a unique id. Recommendations: For versions prio...

5.3CVSS5.1AI score0.00379EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2023/02/15 3:57 a.m.2 views

SUSE CVE-2020-15114

In etcd before versions 3.3.23 and 3.4.10, the etcd gateway is a simple TCP proxy to allow for basic service discovery and access. However, it is possible to include the gateway address as an endpoint. This results in a denial of service, since the endpoint can become stuck in a loop of requestin...

7.7CVSS8.2AI score0.01206EPSS
Exploits0References3
OSV
OSVadded 2022/05/13 1:5 a.m.0 views

GHSA-CCQF-C5HQ-77MP Missing Authorization in Apache ZooKeeper

No authentication/authorization is enforced when a server attempts to join a quorum in Apache ZooKeeper before 3.4.10, and 3.5.0-alpha through 3.5.3-beta. As a result an arbitrary end point could join the cluster and begin propagating counterfeit changes to the leader...

7.5CVSS7.2AI score0.08724EPSS
Exploits0References13
CNVD
CNVDadded 2020/08/13 12:0 a.m.3 views

ETCD Resource Management Error Vulnerability

etcd is a key-value storage system for distributed systems written in the Go language. A resource management error vulnerability exists in etcd versions prior to 3.3.23 and 3.4.10. An attacker could exploit this vulnerability to cause a denial of service...

7.7CVSS6.7AI score0.01206EPSS
Exploits0References1
CNVD
CNVDadded 2020/08/06 12:0 a.m.1 views

etcd Input Validation Error Vulnerability

etcd is a key-value storage system for distributed systems written in the Go language. An input validation error vulnerability exists in etcd versions prior to 3.3.23 and prior to 3.4.10. The vulnerability stems from a network system or product that does not properly validate input data. A remote...

6.5CVSS9.6AI score0.01256EPSS
Exploits0References1
Rows per page
Query Builder