Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Cvelist
Cvelistadded 2026/04/21 4:57 p.m.28 views

CVE-2026-40583 UltraDAG: SmartOp Vote Path Triggers Fatal Supply Invariant Halt

UltraDAG is a minimal DAG-BFT blockchain in Rust. In version 0.1, a non-council attacker can submit a signed SmartOp::Vote transaction that passes signature, nonce, and balance prechecks, but fails authorization only after state mutation has already occurred...

8.8CVSS0.00085EPSS
Exploits1References3
EUVD
EUVDadded 2026/04/21 4:57 p.m.1 views

EUVD-2026-24179

UltraDAG is a minimal DAG-BFT blockchain in Rust. In version 0.1, a non-council attacker can submit a signed SmartOp::Vote transaction that passes signature, nonce, and balance prechecks, but fails authorization only after state mutation has already occurred...

8.8CVSS5.8AI score0.00085EPSS
Exploits1References3
SUSE CVE
SUSE CVEadded 2025/02/06 3:48 a.m.2 views

SUSE CVE-2025-24371

CometBFT is a distributed, Byzantine fault-tolerant, deterministic state machine replication engine. In the blocksync protocol peers send their base and latest heights when they connect to a new node A, which is syncing to the tip of a network. base acts as a lower ground and informs A that the...

7.1CVSS7AI score0.00143EPSS
Exploits0References3
Prion
Prionadded 2021/01/26 9:15 p.m.12 views

Design/Logic Flaw

Tendermint Core is an open source Byzantine Fault Tolerant BFT middleware that takes a state transition machine - written in any programming language - and securely replicates it on many machines. Tendermint Core v0.34.0 introduced a new way of handling evidence of misbehavior. As part of this, w...

4CVSS6.3AI score0.00376EPSS
Exploits0References3Affected Software1
CNVD
CNVDadded 2019/08/02 12:0 a.m.1 views

Memory Corruption Vulnerability in Schneider SFT2885 bft Project File

Schneider Electric SA is a global electrical company headquartered in France and a global specialist in energy efficiency management and automation. A memory corruption vulnerability exists in the Schneider SFT2885 bft project file, which can be exploited by an attacker to cause a denial of servi...

6.9AI score
Exploits0
OSV
OSVadded 2018/12/03 4:29 p.m.1 views

CVE-2018-1002005

These vulnerabilities require administrative privileges to exploit. There is an XSS vulnerability in bftlist.html.php:43: via the filtersignupdate parameter...

4.8CVSS5.8AI score
Exploits0References3
CNVD
CNVDadded 2018/09/21 12:0 a.m.4 views

Wordpress Arigato Autoresponder and Newsletter Cross-Site Scripting Vulnerability (CNVD-2019-29710)

WordPress is a blogging platform developed by the WordPress Software Foundation using the PHP language, which supports personal blog sites on PHP and MySQL servers.Arigato Autoresponder and Newsletter is an autoresponder plugin used in... A cross-site scripting vulnerability exists in the...

4.8CVSS6AI score0.00271EPSS
Exploits5References1
Rows per page
Query Builder