Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CVE
CVEadded 2026/02/03 12:0 a.m.6 views

CVE-2025-70559

pdfminer.six before 20251230 contains an insecure deserialization vulnerability in the CMap loading mechanism. The library uses Python pickle to deserialize CMap cache files without validation, allowing an attacker who can place a malicious pickle file in a reachable location to trigger arbitrary...

6.5CVSS8.1AI score0.00075EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.0 views

EUVD-2015-6983

Malware in sbrugna...

9.3CVSS7.7AI score0.01026EPSS
Exploits0References6
Positive Technologies
Positive Technologiesadded 2024/03/19 12:0 a.m.5 views

PT-2024-2479 · Ruby +7 · Rdoc +7

Name of the Vulnerable Software and Affected Versions: RDoc versions 6.3.3 through 6.6.2 Description: The issue is related to the restoration of untrusted data in memory by the RDoc documentation generator for the Ruby programming language. This can be exploited to execute arbitrary code using...

9.8CVSS7.8AI score0.0883EPSS
Exploits2References150
CNNVD
CNNVDadded 2021/10/19 12:0 a.m.1 views

tough library 路径遍历漏洞

tough library is a tool for using and generating TUF repositories. A security vulnerability exists in versions prior to Tough library 0.12.0 that stems from the program's inability to properly clean up delegated role names when caching a repository or loading a repository from the file system...

8.2CVSS6.3AI score0.00524EPSS
Exploits0References4
Snyk
Snykadded 2019/06/06 8:19 p.m.1 views

Deserialization of Untrusted Data

Amendment This was deemed not a vulnerability. Overview parso is a Python parser that supports error recovery and round-trip parsing for different Python versions. Affected versions of this package are vulnerable to Deserialization of Untrusted Data. A deserialization vulnerability exists in the...

7.5CVSS7AI score0.0067EPSS
Exploits1References2
OSV
OSVadded 2019/06/06 7:29 p.m.10 views

PYSEC-2019-39

DISPUTED A deserialization vulnerability exists in the way parso through 0.4.0 handles grammar parsing from the cache. Cache loading relies on pickle and, provided that an evil pickle can be written to a cache grammar file and that its parsing can be triggered, this flaw leads to Arbitrary Code...

5.4AI score
Exploits0References2
Prion
Prionadded 2015/12/11 11:59 a.m.15 views

Design/Logic Flaw

MobileStorageMounter in Apple iOS before 9.2 and tvOS before 9.1 mishandles the timing of trust-cache loading, which allows attackers to execute arbitrary code in a privileged context via a crafted app...

9.3CVSS7.2AI score0.01026EPSS
Exploits0References5Affected Software2
Cvelist
Cvelistadded 2015/12/11 11:0 a.m.22 views

CVE-2015-7051

MobileStorageMounter in Apple iOS before 9.2 and tvOS before 9.1 mishandles the timing of trust-cache loading, which allows attackers to execute arbitrary code in a privileged context via a crafted app...

7.2AI score0.01026EPSS
Exploits0References5
Rows per page
Query Builder