Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

RedhatCVE
RedhatCVEadded 2 days ago6 views

CVE-2026-47161

RELATE is a web-based courseware package. Prior to commit d66ba5659b459bf1ba56b7109b5f9ecf197cbefb, RELATE LMS configures its Celery workers to accept and deserialize untrusted 'pickle' data. An attacker who can reach the message broker can execute arbitrary commands on the host server. Combined...

8.7CVSS6.5AI score0.00607EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/05/27 6:31 p.m.8 views

CVE-2026-47161 RELATE Vulnerable to Remote Code Execution (RCE) via Insecure Celery Pickle Deserialization

RELATE is a web-based courseware package. Prior to commit d66ba5659b459bf1ba56b7109b5f9ecf197cbefb, RELATE LMS configures its Celery workers to accept and deserialize untrusted 'pickle' data. An attacker who can reach the message broker can execute arbitrary commands on the host server. Combined...

8.7CVSS6.5AI score0.00607EPSS
Exploits0References2
EUVD
EUVDadded 2026/05/27 6:31 p.m.10 views

EUVD-2026-32628

RELATE is a web-based courseware package. Prior to commit d66ba5659b459bf1ba56b7109b5f9ecf197cbefb, RELATE LMS configures its Celery workers to accept and deserialize untrusted 'pickle' data. An attacker who can reach the message broker can execute arbitrary commands on the host server. Combined...

8.7CVSS6.5AI score0.00607EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2019/08/05 12:0 a.m.31 views

Ansible Tower 3.x < 3.3.5 / 3.4.x < 3.4.3 Privilege Escalation Vulnerability

The version of Ansible Tower running on the remote web server is 3.3.x prior to 3.3.5 or 3.4.x prior to 3.4.3. It is, therefore, affected by a anauthorized access vulnerability due to a RabbitMQ misconfiguration. The configuration does not set a secure channel for messaging celery workers,...

7.2CVSS7.4AI score0.00329EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2019/01/03 2:29 p.m.0 views

CVE-2018-16879

Ansible Tower before version 3.3.3 does not set a secure channel as it is using the default insecure configuration channel settings for messaging celery workers from RabbitMQ. This could lead in data leak of sensitive information such as passwords as well as denial of service attacks by deleting...

9.8CVSS5.5AI score0.00229EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologiesadded 2019/01/03 12:0 a.m.2 views

PT-2019-9380 · Red Hat · Ansible Tower

Name of the Vulnerable Software and Affected Versions: Ansible Tower versions prior to 3.3.3 Description: The issue is related to the insecure configuration channel settings for messaging celery workers from RabbitMQ, which could lead to a data leak of sensitive information such as passwords and...

9.8CVSS7AI score0.00229EPSS
Exploits0References5
Rows per page
Query Builder