Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.0 views

EUVD-2016-6364

Malware in sbrugna...

7.5CVSS6.3AI score0.01912EPSS
Exploits0References28
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2025-18070

Malicious code in bioql PyPI...

7.8CVSS9.2AI score0.00072EPSS
Exploits0References3
NVD
NVDadded 2025/06/11 1:15 a.m.8 views

CVE-2025-4275

A vulnerability in the digital signature verification process does not properly validate variable attributes which allows an attacker to bypass signature verification by creating a non-authenticated NVRAM variable. An attacker may to execute arbitrary signed UEFI code and bypass Secure Boot...

7.8CVSS0.00072EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2023/02/15 5:0 a.m.2 views

SUSE CVE-2016-5419

curl and libcurl before 7.50.1 do not prevent TLS session resumption when the client certificate has changed, which allows remote attackers to bypass intended restrictions by resuming a session...

7.5CVSS9.3AI score0.01912EPSS
Exploits0References26
RedHat Linux
RedHat Linuxadded 2018/11/13 8:36 a.m.2 views

curl: TLS session resumption client cert bypass

It was found that the libcurl library did not prevent TLS session resumption when the client certificate had changed. An attacker could potentially use this flaw to hijack the authentication of the connection by leveraging a previously created connection with a different client certificate...

7.5CVSS7.3AI score0.01912EPSS
Exploits0References5
OSV
OSVadded 2016/08/10 2:59 p.m.40 views

CVE-2016-5419

curl and libcurl before 7.50.1 do not prevent TLS session resumption when the client certificate has changed, which allows remote attackers to bypass intended restrictions by resuming a session...

7.5CVSS6.9AI score0.01912EPSS
Exploits0References19
OSV
OSVadded 2016/08/10 2:59 p.m.1 views

ALPINE-CVE-2016-5419

curl and libcurl before 7.50.1 do not prevent TLS session resumption when the client certificate has changed, which allows remote attackers to bypass intended restrictions by resuming a session...

7.5CVSS7AI score0.01912EPSS
Exploits0References1
Kaspersky
Kasperskyadded 2016/08/03 12:0 a.m.46 views

KLA10859 Security bypass vulnerabilities in cURL

Multiple serious vulnerabilities have been found in cURL. Malicious users can exploit these vulnerabilities to bypass security restrictions. Below is a complete list of vulnerabilities 1. Use-after-free vulnerability can be exploited to control which connection is used; 2. An improper TLS...

8.1CVSS7.8AI score0.01912EPSS
Exploits0References3
CNVD
CNVDadded 2015/09/20 12:0 a.m.1 views

Apple iOS NSURL Certificate Validation Vulnerability

Apple iOS is the latest operating system that runs on Apple's iPhone and iPod touch devices. Apple iOS has a certificate validation vulnerability in NSURL when the certificate is changed, allowing attackers in a privileged network location to intercept SSL/TLS links...

4.3CVSS6.6AI score0.00096EPSS
Exploits0References1
QT
QTadded 2014/04/10 12:0 a.m.67 views

Heartbleed Bug (CVE-2014-0160) and Qt

Although Qt as such is not affected by the Heartbleed Bug CVE-2014-0160 found in OpenSSL, it affects users of Qt, so I wanted to write a short summary about the topic. As defined at : "The Heartbleed Bug is a serious vulnerability in the popular OpenSSL cryptographic software library. This weakne...

5CVSS0.3AI score0.94464EPSS
Exploits86
Rows per page
Query Builder