Lucene search
K

264 matches found

Nuclei
Nuclei
added yesterday86 views

Clustering Local File Inclusion

Clustering master branch as of commit 53e663e259bcfc8cdecb56c0bb255bd70bfcaa70 is affected by a directory traversal vulnerability. This attack can cause the disclosure of critical secrets stored anywhere on the system and can significantly aid in getting remote code access. id: CVE-2021-43496 inf...

7.5CVSS7.2AI score0.15689EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2 days ago4 views

Important: Red Hat Security Advisory: tomcat security, bug fix, and enhancement update

An update for tomcat is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.5CVSS7AI score0.21691EPSS
Exploits6References4
Rockylinux
Rockylinux
added 5 days ago10 views

tomcat security, bug fix, and enhancement update

An update is available for tomcat. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Apache Tomcat is a servlet container for the Java Servlet and JavaServer Page...

7.5CVSS6.2AI score0.21691EPSS
Exploits6
Rockylinux
Rockylinux
added 5 days ago6 views

tomcat9 security, bug fix, and enhancement update

An update is available for tomcat9. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Tomcat is the servlet container that is used in the official Reference...

7.5CVSS6.2AI score0.21691EPSS
Exploits6
Rockylinux
Rockylinux
added 5 days ago7 views

tomcat security, bug fix, and enhancement update

An update is available for tomcat. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages...

7.5CVSS6.2AI score0.21691EPSS
Exploits6
RedHat Linux
RedHat Linux
added 6 days ago8 views

Important: Red Hat Security Advisory: tomcat security, bug fix, and enhancement update

An update for tomcat is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.5CVSS7.2AI score0.21691EPSS
Exploits6References4
RedHat Linux
RedHat Linux
added last week6 views

Important: Red Hat Security Advisory: tomcat security, bug fix, and enhancement update

An update for tomcat is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

7.5CVSS6.2AI score0.21691EPSS
Exploits6References4
RedHat Linux
RedHat Linux
added last week8 views

Important: Red Hat Security Advisory: tomcat9 security, bug fix, and enhancement update

An update for tomcat9 is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

7.5CVSS6.2AI score0.21691EPSS
Exploits6References4
ATTACKERKB
ATTACKERKB
added 2026/06/26 7:41 p.m.8 views

CVE-2026-53309

In the Linux kernel, the following vulnerability has been resolved: ocfs2/dlm: fix off-by-one in dlmmatchregions region comparison The local-vs-remote region comparison loop uses '=' instead of '', causing it to read one entry past the valid range of qrregions. The other loops in the same functio...

9.8CVSS5.7AI score0.00404EPSS
Exploits0References9Affected Software1
Packet Storm News
Packet Storm News
added 2026/06/10 12:0 a.m.9 views

A Robust Framework for Sybil Attack Detection in Vehicular Ad Hoc Networks

Sybil attacks create an illusion of traffic congestion by utilizing fake identities, which undermines the reliable and safe operation of vehicular ad hoc networks VANETs. Existing detection mechanisms struggle to effectively handle Sybil attacks as they are i susceptible to high false positive...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/05/29 12:0 a.m.27 views

Stateful Online Monitoring Catches Distributed Agent Attacks

Language models can find thousands of severe software vulnerabilities, and agents are increasingly being misused for cyberattacks. To avoid detection, attackers frequently distribute their misuse, splitting a harmful task across many user accounts so each individual transcript looks benign. Becau...

5.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/05/28 12:0 a.m.10 views

IBM DB2 Multiple Vulnerabilities (7273554, 7273555, 7273556, 7273557, 7273558) (Windows)

According to its self-reported version number, IBM Db2 is affected by multiple vulnerabilities: - IBM DB2 for Linux, UNIX and Windows includes DB2 Connect Server stores potentially sensitive information in log files that could be read by a local user. CVE-2025-13755 - IBM Db2 is vulnerable to a...

7.5CVSS5.8AI score0.00362EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2026/05/26 12:59 p.m.17 views

Apache Tomcat: Apache Tomcat: Information disclosure via sensitive data in log files

A flaw was found in Apache Tomcat. The cloud membership for clustering component was vulnerable to the insertion of sensitive information into log files. This vulnerability could lead to the exposure of the Kubernetes bearer token, which is a credential used for authentication within a Kubernetes...

7.5CVSS5.7AI score0.00447EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/05/26 12:55 p.m.11 views

Apache Tomcat: Apache Tomcat: Information disclosure via sensitive data in log files

A flaw was found in Apache Tomcat. The cloud membership for clustering component was vulnerable to the insertion of sensitive information into log files. This vulnerability could lead to the exposure of the Kubernetes bearer token, which is a credential used for authentication within a Kubernetes...

7.5CVSS5.7AI score0.00447EPSS
Exploits0References5
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.9 views

Astra Linux – Vulnerability in Tomcat9

The documentation for Apache Tomcat versions 10.1.0-M1 to 10.1.0-M14, 10.0.0-M1 to 10.0.20, 9.0.13 to 9.0.62, and 8.5.38 to 8.5.78 states that the EncryptInterceptor enables Tomcat clustering to run over an untrusted network. However, this is incorrect. While the EncryptInterceptor does provide...

7.5CVSS7.9AI score0.73139EPSS
Exploits5References1
Packet Storm News
Packet Storm News
added 2026/05/19 12:0 a.m.13 views

A Hybrid Cluster-Based Classification Model for Anomaly Detection in Unbalanced IoT Networks

Detecting anomalies in Internet of Things IoT networks is a critical security challenge, often hampered by highly imbalanced and diverse network traffic datasets. Standard classifiers struggle to perform well across all traffic types. This paper proposes a hybrid detection model to address this...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/05/14 12:0 a.m.14 views

Topical Shifts in the Dark Web: A Longitudinal Analysis of Content from the Cybercrime Ecosystem

The dark web hosts a dynamic ecosystem of cybercrime forums and marketplaces that adapt to law enforcement pressure, technological change, and economic incentives. Prior research has extracted cyber threat intelligence from these platforms using static snapshots, with limited attention to how...

5.8AI score
Exploits0
GithubExploit
GithubExploit
added 2026/05/11 2:7 p.m.139 views

Exploit for Missing Encryption of Sensitive Data in Apache Tomcat

CVE-2026-34486 EncryptInterceptor fail-open bypass in Apache...

7.5CVSS6AI score0.21691EPSS
Exploits6
Talos Blog
Talos Blog
added 2026/05/06 10:0 a.m.8 views

Insights into the clustering and reuse of phone numbers in scam emails

Cisco Talos has recently started to collect and gather intelligence around phone numbers within emails as an additional indicator of compromise IOC. In this blog, we discuss new insights into in-the-wild phone number reuse in scam emails. According to Talos' observations, the ease of API-driven...

5.7AI score
Exploits0
OSV
OSV
added 2026/04/29 10:6 a.m.7 views

RHSA-2026:11493 Red Hat Security Advisory: pcs security update

Bulletin has no description...

8.1CVSS8.1AI score0.01735EPSS
Exploits0References15
Rows per page
Query Builder