Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Positive Technologies
Positive Technologiesadded 2025/12/16 12:0 a.m.4 views

PT-2025-51756

Name of the Vulnerable Software and Affected Versions AmpereOne AC03 versions prior to 3.5.9.3 AmpereOne AC04 versions prior to 4.4.5.2 AmpereOne M versions prior to 5.4.5.1 Description The software contains a flaw where an incorrectly formed System Management Call SMC to the UEFI-MM MMCommunicat...

9.8CVSS6.7AI score0.00056EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2025/12/16 12:0 a.m.3 views

CVE-2025-62864

Ampere AmpereOne AC03 devices before 3.5.9.3, AmpereOne AC04 devices before 4.4.5.2, and AmpereOne M devices before 5.4.5.1 allow an incorrectly formed SMC call to UEFI-MM MMCommunicate service that could result in an out-of-bounds write within the UEFI-MM Secure Partition context...

6.7AI score0.00056EPSS
Exploits0References2
CVE
CVEadded 2025/12/16 12:0 a.m.10 views

CVE-2025-62864

AmpereOne hardware (AC03 before 3.5.9.3, AC04 before 4.4.5.2, M before 5.4.5.1) is affected by CVE-2025-62864 due to an incorrectly formed SMC call to the UEFI-MM MMCommunicate service, which could cause an out-of-bounds write within the UEFI-MM Secure Partition context. Red Hat and NVD entries a...

9.8CVSS6.7AI score0.00056EPSS
Exploits0References2Affected Software1
OSV
OSVadded 2024/03/16 6:5 p.m.9 views

MAL-2024-1102 Malicious code in r101-css (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 04fdb7d31fd1d035cfcc20972fe3adcd5bf484b9a3427b495018e3ae9b9b62ac Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7.2AI score
Exploits0References1
Openbugbounty
Openbugbountyadded 2023/06/06 4:39 p.m.7 views

ocs.itl-group.com Cross Site Scripting vulnerability OBB-3398173

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Prion
Prionadded 2022/02/03 2:15 a.m.18 views

Design/Logic Flaw

An issue was discovered in Kernel 5.x in Insyde InsydeH2O, affecting HddPassword. Software SMI services that use the Communicate function of the EFISMMCOMMUNICATIONPROTOCOL do not check whether the address of the buffer is valid, which allows use of SMRAM, MMIO, or OS kernel addresses...

6.9CVSS7.6AI score0.00063EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVEadded 2020/07/10 7:30 p.m.18 views

CVE-2020-4042

Removed by vendor...

6.8CVSS6.6AI score0.00184EPSS
Exploits0
Cvelist
Cvelistadded 2007/03/20 8:0 p.m.19 views

CVE-2007-1535

Microsoft Windows Vista establishes a Teredo address without user action upon connection to the Internet, contrary to documentation that Teredo is inactive without user action, which increases the attack surface and allows remote attackers to communicate via Teredo...

6.6AI score0.2885EPSS
Exploits0References6
Rows per page
Query Builder