Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3640 matches found

Positive Technologies
Positive Technologiesadded 2026/02/10 12:0 a.m.6 views

PT-2026-7296

Name of the Vulnerable Software and Affected Versions TDX Module versions prior to tdx1.5 Description An out-of-bounds read issue exists within the hypervisor in some TDX Module versions prior to tdx1.5 when operating in Ring 0. A software side channel adversary with a privileged user, combined...

5.6CVSS5.3AI score0.00098EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2026/02/10 12:0 a.m.6 views

PT-2026-7298

Name of the Vulnerable Software and Affected Versions versions prior to 2025-30513 Description A race condition exists within a TDX Module operating in Ring 0, potentially allowing an escalation of privilege. A system software adversary with privileged user access and a low complexity attack may...

8.3CVSS5.2AI score0.00122EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2026/02/10 12:0 a.m.5 views

PT-2026-7294

Name of the Vulnerable Software and Affected Versions versions prior to 2025-27572 Description A hypervisor may allow an information disclosure. An authorized adversary with a privileged user and a high complexity attack may enable data exposure. This may occur via local access when attack...

5.6CVSS5.3AI score0.00105EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2026/02/10 12:0 a.m.7 views

PT-2026-7295

Name of the Vulnerable Software and Affected Versions IntelR Converged Security and Management Engine CSME Firmware FW affected versions not specified Description An out-of-bounds read issue exists in the firmware within Ring 0: Kernel, potentially allowing information disclosure. A system softwa...

5.6CVSS5.2AI score0.00099EPSS
Exploits0References6
Positive Technologies
Positive Technologiesadded 2026/02/10 12:0 a.m.14 views

PT-2026-7288

Name of the Vulnerable Software and Affected Versions Intel Ethernet Controller E810 firmware versions prior to cvl fw 1.7.8.x Description An uncaught exception in the firmware of certain 100GbE Intel Ethernet Controller E810 devices running Ring 0: Bare Metal OS may lead to a denial of service. ...

6.7CVSS5.3AI score0.00113EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/02/10 12:0 a.m.5 views

PT-2026-7286

Name of the Vulnerable Software and Affected Versions IntelR OptaneTM PMem management software versions CR MGMT 01.00.00.3584, CR MGMT 02.00.00.4052, CR MGMT 03.00.00.0538 Description The software has default permissions that may allow a privilege escalation. An unprivileged software adversary wi...

6.7CVSS5.2AI score0.00114EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/02/10 12:0 a.m.6 views

PT-2026-7315

Name of the Vulnerable Software and Affected Versions IntelR Memory and Storage Tool versions prior to 2.5.2 Description The IntelR Memory and Storage Tool, in versions before 2.5.2, has default permissions that may allow a local escalation of privilege. An authenticated user with a high complexi...

6.7CVSS5.2AI score0.00109EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/02/10 12:0 a.m.5 views

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: pcs (UTSA-2026-005305)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005305 advisory. Tornado is a Python web framework and asynchronous networking library. The algorithm used for parsing HTTP cookies in Tornado versions prior to 6.4.2 sometimes has...

7.5CVSS5.5AI score0.01051EPSS
Exploits0References4
Snyk
Snykadded 2026/02/09 2:26 p.m.3 views

Inefficient Algorithmic Complexity

Overview Affected versions of this package are vulnerable to Inefficient Algorithmic Complexity in the certtool --verify command. An attacker can cause excessive CPU and memory consumption by submitting specially crafted certificates containing a large number of SANs and Name Constraints...

6.9CVSS5.6AI score0.00638EPSS
Exploits1References2
NVD
NVDadded 2026/02/09 5:16 a.m.9 views

CVE-2026-2215

A vulnerability was detected in rachelos WeRSS we-mp-rss up to 1.4.8. This issue affects some unknown processing of the file core/auth.py of the component JWT Handler. Performing a manipulation of the argument SECRETKEY results in use of default cryptographic key. The attack can be initiated...

6.3CVSS0.00268EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/02/09 4:32 a.m.31 views

CVE-2026-2215 rachelos WeRSS we-mp-rss JWT auth.py default key

A vulnerability was detected in rachelos WeRSS we-mp-rss up to 1.4.8. This issue affects some unknown processing of the file core/auth.py of the component JWT Handler. Performing a manipulation of the argument SECRETKEY results in use of default cryptographic key. The attack can be initiated...

6.3CVSS0.00268EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/02/09 4:32 a.m.7 views

CVE-2026-2215

A vulnerability was detected in rachelos WeRSS we-mp-rss up to 1.4.8. This issue affects some unknown processing of the file core/auth.py of the component JWT Handler. Performing a manipulation of the argument SECRETKEY results in use of default cryptographic key. The attack can be initiated...

6.3CVSS4.6AI score0.00268EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichmentadded 2026/02/09 4:32 a.m.4 views

CVE-2026-2215 rachelos WeRSS we-mp-rss JWT auth.py default key

A vulnerability was detected in rachelos WeRSS we-mp-rss up to 1.4.8. This issue affects some unknown processing of the file core/auth.py of the component JWT Handler. Performing a manipulation of the argument SECRETKEY results in use of default cryptographic key. The attack can be initiated...

6.3CVSS5AI score0.00268EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2026/02/09 1:33 a.m.4 views

CVE-2026-2110

A security flaw has been discovered in Tasin1025 SwiftBuy up to 0f5011372e8d1d7edfd642d57d721c9fadc54ec7. Affected by this vulnerability is an unknown functionality of the file /login.php. Performing a manipulation results in improper restriction of excessive authentication attempts. Remote...

8.1CVSS4.3AI score0.00681EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2026/02/09 12:0 a.m.5 views

PT-2026-7067

A vulnerability was detected in rachelos WeRSS we-mp-rss up to 1.4.8. This issue affects some unknown processing of the file core/auth.py of the component JWT Handler. Performing a manipulation of the argument SECRET KEY results in use of default cryptographic key. The attack can be initiated...

6.3CVSS5AI score0.00268EPSS
Exploits0References5
OSV
OSVadded 2026/02/07 8:15 p.m.2 views

CVE-2026-2110

A security flaw has been discovered in Tasin1025 SwiftBuy up to 0f5011372e8d1d7edfd642d57d721c9fadc54ec7. Affected by this vulnerability is an unknown functionality of the file /login.php. Performing a manipulation results in improper restriction of excessive authentication attempts. Remote...

8.1CVSS4.9AI score0.00681EPSS
Exploits1References4
Cvelist
Cvelistadded 2026/02/07 8:2 p.m.36 views

CVE-2026-2110 Tasin1025 SwiftBuy login.php excessive authentication

A security flaw has been discovered in Tasin1025 SwiftBuy up to 0f5011372e8d1d7edfd642d57d721c9fadc54ec7. Affected by this vulnerability is an unknown functionality of the file /login.php. Performing a manipulation results in improper restriction of excessive authentication attempts. Remote...

6.3CVSS0.00681EPSS
Exploits1References4
EUVD
EUVDadded 2026/02/07 8:2 p.m.5 views

EUVD-2026-5717

A security flaw has been discovered in Tasin1025 SwiftBuy up to 0f5011372e8d1d7edfd642d57d721c9fadc54ec7. Affected by this vulnerability is an unknown functionality of the file /login.php. Performing a manipulation results in improper restriction of excessive authentication attempts. Remote...

6.3CVSS4.5AI score0.00681EPSS
Exploits1References4
Vulnrichment
Vulnrichmentadded 2026/02/07 8:2 p.m.3 views

CVE-2026-2110 Tasin1025 SwiftBuy login.php excessive authentication

A security flaw has been discovered in Tasin1025 SwiftBuy up to 0f5011372e8d1d7edfd642d57d721c9fadc54ec7. Affected by this vulnerability is an unknown functionality of the file /login.php. Performing a manipulation results in improper restriction of excessive authentication attempts. Remote...

6.3CVSS4.5AI score0.00681EPSS
Exploits1References4
RedhatCVE
RedhatCVEadded 2026/02/06 1:26 a.m.6 views

CVE-2026-1892

A security vulnerability has been detected in WeKan up to 8.20. This affects the function setBoardOrgs of the file models/boards.js of the component REST API. Such manipulation of the argument item.cardId/item.checklistId/card.boardId leads to improper authorization. The attack may be launched...

5CVSS5AI score0.00241EPSS
Exploits0References1
Rows per page
Query Builder