Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

IBM Security Bulletins
IBM Security Bulletinsadded 2026/05/04 12:19 p.m.3 views

Security Bulletin: Denial of Service in Axios via Malicious __proto__ in Configuration Object

Summary Axios is a promise based HTTP client for the browser and Node.js. Prior to versions 0.30.3 and 1.13.5, the mergeConfig function in axios crashes with a TypeError when processing configuration objects containing proto as an own property. An attacker can trigger this by providing a maliciou...

7.5CVSS6.8AI score0.00044EPSS
Exploits1Affected Software1
Cvelist
Cvelistadded 2026/02/09 8:11 p.m.27 views

CVE-2026-25639 Axios affected by Denial of Service via __proto__ Key in mergeConfig

Axios is a promise based HTTP client for the browser and Node.js. Prior to versions 0.30.3 and 1.13.5, the mergeConfig function in axios crashes with a TypeError when processing configuration objects containing proto as an own property. An attacker can trigger this by providing a malicious...

7.5CVSS0.00044EPSS
Exploits1References7
CNNVD
CNNVDadded 2025/10/30 12:0 a.m.1 views

Nagios XI 安全漏洞

Nagios XI is a suite of IT infrastructure monitoring solutions from the US-based Nagios. The solution supports monitoring and alerting of applications, services, operating systems and more. A security vulnerability exists in Nagios XI CCM versions prior to 3.0.7 and Nagios XI version 5.7.4, which...

8.8CVSS7.6AI score0.01476EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2009-1085

Malware in sbrugna...

6.4CVSS6.4AI score0.00911EPSS
Exploits0References10
RedhatCVE
RedhatCVEadded 2025/06/12 4:10 p.m.3 views

CVE-2025-49142

Nautobot is a Network Source of Truth and Network Automation Platform. All users of Nautobot versions prior to 2.4.10 or prior to 1.6.32 are potentially affected. Due to insufficient security configuration of the Jinja2 templating feature used in computed fields, custom links, etc. in Nautobot, a...

7.1CVSS6.2AI score0.0018EPSS
Exploits0References1
CNNVD
CNNVDadded 2024/11/12 12:0 a.m.2 views

Tolgee 安全漏洞

Tolgee is an open source multilingual translation and localization platform from Tolgee Open Source, designed to help development teams easily manage and maintain multilingual software applications and websites. A security vulnerability exists in Tolgee version 3.81.1, which stems from including...

9.8CVSS6.7AI score0.00601EPSS
Exploits0References3
F5 Networks
F5 Networksadded 2023/02/21 6:7 p.m.31 views

K01471335: BIND vulnerability CVE-2016-2848

Security Advisory Description ISC BIND 9.1.0 through 9.8.4-P2 and 9.9.0 through 9.9.2-P2 allows remote attackers to cause a denial of service assertion failure and daemon exit via malformed options data in an OPT resource record. CVE-2016-2848 Impact A remote attacker may be able to cause a...

7.5CVSS7.5AI score0.52249EPSS
Exploits0Affected Software13
OpenVAS
OpenVASadded 2016/08/12 12:0 a.m.25 views

F5 BIG-IP - BIG-IP IPsec IKE peer listener vulnerability CVE-2016-5736

The anonymous IPsec IKE peer configuration object is present and enabled in the default configuration. The settings of the anonymous IPsec IKE peer object allow an arbitrary peer to establish IKE phase 1 without certificate validation or a pre-shared key which may expose phase 2 negotiations to a...

7.5CVSS7.3AI score0.0113EPSS
Exploits0References1
Rows per page
Query Builder