Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

438 matches found

AstraLinux
AstraLinuxadded 2026/05/20 5:53 a.m.2 views

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: KVM: nSVM: Ignore nCR34:0 when loading PDPTEs from memory Ignore nCR34:0 when loading PDPTEs from memory for nested SVMs. When PAE paging is used, the bits 4:0 of the CR3 register are ignored, and thus VMRUN does not enforce a...

7.1CVSS6.4AI score0.00014EPSS
Exploits0References2
AstraLinux
AstraLinuxadded 2026/05/20 5:53 a.m.1 views

Astra Linux - уязвимость в libcroco

In libcroco version 0.6.13, there is excessive recursion in the cr parser function cr parserparseanycore in cr-parser.c, resulting in stack consumption...

7.1CVSS6.7AI score0.04749EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2026/05/14 12:0 a.m.3 views

Unity Linux 20.1070a Security Update: git (UTSA-2026-021355)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-021355 advisory. Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals...

9.3CVSS6.9AI score0.37878EPSS
Exploits2References4
ATTACKERKB
ATTACKERKBadded 2026/05/13 3:8 p.m.4 views

CVE-2026-43483

In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Set/clear CR8 write interception when AVIC is deactivated Explicitly set/clear CR8 write interception when AVIC is deactivated to fix a bug where KVM leaves the interception enabled after AVIC is activated. E.g. if KVM...

5.7AI score0.00032EPSS
Exploits0References7Affected Software1
Debian CVE
Debian CVEadded 2026/05/13 3:8 p.m.4 views

CVE-2026-43483

In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Set/clear CR8 write interception when AVIC is deactivated Explicitly set/clear CR8 write interception when AVIC is deactivated to fix a bug where KVM leaves the interception enabled after AVIC is activated. E.g. if KVM...

5.7AI score0.00032EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2026/05/13 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-43483

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - KVM: SVM: Set/clear CR8 write interception when AVIC is deactivated Explicitly set/clear CR8 write interception when AVIC is deactivated to fix a bug where KVM...

5.8AI score0.00032EPSS
Exploits0References4
AstraLinux
AstraLinuxadded 2026/05/03 11:59 p.m.3 views

Astra Linux - уязвимость в linux, linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: IB/hfi1: Fixed a memory leak in initcreditreturn. When dmaalloccoherent fails to allocate dd-crbasei.va, initcreditreturn should deallocate dd-crbase and dd-crbasei that were allocated earlier. Otherwise, those resources will nev...

5.5CVSS6.2AI score0.00011EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2026/04/25 1:39 a.m.2 views

SUSE CVE-2026-31561

In the Linux kernel, the following vulnerability has been resolved: x86/cpu: Remove X86CR4FRED from the CR4 pinned bits mask Commit in Fixes added the FRED CR4 bit to the CR4 pinned bits mask so that whenever something else modifies CR4, that bit remains set. Which in itself is a perfectly fine...

5.5CVSS5.5AI score0.00015EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/04/24 12:0 a.m.1 views

PT-2026-34913

In the Linux kernel, the following vulnerability has been resolved: x86/cpu: Remove X86 CR4 FRED from the CR4 pinned bits mask Commit in Fixes added the FRED CR4 bit to the CR4 pinned bits mask so that whenever something else modifies CR4, that bit remains set. Which in itself is a perfectly fine...

5.4AI score0.00015EPSS
Exploits0References5
Redos
Redosadded 2026/04/17 12:0 a.m.2 views

ROS-20260417-73-0026

A vulnerability in the crparserparseanycore function of the cr-parser.c component of the css2 Libcroco cascading tables library is related to uncontrolled recursion. Exploitation of the vulnerability could allow an attacker acting remotely to compromise data integrity as well as cause a denial of...

7.1CVSS6.7AI score0.04749EPSS
Exploits1
Snyk
Snykadded 2026/03/26 12:33 a.m.1 views

Malicious Package

Overview cr-static-shared-components is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

9.8CVSS5.9AI score
Exploits0References2
OSV
OSVadded 2026/03/24 9:5 a.m.1 views

MAL-2026-2223 Malicious code in cr-static-shared-components (npm)

Malicious package due to code obfuscation, dynamic module loading, suspicious email, and arbitrary code execution during installation. --- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8fcc8531926534d3d87af7c173bfaba5f563bdbbc6ae8293de0150a0f00ba205 The package...

6.3AI score
Exploits0References3
Slackware Linux
Slackware Linuxadded 2026/02/28 11:29 p.m.5 views

[slackware-security] gvfs

New gvfs packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/gvfs-1.48.1-i586-2slack15.0.txz: Rebuilt. This update fixes security issues: ftp: Use control connection address for PASV data. ftp:...

4.3CVSS6AI score0.00094EPSS
Exploits2
OSV
OSVadded 2026/02/01 1:37 a.m.2 views

MINI-V6JP-JPCJ-4CR2

Bulletin has no description...

7.5CVSS7.2AI score0.00045EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2026/01/15 12:0 a.m.1 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003193)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003193 advisory. The preparevmcs02 function in arch/x86/kvm/vmx.c in the Linux kernel through 4.13.3 does not ensure that the CR8-load exiting and CR8-store exiting L0 vmcs02 control...

7.1CVSS6.8AI score0.00036EPSS
Exploits0References14
RedhatCVE
RedhatCVEadded 2026/01/09 11:21 a.m.3 views

CVE-2021-22907

An improper access control vulnerability exists in Citrix Workspace App for Windows potentially allows privilege escalation in CR versions prior to 2105 and 1912 LTSR prior to CU4...

7.8CVSS7.1AI score0.00127EPSS
Exploits0References1
OSV
OSVadded 2025/12/08 1:49 a.m.1 views

CGA-9M4M-CR94-95VM

Bulletin has no description...

7.5CVSS6.9AI score0.00019EPSS
Exploits2
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2021-10036

Malware in sbrugna...

7.8CVSS7.5AI score0.00127EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2017-1100

Malware in sbrugna...

7.8CVSS7.7AI score0.00053EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2012-3268

Malware in sbrugna...

10CVSS6.4AI score0.00162EPSS
Exploits0References2
Rows per page
Query Builder