Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Cvelist
Cvelistadded 2026/06/08 6:26 p.m.33 views

CVE-2026-10786

Improper access control in the ticketing integration settings in Devolutions Server allows an authenticated low-privileged user to obtain cleartext credentials for configured ticketing integrations via a crafted API request. This issue affects : Devolutions Server 2026.2.4.0 Devolutions Server...

0.00148EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/05/06 12:0 a.m.9 views

PT-2026-37648

Name of the Vulnerable Software and Affected Versions Cisco Unity Connection affected versions not specified Description Insufficient validation of user-supplied input in the web-based management interface allows an authenticated remote attacker to execute arbitrary code as root. This is achieved...

9CVSS6.2AI score0.00696EPSS
Exploits0References10
BDU FSTEC
BDU FSTECadded 2025/07/21 12:0 a.m.5 views

The vulnerability of the Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) management platforms exists due to the lack of measures to neutralize special elements, allowing attackers to execute arbitrary commands with root privileges.

The vulnerability of the Cisco Identity Services Engine ISE and Cisco ISE Passive Identity Connector ISE-PIC platforms exists due to the lack of measures taken to neutralize specific elements. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands with root privilege...

8.5CVSS7.4AI score0.12681EPSS
Exploits0References2
CVE
CVEadded 2024/11/18 12:0 a.m.56 views

CVE-2024-44757

CVE-2024-44757 describes an arbitrary file download vulnerability in the component /Basics/DownloadInpFile of NUS-M9 ERP Management Software v3.0.0, exploitable via a crafted interface request that can expose sensitive files. The initial data indicates a high-severity impact (C:H/I:N/A:N, CVSS 3....

7.5CVSS6.6AI score0.00421EPSS
Exploits0References2Affected Software1
OSV
OSVadded 2024/07/31 9:15 p.m.2 views

CVE-2022-4003

A denial-of-service vulnerability could allow an authenticated user to trigger an internal service restart via a specially crafted API request...

6.5CVSS5.8AI score0.00396EPSS
Exploits0References1
CNNVD
CNNVDadded 2024/07/31 12:0 a.m.3 views

Motorola Q14 安全漏洞

The Motorola Q14 is a mesh router system from Motorola USA. A security vulnerability exists in Motorola Q14 versions prior to v1.5.0.16, which stems from a denial of service vulnerability that could allow an authenticated user to trigger an internal service restart via a specially crafted API...

6.5CVSS6.4AI score0.00396EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2024/04/06 12:0 a.m.4 views

PT-2024-21971 · Ladder · Ladder

Name of the Vulnerable Software and Affected Versions: Ladder versions 0.0.1 through 0.0.21 Description: The issue allows a remote attacker to obtain sensitive information via a crafted request to the API. Recommendations: For versions 0.0.1 through 0.0.21, update to a version that contains a fix...

7.5CVSS6.7AI score0.02718EPSS
Exploits3References6
Rows per page
Query Builder