Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

36 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-51747

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.0044EPSS
Exploits0References3
SUSE CVE
SUSE CVEadded 2024/05/14 3:46 a.m.1 views

SUSE CVE-2021-46019

An untrusted pointer dereference in recdbdestroy at rec-db.c of GNU Recutils v1.8.90 can lead to a segmentation fault or application crash...

5.5CVSS6.8AI score0.00236EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2023/07/31 12:0 a.m.9 views

EulerOS Virtualization 3.0.6.0 : colord (EulerOS-SA-2023-2498)

According to the versions of the colord packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - There are two Information Disclosure vulnerabilities in colord, and they lie in colord/src/cd-device-db.c and...

7.5CVSS7.2AI score0.00118EPSS
Exploits1References2
Veracode
Veracodeadded 2023/03/12 11:11 p.m.15 views

SQL Injection

nodau is vulnerable to SQL Injection. The vulnerability exists in the db.c, which allows an attacker to inject and execute malicious argument value or name...

9.8CVSS9.4AI score0.0044EPSS
Exploits0References4Affected Software1
Tenable Nessus
Tenable Nessusadded 2023/03/08 12:0 a.m.10 views

EulerOS 2.0 SP5 : colord (EulerOS-SA-2023-1492)

According to the versions of the colord packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - There are two Information Disclosure vulnerabilities in colord, and they lie in colord/src/cd-device-db.c and colord/src/cd-profile-db.c...

7.5CVSS7.3AI score0.00118EPSS
Exploits1References2
OpenVAS
OpenVASadded 2023/01/03 12:0 a.m.21 views

ISC BIND DoS Vulnerability (CVE-2016-1286) - Windows

ISC BIND is prone to a denial of service DoS vulnerability. Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

8.6CVSS8.4AI score0.53591EPSS
Exploits0References1
NVD
NVDadded 2022/12/10 10:15 p.m.12 views

CVE-2022-4399

A vulnerability was found in TicklishHoneyBee nodau. It has been rated as critical. Affected by this issue is some unknown functionality of the file src/db.c. The manipulation of the argument value/name leads to sql injection. The name of the patch is 7a7d737a3929f335b9717ddbd31db91151b69ad2. It ...

9.8CVSS0.0044EPSS
Exploits0References3
OSV
OSVadded 2022/12/10 10:15 p.m.12 views

CVE-2022-4399

A vulnerability was found in TicklishHoneyBee nodau. It has been rated as critical. Affected by this issue is some unknown functionality of the file src/db.c. The manipulation of the argument value/name leads to sql injection. The name of the patch is 7a7d737a3929f335b9717ddbd31db91151b69ad2. It ...

9.8CVSS9.9AI score
Exploits0References3
UbuntuCve
UbuntuCveadded 2022/12/10 10:15 p.m.25 views

CVE-2022-4399

A vulnerability was found in TicklishHoneyBee nodau. It has been rated as critical. Affected by this issue is some unknown functionality of the file src/db.c. The manipulation of the argument value/name leads to sql injection. The name of the patch is 7a7d737a3929f335b9717ddbd31db91151b69ad2. It ...

9.8CVSS6.6AI score0.0044EPSS
Exploits0References2
CVE
CVEadded 2022/12/10 12:0 a.m.57 views

CVE-2022-4399

CVE-2022-4399 affects TicklishHoneyBee nodau; the vulnerability resides in src/db.c where manipulation of the argument value/name enables SQL injection. The issue is described as critical with potential impact on confidentiality, integrity, and availability. A patch is identified by the patch nam...

9.8CVSS7.8AI score0.0044EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVEadded 2022/12/10 12:0 a.m.23 views

CVE-2022-4399

A vulnerability was found in TicklishHoneyBee nodau. It has been rated as critical. Affected by this issue is some unknown functionality of the file src/db.c. The manipulation of the argument value/name leads to sql injection. The name of the patch is 7a7d737a3929f335b9717ddbd31db91151b69ad2. It ...

9.8CVSS9.8AI score0.0044EPSS
Exploits0
Cvelist
Cvelistadded 2022/12/10 12:0 a.m.12 views

CVE-2022-4399 TicklishHoneyBee nodau db.c sql injection

A vulnerability was found in TicklishHoneyBee nodau. It has been rated as critical. Affected by this issue is some unknown functionality of the file src/db.c. The manipulation of the argument value/name leads to sql injection. The name of the patch is 7a7d737a3929f335b9717ddbd31db91151b69ad2. It ...

5.5CVSS10AI score0.0044EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2022/10/13 2:59 p.m.20 views

CVE-2021-42523

There are two Information Disclosure vulnerabilities in colord, and they lie in colord/src/cd-device-db.c and colord/src/cd-profile-db.c separately. They exist because the 'errmsg' of 'sqlite3exec' is not releasing after use, while libxml2 emphasizes that the caller needs to release it...

7.5CVSS1.2AI score0.00118EPSS
Exploits1References3
Mageia
Mageiaadded 2022/10/08 8:22 p.m.23 views

Updated colord packages fix security vulnerability

There are two Information Disclosure vulnerabilities in colord, and they lie in colord/src/cd-device-db.c and colord/src/cd-profile-db.c separately. They exist because the 'errmsg' of 'sqlite3exec' is not releasing after use, while libxml2 emphasizes that the caller needs to release it...

7.5CVSS1AI score0.00118EPSS
Exploits1References2
Cvelist
Cvelistadded 2022/08/25 5:27 p.m.7 views

CVE-2021-42523

There are two Information Disclosure vulnerabilities in colord, and they lie in colord/src/cd-device-db.c and colord/src/cd-profile-db.c separately. They exist because the 'errmsg' of 'sqlite3exec' is not releasing after use, while libxml2 emphasizes that the caller needs to release it...

7.6AI score0.00118EPSS
Exploits1References1
Veracode
Veracodeadded 2022/04/21 7:40 p.m.19 views

Denial Of Service (DoS)

recutils is vulnerable to denial of service. The vulnerability exists due to an untrusted pointer dereference in recdbdestroy at rec-db.c which can lead to a segmentation fault or application crash...

5.5CVSS3.3AI score0.00236EPSS
Exploits1References7Affected Software1
CNVD
CNVDadded 2022/01/17 12:0 a.m.16 views

GNU Recutils code issue vulnerability

GNU Recutils is a GNU community tool and library for accessing recfiles plain text databases. a security vulnerability exists in GNU Recutils, which stems from an untrusted pointer dereference in recdbdestroy in rec-db.c of GNU Recutils v1.8.90, which an attacker could exploit the vulnerability t...

5.5CVSS3.4AI score0.00236EPSS
Exploits1References1
OSV
OSVadded 2022/01/14 8:15 p.m.13 views

CVE-2021-46019

An untrusted pointer dereference in recdbdestroy at rec-db.c of GNU Recutils v1.8.90 can lead to a segmentation fault or application crash...

5.5CVSS6.6AI score
Exploits0References4
Prion
Prionadded 2022/01/14 8:15 p.m.18 views

Null pointer dereference

An untrusted pointer dereference in recdbdestroy at rec-db.c of GNU Recutils v1.8.90 can lead to a segmentation fault or application crash...

4.3CVSS5.3AI score0.00236EPSS
Exploits1References3Affected Software2
Debian CVE
Debian CVEadded 2022/01/14 12:0 a.m.23 views

CVE-2021-46019

An untrusted pointer dereference in recdbdestroy at rec-db.c of GNU Recutils v1.8.90 can lead to a segmentation fault or application crash...

5.5CVSS5.7AI score0.00236EPSS
Exploits1
Rows per page
Query Builder