Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3177 matches found

Tenable Nessus
Tenable Nessusadded 2026/03/16 12:0 a.m.2 views

EulerOS 2.0 SP11 : python-urllib3 (EulerOS-SA-2026-1591)

According to the versions of the python-urllib3 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : urllib3 is a user-friendly HTTP client library for Python. Starting in version 1.24 and prior to 2.6.0, the number of links in the...

8.9CVSS6.5AI score0.00025EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/03/16 12:0 a.m.2 views

EulerOS Virtualization 2.12.1 : python-urllib3 (EulerOS-SA-2026-1459)

According to the versions of the python-urllib3 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : urllib3 is a user-friendly HTTP client library for Python. Starting in version 1.24 and prior to 2.6.0, the number of links ...

8.9CVSS6.7AI score0.00079EPSS
Exploits1References5
Tenable Nessus
Tenable Nessusadded 2026/03/16 12:0 a.m.6 views

EulerOS 2.0 SP12 : python-urllib3 (EulerOS-SA-2026-1378)

According to the versions of the python-urllib3 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : urllib3 is a user-friendly HTTP client library for Python. Starting in version 1.24 and prior to 2.6.0, the number of links in the...

8.9CVSS6.5AI score0.00025EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2026/03/16 12:0 a.m.2 views

EulerOS 2.0 SP11 : python-urllib3 (EulerOS-SA-2026-1619)

According to the versions of the python-urllib3 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : urllib3 is a user-friendly HTTP client library for Python. Starting in version 1.24 and prior to 2.6.0, the number of links in the...

8.9CVSS6.5AI score0.00025EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/03/15 12:0 a.m.3 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: python-urllib3 (UTSA-2026-006146)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006146 advisory. urllib3 is an HTTP client library for Python. urllib3's streaming API is designed for the efficient handling of large HTTP responses by reading the content in chunks...

8.9CVSS5.8AI score0.00014EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2026/03/15 12:0 a.m.2 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: python-urllib3 (UTSA-2026-006157)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006157 advisory. urllib3 is a user-friendly HTTP client library for Python. Starting in version 1.24 and prior to 2.6.0, the number of links in the decompression chain was unbounded...

8.9CVSS6.7AI score0.00025EPSS
Exploits0References4
SUSE CVE
SUSE CVEadded 2026/03/14 12:25 a.m.0 views

SUSE CVE-2026-4111

A flaw was identified in the RAR5 archive decompression logic of the libarchive library, specifically within the archivereaddata processing path. When a specially crafted RAR5 archive is processed, the decompression routine may enter a state where internal logic prevents forward progress. This...

7.5CVSS5.8AI score0.00037EPSS
Exploits0References8
EUVD
EUVDadded 2026/03/13 9:31 p.m.4 views

EUVD-2026-12031

A flaw was identified in the RAR5 archive decompression logic of the libarchive library, specifically within the archivereaddata processing path. When a specially crafted RAR5 archive is processed, the decompression routine may enter a state where internal logic prevents forward progress. This...

7.5CVSS5.8AI score0.00037EPSS
Exploits0References4
EUVD
EUVDadded 2026/03/13 8:56 p.m.2 views

EUVD-2026-12139

file-type: ZIP Decompression Bomb DoS via ContentTypes.xml entry...

5.3CVSS5.8AI score0.00079EPSS
Exploits1References4
Cvelist
Cvelistadded 2026/03/13 8:54 p.m.32 views

CVE-2026-32630 file-type affected by ZIP Decompression Bomb DoS via [Content_Types].xml entry

file-type detects the file type of a file, stream, or data. From 20.0.0 to 21.3.1, a crafted ZIP file can trigger excessive memory growth during type detection in file-type when using fileTypeFromBuffer, fileTypeFromBlob, or fileTypeFromFile. The ZIP inflate output limit is enforced for...

5.3CVSS0.00079EPSS
Exploits1References2
CVE
CVEadded 2026/03/13 8:54 p.m.9 views

CVE-2026-32630

CVE-2026-32630 (file-type) affects the file-type library. A crafted ZIP can cause excessive memory growth during type detection in versions 20.0.0–21.3.1 for APIs fileTypeFromBuffer(), fileTypeFromBlob(), and fileTypeFromFile(). The ZIP inflate limit was enforced for stream-based detection but no...

5.3CVSS5.8AI score0.00079EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/03/13 8:54 p.m.2 views

CVE-2026-32630 file-type affected by ZIP Decompression Bomb DoS via [Content_Types].xml entry

file-type detects the file type of a file, stream, or data. From 20.0.0 to 21.3.1, a crafted ZIP file can trigger excessive memory growth during type detection in file-type when using fileTypeFromBuffer, fileTypeFromBlob, or fileTypeFromFile. The ZIP inflate output limit is enforced for...

5.3CVSS5.8AI score0.00079EPSS
Exploits1References2
OSV
OSVadded 2026/03/13 8:54 p.m.3 views

CVE-2026-32630 file-type affected by ZIP Decompression Bomb DoS via [Content_Types].xml entry

file-type detects the file type of a file, stream, or data. From 20.0.0 to 21.3.1, a crafted ZIP file can trigger excessive memory growth during type detection in file-type when using fileTypeFromBuffer, fileTypeFromBlob, or fileTypeFromFile. The ZIP inflate output limit is enforced for...

5.3CVSS5.8AI score0.00079EPSS
Exploits1References4
Github Security Blog
Github Security Blogadded 2026/03/13 8:41 p.m.7 views

Undici has Unbounded Memory Consumption in WebSocket permessage-deflate Decompression

Description The undici WebSocket client is vulnerable to a denial-of-service attack via unbounded memory consumption during permessage-deflate decompression. When a WebSocket connection negotiates the permessage-deflate extension, the client decompresses incoming compressed frames without enforci...

7.5CVSS5.8AI score0.00021EPSS
Exploits0References7Affected Software1
OSV
OSVadded 2026/03/13 8:41 p.m.1 views

GHSA-VRM6-8VPV-QV8Q Undici has Unbounded Memory Consumption in WebSocket permessage-deflate Decompression

Description The undici WebSocket client is vulnerable to a denial-of-service attack via unbounded memory consumption during permessage-deflate decompression. When a WebSocket connection negotiates the permessage-deflate extension, the client decompresses incoming compressed frames without enforci...

7.5CVSS5.8AI score0.00021EPSS
Exploits0References7
EUVD
EUVDadded 2026/03/13 8:41 p.m.0 views

EUVD-2026-11699

Undici has Unbounded Memory Consumption in WebSocket permessage-deflate Decompression...

7.5CVSS5.8AI score0.00021EPSS
Exploits0References6
OSV
OSVadded 2026/03/13 7:55 p.m.2 views

CVE-2026-4111

A flaw was identified in the RAR5 archive decompression logic of the libarchive library, specifically within the archivereaddata processing path. When a specially crafted RAR5 archive is processed, the decompression routine may enter a state where internal logic prevents forward progress. This...

7.5CVSS5.8AI score0.00037EPSS
Exploits0References3
OSV
OSVadded 2026/03/13 7:55 p.m.2 views

UBUNTU-CVE-2026-4111

A flaw was identified in the RAR5 archive decompression logic of the libarchive library, specifically within the archivereaddata processing path. When a specially crafted RAR5 archive is processed, the decompression routine may enter a state where internal logic prevents forward progress. This...

7.5CVSS5.8AI score0.00037EPSS
Exploits0References6
NVD
NVDadded 2026/03/13 7:54 p.m.3 views

CVE-2026-31897

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, there is an out-of-bounds read in freerdpbitmapdecompressplanar when SrcSize is 0. The function dereferences srcp which points to pSrcData without first verifying that SrcSize = 1. When SrcSize is 0 and pSrcData is...

9.1CVSS0.00058EPSS
Exploits1References2
OSV
OSVadded 2026/03/13 7:54 p.m.2 views

UBUNTU-CVE-2026-31897

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, there is an out-of-bounds read in freerdpbitmapdecompressplanar when SrcSize is 0. The function dereferences srcp which points to pSrcData without first verifying that SrcSize = 1. When SrcSize is 0 and pSrcData is...

9.1CVSS5.8AI score0.00058EPSS
Exploits1References4
Rows per page
Query Builder