CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2026/02/01 2:38 p.m.•11 views

CVE-2020-37047

The CVE-2020-37047 case concerns Deep Instinct Windows Agent 1.2.29.0, where the DeepMgmtService has an unquoted service path at C:\Program Files\HP Sure Sense\DeepMgmtService.exe. The underlying issue is a local privilege escalation vulnerability that can allow a local user to execute code with ...

EUVD•added 2026/02/01 2:38 p.m.•2 views

EUVD-2020-30971

CNNVD•added 2026/02/01 12:0 a.m.•4 views

Deep Instinct Windows Agent 代码问题漏洞

Deep Instinct Windows Agent is a terminal protection client software developed by Deep Instinct, Inc. In the version 1.2.29.0 of Deep Instinct Windows Agent, there is a code vulnerability. This vulnerability stems from the lack of quotation marks around the DeepMgmtService service path, which may...

Positive Technologies•added 2026/02/01 12:0 a.m.•2 views

PT-2026-5577

Deep Instinct Windows Agent 1.2.29.0 contains an unquoted service path vulnerability in the DeepMgmtService that allows local users to potentially execute code with elevated privileges. Attackers can exploit the unquoted path in C:Program FilesHP Sure SenseDeepMgmtService.exe to inject malicious...

Schneier on Security•added 2026/01/30 10:5 p.m.•3 views

Friday Squid Blogging: New Squid Species Discovered

A new species of squid. pretends to be a plant: Scientists have filmed a never-before-seen species of deep-sea squid burying itself upside down in the seafloor--a behavior never documented in cephalopods. They captured the bizarre scene while studying the depths of the Clarion-Clipperton Zone CCZ...

5.9AI score

Exploits0

Snyk•added 2026/01/28 8:47 p.m.•3 views

Prototype Pollution

Overview nocodb is a NocoDB Affected versions of this package are vulnerable to Prototype Pollution via the deepMerge function in utils/dataUtils.ts file. An attacker can cause all database write operations to fail application-wide until the server is restarted by sending crafted requests to this...

6.9CVSS6.5AI score0.00223EPSS

Exploits1References2

OSSF Malicious Packages•added 2026/01/28 7:48 p.m.•6 views

Malicious code in morty-package (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 d87e4d2c5f3096d67a98e166e70ed6d4288c7d7554852e8d14bb60213f9a574b Package presents an extremely deep obfuscation of a code that is imported during installation. The exact behavior is unknown, but it includes loading encrypted...

6AI score

Exploits0References1

OSSF Malicious Packages•added 2026/01/28 5:56 p.m.•6 views

Malicious code in pypi-package-explore (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 54257ec88b5f7a5bd69177f84a4c396ab208e727ba1c7b079056f1fab2705c37 Package presents an extremely deep obfuscation of a code that is imported during installation. The exact behavior is unknown, but it includes loading encrypted...

6AI score

Exploits0References1

Packet Storm News•added 2026/01/28 12:0 a.m.•3 views

Helper-Assisted Coding for Gaussian Wiretap Channels: Deep Learning Meets PhySec

Consider the Gaussian wiretap channel, where a transmitter wishes to send a confidential message to a legitimate receiver in the presence of an eavesdropper. It is well known that if the eavesdropper experiences less channel noise than the legitimate receiver, then it is impossible for the...

5.9AI score

Exploits0

RedhatCVE•added 2026/01/27 1:43 p.m.•2 views

CVE-2025-67221

The orjson.dumps function in orjson thru 3.11.4 does not limit recursion for deeply nested JSON documents...

7.5CVSS5.9AI score0.00029EPSS

Exploits1References5

CNNVD•added 2026/01/27 12:0 a.m.•2 views

NVIDIA RunX security vulnerabilities

NVIDIA runx is a deep learning experiment management tool developed by NVIDIA Corporation. NVIDIA runx contains a security vulnerability, which stems from code injection. This vulnerability may lead to code execution, denial of service, privilege escalation, information leakage, and data corrupti...

7.8CVSS5.9AI score0.00015EPSS

OSV•added 2026/01/26 2:47 p.m.•4 views

BIT-NODE-MIN-2025-59466

We have identified a bug in Node.js error handling where "Maximum call stack size exceeded" errors become uncatchable when asynchooks.createHook is enabled. Instead of reaching process.on'uncaughtException', the process terminates, making the crash unrecoverable. Applications that rely on...

7.5CVSS5.9AI score0.0003EPSS

Exploits0References2

Vulnrichment•added 2026/01/25 2:0 p.m.•1 views

CVE-2020-36934 Deep Instinct Windows Agent 1.2.24.0 - 'DeepNetworkService' Unquoted Service Path

Deep Instinct Windows Agent 1.2.24.0 contains an unquoted service path vulnerability in the DeepNetworkService that allows local users to potentially execute code with elevated privileges. Attackers can exploit the unquoted path in C:\Program Files\HP Sure Sense\DeepNetworkService.exe to inject...

8.5CVSS6AI score0.00009EPSS

Cvelist•added 2026/01/25 2:0 p.m.•36 views

CVE-2020-36934 Deep Instinct Windows Agent 1.2.24.0 - 'DeepNetworkService' Unquoted Service Path

8.5CVSS0.00009EPSS

CVE•added 2026/01/25 2:0 p.m.•5 views

CVE-2020-36934

The CVE-2020-36934 entry concerns Deep Instinct Windows Agent 1.2.24.0, exposing an unquoted service path in the DeepNetworkService. The vulnerability allows a local user to inject code that could run with LocalSystem privileges during service startup via the path C:\Program Files\HP Sure Sense\D...

8.5CVSS5.7AI score0.00009EPSS

CNNVD•added 2026/01/25 12:0 a.m.•1 views

Deep Instinct Windows Agent code-related vulnerabilities

Deep Instinct Windows Agent is a terminal protection client software developed by Deep Instinct, Inc. In the version 1.2.24.0 of Deep Instinct Windows Agent, there is a code vulnerability. This vulnerability stems from the lack of quotation marks around service paths, which may allow for the...

8.5CVSS6.1AI score0.00009EPSS