Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Positive Technologies
Positive Technologiesadded 2026/03/10 12:0 a.m.3 views

PT-2026-24611

Apache Maven will follow repositories that are defined in a dependency’s Project Object Model pom which may be surprising to some users, resulting in potential risk if a malicious actor takes over that repository or is able to insert themselves into a position to pretend to be that repository...

9.1CVSS5.7AI score0.46101EPSS
Exploits2References45
SUSE CVE
SUSE CVEadded 2024/06/04 1:0 p.m.2 views

SUSE CVE-2021-26291

Apache Maven will follow repositories that are defined in a dependency's Project Object Model pom which may be surprising to some users, resulting in potential risk if a malicious actor takes over that repository or is able to insert themselves into a position to pretend to be that repository...

7.4CVSS7.2AI score0.46101EPSS
Exploits2References7
OSV
OSVadded 2022/02/03 8:1 p.m.2 views

CLSA-2022-1643918500 Fix of CVE: CVE-2022-23305

CVE-2022-23305: disable JDBCAppender by default. Add optional parameter for enabling it...

9.8CVSS6.9AI score0.09452EPSS
Exploits1References1
MSRC
MSRCadded 2021/08/10 7:0 a.m.10 views

Point and Print の既定動作の変更

本記事は「Point and Print Default Behavior Change」の日本語抄訳です。 "PrintNightmare" と総称されるいくつかの脆弱性を調査した...

1.6AI score
Exploits0
OSV
OSVadded 2021/07/24 11:3 a.m.2 views

OESA-2021-1276 maven security update

Maven is a software project management and comprehension tool. Based on the concept of a project object model POM, Maven can manage a project's build, reporting and documentation from a central piece of information. Security Fixes: Apache Maven will follow repositories that are defined in a...

9.1CVSS6.6AI score0.46101EPSS
Exploits2References2
Github Security Blog
Github Security Blogadded 2021/06/16 5:32 p.m.48 views

Origin Validation Error in Apache Maven

Apache Maven will follow repositories that are defined in a dependency’s Project Object Model pom which may be surprising to some users, resulting in potential risk if a malicious actor takes over that repository or is able to insert themselves into a position to pretend to be that repository...

9.1CVSS0.1AI score0.46101EPSS
Exploits2References51Affected Software2
OSV
OSVadded 2017/04/04 2:59 p.m.1 views

DEBIAN-CVE-2017-3204

The Go SSH library x/crypto/ssh by default does not verify host keys, facilitating man-in-the-middle attacks. Default behavior changed in commit e4e2799 to require explicitly registering a hostkey verification mechanism...

8.1CVSS6.9AI score0.00453EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2007/03/16 12:0 a.m.45 views

Fedora Core 5 : gnupg-1.4.7-1 (2007-316)

This updates GnuPG to version 1.4.7, changing the default behavior so that gnupg now flags message streams which contain multiple plaintexts as an error. This prevents errors which would occur when applications which called gnupg assumed that this was already the default behavior. Note that Tenab...

5CVSS5.4AI score0.25459EPSS
Exploits0References2
Rows per page
Query Builder