Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

CNNVD
CNNVDadded 2026/05/15 12:0 a.m.6 views

APM – Agent Package Manager 后置链接漏洞

APM – Agent Package Manager is an open-source AI-based dependency management tool developed by Microsoft. In versions 0.5.4 to 0.12.4 of APM, there was a post-link vulnerability. This vulnerability stemmed from calls to functions like Path.glob and Path.rglob, which followed symbolic links. As a...

7.4CVSS5.8AI score0.00069EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/07/29 3:0 p.m.14 views

CVE-2024-41799 tgstation-server's DreamMaker environment files outside the deployment directory can be compiled and ran by insufficiently permissioned users

tgstation-server is a production scale tool for BYOND server management. Prior to 6.8.0, low permission users using the "Set .dme Path" privilege could potentially set malicious .dme files existing on the host machine to be compiled and executed. These .dme files could be uploaded via...

8.4CVSS0.07024EPSS
Exploits0References3
CNNVD
CNNVDadded 2024/07/09 12:0 a.m.1 views

Ping Identity PingFederate Security Vulnerability

Ping Identity PingFederate is a flagship software-based federation server from US-based Ping Identity, Inc. for identity management. Ping Identity A security vulnerability exists in PingFederate versions prior to 12.0.1, which stems from an unauthorized user being able to access the deployment...

5.3CVSS6.6AI score0.00489EPSS
Exploits0References2
OSV
OSVadded 2021/03/01 4:15 p.m.10 views

CVE-2020-9479

When loading a UDF, a specially crafted zip file could allow files to be placed outside of the UDF deployment directory. This issue affected Apache AsterixDB unreleased builds between commits 580b81aa5e8888b8e1b0620521a1c9680e54df73 and 28c0ee84f1387ab5d0659e9e822f4e3923ddc22d. Note: this CVE may...

5.5CVSS6.7AI score
Exploits0References2
CNNVD
CNNVDadded 2021/03/01 12:0 a.m.2 views

Apache AsterixDB 路径遍历漏洞

Apache AsterixDB is Apache open source a database management software . Provides a scalable open source big data management system A security vulnerability exists in Apache AsterixDB that stems from a specially crafted zip file that can place files outside of the UDF deployment directory when...

5.5CVSS5.7AI score0.08536EPSS
Exploits0References2
RedHat Linux
RedHat Linuxadded 2008/09/22 1:2 p.m.7 views

Low: Red Hat Security Advisory: JBoss Enterprise Application Platform 4.3.0CP02 security update

Updated JBoss Enterprise Application Platform JBEAP 4.3 packages that fix various security issues are now available for Red Hat Enterprise Linux 4 as JBEAP 4.3.0.CP02. This update has been rated as having low security impact by the Red Hat Security Response Team. JBoss Enterprise Application...

6.4CVSS6.2AI score0.18121EPSS
Exploits8References5
Rows per page
Query Builder