Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OSV
OSVadded 2025/11/12 4:29 a.m.1 views

MAL-2025-139714 Malicious code in aurora-yildun-karma-xanadu (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 002463a9ef23a3781a6864d5ad3a340c5c545b7720c5f79a22a9477e198d67d6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
RedHat Linux
RedHat Linuxadded 2024/08/07 1:23 p.m.3 views

openstack-nova: Regression VMDK/qcow arbitrary file access

An arbitrary file access flaw was found in Nova. By supplying a RAW format image, a specially crafted QCOW2 image with a backing file path, or a VMDK flat image with a descriptor file path, an authenticated user may convince systems to return a copy of the referenced file’s contents from the...

6.5CVSS5.8AI score0.00835EPSS
Exploits1References5
Prion
Prionadded 2023/07/31 5:15 p.m.17 views

Design/Logic Flaw

A flaw was found in the USB Host Controller Driver framework in the Linux kernel. The usbgivebackurb function has a logic loophole in its implementation. Due to the inappropriate judgment condition of the goto statement, the function cannot return under the input of a specific malformed descripto...

2.1CVSS4.7AI score0.00018EPSS
Exploits1References3Affected Software1
CNNVD
CNNVDadded 2021/03/17 12:0 a.m.4 views

Tor Project Inc Tor 资源管理错误漏洞

Tor Project Inc Tor is an open source application from Tor Project Inc. It provides a browser with hidden functionality. A security vulnerability exists in Tor, which can be exploited by an attacker to trigger a denial of service via a reload of Tor's old cache descriptor file...

7.5CVSS7.8AI score0.01243EPSS
Exploits0References9
OSV
OSVadded 2020/03/24 7:15 p.m.2 views

DEBIAN-CVE-2019-20632

An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains an invalid pointer dereference in gfodfdeletedescriptor in odf/descprivate.c that can cause a denial of service via a crafted MP4 file...

5.5CVSS6.6AI score0.00324EPSS
Exploits1References1
CNVD
CNVDadded 2019/01/11 12:0 a.m.1 views

CloudBees Jenkins and LTS Information Disclosure Vulnerability

CloudBees Jenkins formerly known as Hudson Labs is a Java-based continuous integration tool from CloudBees, Inc. It is mainly used to monitor continuous software releases/testing projects and a number of timed tasks.LTS Long-Term Support is a long-supported version of CloudBees Jenkins a long-ter...

7.8CVSS6.8AI score0.00126EPSS
Exploits0References1
CVE
CVEadded 2006/01/25 11:0 p.m.46 views

CVE-2006-0425

BEA WebLogic Portal 8.1 through SP4 is affected. The CVE describes a vulnerability that allows remote attackers to obtain the source for a deployment descriptor file. The underlying root cause and attack vectors are not specified in the provided documents. Public references consistently name BEA ...

5CVSS6.6AI score0.00525EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder