Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

OSV
OSVadded 2023/04/12 10:56 a.m.6 views

OPENSUSE-SU-2023:0090-1 Security update for nextcloud-desktop

This update for nextcloud-desktop fixes the following issues: nextcloud-desktop was updated to 3.8.0: - Resize WebView widget once the loginpage rendered - Feature/secure file drop - Check German translation for wrong wording - L10n: Correct word - Fix displaying of file details button for local...

6.1CVSS6.1AI score0.01669EPSS
Exploits4References12
CVE
CVEadded 2023/03/10 12:0 a.m.60 views

CVE-2023-23911

The CVE-2023-23911 issue is an improper access control vulnerability in Rocket.Chat prior to v6 that could allow an attacker to break the E2E chat-room encryption by changing the group key. Root cause: a user can modify the group key via server-side operations, enabling access to encrypted messag...

7.5CVSS7.4AI score0.00151EPSS
Exploits0References1Affected Software1
Hacker One
Hacker Oneadded 2022/11/01 4:55 p.m.29 views

Rocket.Chat: Low authorization level at server side API operation e2e.updateGroupKey, let an attacker break the E2E architecture.

The E2E encryption feature in open.rocket.chat server had a vulnerability that allowed an attacker to break the encryption of a secure chat room. The vulnerability was caused by a low authorization level at the server-side API operation e2e.updateGroupKey, which allowed an attacker to insert or...

7.5CVSS7.3AI score0.00151EPSS
Exploits0
Rows per page
Query Builder