Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 9:33 a.m.3 views

CVE-2024-39223

An authentication bypass in the SSH service of gost v2.11.5 allows attackers to intercept communications via setting the HostKeyCallback function to ssh.InsecureIgnoreHostKey...

9.8CVSS7.1AI score0.00063EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-18755

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00043EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2025/02/20 12:25 a.m.6 views

CVE-2022-41545

The administrative web interface of a Netgear C7800 Router running firmware version 6.01.07 and possibly others authenticates users via basic authentication, with an HTTP header containing a base64 value of the plaintext username and password. Because the web server also does not utilize transpor...

6.4CVSS6.8AI score0.00034EPSS
Exploits2References1
Vulnrichment
Vulnrichmentadded 2025/02/18 12:0 a.m.5 views

CVE-2022-41545

The administrative web interface of a Netgear C7800 Router running firmware version 6.01.07 and possibly others authenticates users via basic authentication, with an HTTP header containing a base64 value of the plaintext username and password. Because the web server also does not utilize transpor...

9.4AI score0.00034EPSS
Exploits2References3
CVE
CVEadded 2024/05/09 7:44 p.m.90 views

CVE-2022-32510

An issue in Nuki Bridge where the HTTP API admin interface was exposed over an unencrypted channel, allowing an attacker who can access the network to eavesdrop a token and impersonate a legitimate user to access the full API. Affected: Nuki Bridge v1 before 1.22.0 and v2 before 2.13.2. Root caus...

7.1CVSS6.9AI score0.00051EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2023/03/16 12:0 a.m.7 views

CVE-2023-28113 russh may use insecure Diffie-Hellman keys

russh is a Rust SSH client and server library. Starting in version 0.34.0 and prior to versions 0.36.2 and 0.37.1, Diffie-Hellman key validation is insufficient, which can lead to insecure shared secrets and therefore breaks confidentiality. Connections between a russh client and server or those ...

5.9CVSS5.5AI score0.00187EPSS
Exploits1References6
Malwarebytes
Malwarebytesadded 2018/12/18 4:0 p.m.91 views

All the reasons why cybercriminals want to hack your phone

When people think of hacking, most imagine desktop computers, laptops, or perhaps even security cameras. However, in recent years, cybercriminals have expanded their repertoire to include smartphones, too. Here are 10 reasons why they may be looking to hack your phone. 1. To infect it with malwar...

6.7AI score
Exploits0
CNVD
CNVDadded 2016/04/27 12:0 a.m.1 views

Cybozu kintone for Android Validated SSL Server Certificate Vulnerability

Cybozu kintone for Android is an Android-based business cloud application for business communication and collaboration by Cybozu. A security vulnerability exists in Cybozu kintone for Android versions 1.0.0 to 1.0.5, which can be exploited by attackers to conduct man-in-the-middle attacks and...

5.9CVSS6.8AI score0.00565EPSS
Exploits0References1
Core Security
Core Securityadded 1976/01/01 12:0 a.m.2 views

Weak authentication in ATT VNC

Advisory ID Internal CORE-21011501 Advisory ID: CORE-2001011501 Bugtraq ID: 2275 CVE Name: None currently assigned. Title: Weak authentication in ATT VNC Class: Design error Remotely Exploitable: yes Locally Exploitable: no Release Mode: USER RELEASE Vulnerability Description: As stated in the VN...

6.7AI score
Exploits0
Rows per page
Query Builder