Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

47 matches found

RedHat Linux
RedHat Linuxadded 2026/06/15 6:47 a.m.11 views

Important: Red Hat Security Advisory: webkit2gtk3 security update

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

8.8CVSS6.6AI score0.0059EPSS
Exploits0References17
Tenable Nessus
Tenable Nessusadded 2026/06/15 12:0 a.m.5 views

RHEL 8 : webkit2gtk3 (RHSA-2026:25918)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:25918 advisory. WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fixes: webkitgtk: Processing maliciously...

8.8CVSS5.6AI score0.0059EPSS
Exploits0References34
EUVD
EUVDadded 2026/06/05 12:31 a.m.6 views

EUVD-2024-55611

On affected platforms running Arista EOS with MACsec and egress ACLs configured on the same interfaces, the ACL policies may not be enforced for packets egressing on those ports. This can cause outgoing packets to incorrectly be allowed or denied...

6.9CVSS5.8AI score0.00282EPSS
Exploits0References2
CVE
CVEadded 2026/06/04 11:5 p.m.13 views

CVE-2026-11132

CVE-2026-11132 affects Google Chrome (Chromium-based) Paint: insufficient policy enforcement enables a remote attacker to bypass the same-origin policy via a crafted HTML page. Impact: cross-origin handling is bypassable in Paint prior to 149.0.7827.53. Root cause: policy enforcement weakness in ...

6.5CVSS5.8AI score0.00202EPSS
Exploits0References2Affected Software1
Microsoft CVE
Microsoft CVEadded 2026/05/22 4:43 a.m.19 views

Chromium: CVE-2026-9116 Insufficient policy enforcement in ServiceWorker

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS5.8AI score0.00218EPSS
Exploits0
Positive Technologies
Positive Technologiesadded 2026/05/22 12:0 a.m.10 views

PT-2026-42712

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description The in-memory keyring returned by the NewKeyring function silently accepted keys with the ConfirmBeforeUse constraint but failed to enforce it. This allowed keys...

9.1CVSS5.8AI score0.0036EPSS
Exploits0References290
NVD
NVDadded 2026/05/20 8:16 p.m.15 views

CVE-2026-9115

Insufficient policy enforcement in Service Worker in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: High...

4.3CVSS0.00224EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/05/11 12:0 a.m.8 views

PT-2026-39775

Name of the Vulnerable Software and Affected Versions iOS versions prior to 18.7.9 iPadOS versions prior to 18.7.9 iOS versions prior to 26.5 iPadOS versions prior to 26.5 macOS Tahoe versions prior to 26.5 tvOS versions prior to 26.5 visionOS versions prior to 26.5 watchOS versions prior to 26.5...

8.8CVSS5.8AI score0.0059EPSS
Exploits0References87
RedHat Linux
RedHat Linuxadded 2026/05/07 6:1 a.m.5 views

webkitgtk: Processing maliciously crafted web content may prevent Content Security Policy from being enforced

A flaw was found in WebKitGTK. Processing malicious web content may prevent Content Security Policy from being enforced due to improper state management...

6.5CVSS5.7AI score0.0061EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2026/04/16 12:0 a.m.2 views

Fedora 43 : cef (2026-ffdca48c25)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-ffdca48c25 advisory. Update to 146.0.7680.177 + cef-146.0.11+g8e1262b High CVE-2026-5273: Use after free in CSS High CVE-2026-5272: Heap buffer overflow in GPU High...

9.6CVSS6.2AI score0.05036EPSS
Exploits0References22
Debian CVE
Debian CVEadded 2026/04/08 9:20 p.m.1 views

CVE-2026-5899

Insufficient policy enforcement in History Navigation in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: Low...

6.1CVSS8.6AI score0.00134EPSS
Exploits0
Microsoft CVE
Microsoft CVEadded 2026/03/14 1:20 a.m.2 views

Chromium: CVE-2026-3932 Insufficient policy enforcement in PDF

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

7.5CVSS5.8AI score0.00183EPSS
Exploits0
CNNVD
CNNVDadded 2026/02/07 12:0 a.m.3 views

WeKan 安全漏洞

WeKan is an open-source dashboard application developed by WeKan. Versions of WeKan prior to 8.19 contained security vulnerabilities. These vulnerabilities stemmed from the fact that the configuration setting “allowPrivateOnly” was not fully enforced when creating a dashboard. When...

7.1CVSS5.8AI score0.0019EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2026/01/16 12:0 a.m.5 views

MiracleLinux 4 : rh-postgresql95-postgresql-9.5.7-2.AXS4 (AXSA:2017-1727:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2017-1727:01 advisory. PostgreSQL is an advanced Object-Relational database management system DBMS. The base postgresql package contains the client programs that you'll ne...

7.5CVSS7AI score0.06331EPSS
Exploits0References4
OSV
OSVadded 2026/01/10 2:17 a.m.2 views

OPENSUSE-SU-2026:20020-1 Security update for chromium

This update for chromium fixes the following issues: Changes in chromium: - Chromium 143.0.7499.192 boo1256067: CVE-2026-0628: Insufficient policy enforcement in WebView tag - Chromium 143.0.7499.169 stable released 2025-12-18 no cve listed yet...

8.8CVSS5.8AI score0.06545EPSS
Exploits2References2
OSV
OSVadded 2025/11/21 1:24 a.m.4 views

CVE-2025-64751 OpenFGA Improper Policy Enforcement

OpenFGA is a high-performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. OpenFGA v1.4.0 to v1.11.0 openfga-0.1.34 = Helm chart = openfga-0.2.48, v.1.4.0 = docker = v.1.11.0 are vulnerable to improper policy enforcement when certain Check and...

5.8CVSS6.8AI score0.00256EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2020-29654

Malware in sbrugna...

7.5CVSS7.5AI score0.01027EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2009-0009

Malware in sbrugna...

6.8CVSS6.1AI score0.01637EPSS
Exploits1References16
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2021-26231

Malware in sbrugna...

4.3CVSS4.5AI score0.00905EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2021-17454

Malware in sbrugna...

6.5CVSS8.1AI score0.16611EPSS
Exploits1References8
Rows per page
Query Builder