Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
šŸ”„ Daily Hot!
šŸ’ŖšŸ½ CPE Enhanced Advisories
šŸ•¶ Shadow Exploits
šŸ•µšŸ¼ Vulners CPE
šŸ” Security news
šŸ’» Exploit updates
šŸ“‘ Blogs review
šŸ§ Linux vulnerabilities
šŸž Bugbounty
šŸ¤– AI High Score
šŸ“° CVE Feed
show all

8 matches found

CVE
CVEā€¢added 2025/10/16 4:21 p.m.ā€¢6 views

CVE-2025-25298

CVE-2025-25298 concerns Strapiā€™s @strapi/core up to v5.10.3, where bcryptjs-based password hashing does not enforce a maximum password length. Passwords longer than 72 bytes are silently truncated by bcryptjs, allowing a user to register with an overlong password and authenticate using only the f...

6.3CVSS6.6AI score0.00046EPSS
Exploits1References2Affected Software1
EUVD
EUVDā€¢added 2025/10/07 12:30 a.m.ā€¢2 views

EUVD-2012-4612

Malware in sbrugna...

7.6CVSS6.4AI score0.00354EPSS
Exploits0References2
EUVD
EUVDā€¢added 2025/10/03 8:7 p.m.ā€¢4 views

EUVD-2024-54368

Malicious code in bioql PyPI...

5.5CVSS6.3AI score0.00102EPSS
Exploits0References6
FreeBSD
FreeBSDā€¢added 2025/07/16 12:0 a.m.ā€¢2 views

p5-Authen-SASL -- Insecure source of randomness

p5-Authen-SASL project reports: Authen::SASL::Perl::DIGESTMD5 versions 2.04 through 2.1800 for Perl generates the cnonce insecurely. The cnonce client nonce is generated from an MD5 hash of the PID, the epoch time and the built-in rand function. The PID will come from a small set of numbers, and...

6.5CVSS7.3AI score0.00414EPSS
Exploits0References1
OSV
OSVā€¢added 2025/04/05 4:15 p.m.ā€¢2 views

UBUNTU-CVE-2024-58036

Net::Dropbox::API 1.9 and earlier for Perl uses the rand function as the default source of entropy, which is not cryptographically secure, for cryptographic functions. Specifically Net::Dropbox::API uses the Data::Random library which specifically states that it is "Useful mostly for test...

5.5CVSS5.8AI score0.00102EPSS
Exploits0References8
CNNVD
CNNVDā€¢added 2024/02/23 12:0 a.m.ā€¢3 views

Hitron CODA-4582 and CODA-4589 Security Vulnerabilities

The Hitron Technologies CODA-4582 and Hitron Technologies CODA-4589 are demodulator routers from Hitron Technologies, a Chinese company. A security vulnerability exists in the Hitron CODA-4582 and CODA-4589 that stems from the devices having default PSKs that are generated by concatenating a...

9.8CVSS6.8AI score0.0017EPSS
Exploits0References8
RedHat Linux
RedHat Linuxā€¢added 2023/07/12 8:32 a.m.ā€¢2 views

c-ares: AutoTools does not set CARES_RANDOM_FILE during cross compilation

A flaw was found in c-ares. This issue occurs when cross-compiling c-ares and using the autotools build system, CARESRANDOMFILE will not be set, as seen when cross-compiling aarch64 android. As a result, it will downgrade to rand, which could allow an attacker to utilize the lack of entropy by no...

3.7CVSS7.2AI score0.00083EPSS
Exploits0References5
OSV
OSVā€¢added 2017/08/09 4:29 p.m.ā€¢9 views

CVE-2015-3405

ntp-keygen in ntp 4.2.8px before 4.2.8p2-RC2 and 4.3.x before 4.3.12 does not generate MD5 keys with sufficient entropy on big endian machines when the lowest order byte of the temp variable is between 0x20 and 0x7f and not , which might allow remote attackers to obtain the value of generated MD5...

7.5CVSS7.2AI score
Exploits0References18
Rows per page
Query Builder