Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9459 matches found

RedHat Linux
RedHat Linuxadded 2023/09/04 3:52 p.m.7 views

Mozilla: Memory corruption in IPC CanvasTranslator

The Mozilla Foundation Security Advisory describes this flaw as: When receiving rendering data over IPC mStream could have been destroyed when initialized, which could have led to a use-after-free causing a potentially exploitable crash...

6.5CVSS7.2AI score0.00545EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2023/09/04 3:52 p.m.5 views

Mozilla: Memory corruption in JIT UpdateRegExpStatics

The Mozilla Foundation Security Advisory describes this flaw as: When UpdateRegExpStatics attempted to access initialStringHeap it could already have been garbage collected prior to entering the function, which could potentially have led to an exploitable crash...

6.5CVSS7.2AI score0.00554EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2023/09/01 12:0 a.m.28 views

Fedora 38 : firefox (2023-c679c55cf8)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-c679c55cf8 advisory. - New upstream version 117.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has...

8.8CVSS7.3AI score0.00756EPSS
Exploits0References14
ICS
ICSadded 2023/08/31 6:0 a.m.58 views

ARDEREG Sistemas SCADA

1. EXECUTIVE SUMMARY ​CVSS v3 9.8 ​ATTENTION: Exploitable remotely/low attack complexity ​Vendor: ARDEREG ​Equipment: Sistemas SCADA ​Vulnerability: SQL Injection 2. RISK EVALUATION ​Successful exploitation of this vulnerability could allow an attacker to manipulate SQL query logic to extract...

9.8CVSS10AI score0.00576EPSS
Exploits0References10
ICS
ICSadded 2023/08/31 6:0 a.m.45 views

Digi RealPort Protocol

1. EXECUTIVE SUMMARY ​CVSS v3 9.0 ​ATTENTION: Exploitable remotely ​Vendor: Digi International, Inc. ​Equipment: Digi RealPort Protocol ​Vulnerability: Use of Password Hash Instead of Password for Authentication 2. RISK EVALUATION ​Successful exploitation of this vulnerability could allow the...

9CVSS8.9AI score0.00546EPSS
Exploits0References8
ICS
ICSadded 2023/08/31 6:0 a.m.154 views

PTC Kepware KepServerEX (Update A)

1. EXECUTIVE SUMMARY CVSS v3 6.3 ATTENTION : Exploitable remotely/low attack complexity Vendor : PTC Equipment : Kepware KepServerEX Vulnerabilities : Uncontrolled Search Path Element, Improper Input Validation, Insufficiently Protected Credentials 2. RISK EVALUATION Successful exploitation of...

7.8CVSS7.1AI score0.00306EPSS
Exploits0References10
RedhatCVE
RedhatCVEadded 2023/08/30 10:15 a.m.62 views

CVE-2023-4577

The Mozilla Foundation Security Advisory describes this flaw as: When UpdateRegExpStatics attempted to access initialStringHeap it could already have been garbage collected prior to entering the function, which could potentially have led to an exploitable crash...

7.5CVSS7AI score0.00554EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2023/08/30 10:15 a.m.72 views

CVE-2023-4574

The Mozilla Foundation Security Advisory describes this flaw as: When creating a callback over IPC for showing the Color Picker window, multiple of the same callbacks could have been created at a time and eventually all simultaneously destroyed as soon as one of the callbacks finished. This could...

7.5CVSS7.1AI score0.00571EPSS
Exploits0References4
UbuntuCve
UbuntuCveadded 2023/08/30 12:0 a.m.32 views

CVE-2023-4574

When creating a callback over IPC for showing the Color Picker window, multiple of the same callbacks could have been created at a time and eventually all simultaneously destroyed as soon as one of the callbacks finished. This could have led to a use-after-free causing a potentially exploitable...

6.5CVSS6.7AI score0.00571EPSS
Exploits0References3
UbuntuCve
UbuntuCveadded 2023/08/30 12:0 a.m.68 views

CVE-2023-4573

When receiving rendering data over IPC mStream could have been destroyed when initialized, which could have led to a use-after-free causing a potentially exploitable crash. This vulnerability affects Firefox 117, Firefox ESR 102.15, Firefox ESR 115.2, Thunderbird 102.15, and Thunderbird 115.2...

6.5CVSS6.7AI score0.00545EPSS
Exploits0References3
UbuntuCve
UbuntuCveadded 2023/08/30 12:0 a.m.24 views

CVE-2023-4577

When UpdateRegExpStatics attempted to access initialStringHeap it could already have been garbage collected prior to entering the function, which could potentially have led to an exploitable crash. This vulnerability affects Firefox 117, Firefox ESR 115.2, and Thunderbird 115.2...

6.5CVSS6.7AI score0.00554EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2023/08/30 12:0 a.m.33 views

Ubuntu 20.04 LTS : Firefox vulnerabilities (USN-6320-1)

The remote Ubuntu 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6320-1 advisory. Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could potentially explo...

8.8CVSS7.7AI score0.00693EPSS
Exploits0References12
Tenable Nessus
Tenable Nessusadded 2023/08/29 12:0 a.m.30 views

Mozilla Firefox ESR < 115.2

The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 115.2. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2023-36 advisory. - Memory safety bugs present in Firefox 116, Firefox ESR 115.1, and Thunderbird 115.1. Some of these bugs...

8.8CVSS8.1AI score0.00756EPSS
Exploits0References15
NVD
NVDadded 2023/08/24 5:15 p.m.24 views

CVE-2022-46884

A potential use-after-free vulnerability existed in SVG Images if the Refresh Driver was destroyed at an inopportune time. This could have lead to memory corruption or a potentially exploitable crash. Note: This advisory was added on December 13th, 2022 after discovering it was inadvertently left...

8.8CVSS8.5AI score0.0041EPSS
Exploits0References2
Prion
Prionadded 2023/08/24 5:15 p.m.46 views

Design/Logic Flaw

A potential use-after-free vulnerability existed in SVG Images if the Refresh Driver was destroyed at an inopportune time. This could have lead to memory corruption or a potentially exploitable crash. Note: This advisory was added on December 13th, 2022 after discovering it was inadvertently left...

6.8CVSS8.5AI score0.0041EPSS
Exploits0References2Affected Software1
UbuntuCve
UbuntuCveadded 2023/08/24 5:15 p.m.23 views

CVE-2022-46884

A potential use-after-free vulnerability existed in SVG Images if the Refresh Driver was destroyed at an inopportune time. This could have lead to memory corruption or a potentially exploitable crash. Note: This advisory was added on December 13th, 2022 after discovering it was inadvertently left...

8.8CVSS7.2AI score0.0041EPSS
Exploits0References4
CVE
CVEadded 2023/08/24 4:0 p.m.130 views

CVE-2022-46884

CVE-2022-46884 corresponds to a use-after-free in Firefox SVG Images when the Refresh Driver is destroyed at an inopportune moment, leading to memory corruption or a potentially exploitable crash. Affected product: Firefox (desktop). Impact as described: memory safety issue with SVG Images; prior...

8.8CVSS8.4AI score0.0041EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2023/08/24 4:0 p.m.17 views

CVE-2022-46884

A potential use-after-free vulnerability existed in SVG Images if the Refresh Driver was destroyed at an inopportune time. This could have lead to memory corruption or a potentially exploitable crash. Note: This advisory was added on December 13th, 2022 after discovering it was inadvertently left...

8.7AI score0.0041EPSS
Exploits0References2
Debian CVE
Debian CVEadded 2023/08/24 4:0 p.m.21 views

CVE-2022-46884

A potential use-after-free vulnerability existed in SVG Images if the Refresh Driver was destroyed at an inopportune time. This could have lead to memory corruption or a potentially exploitable crash. Note: This advisory was added on December 13th, 2022 after discovering it was inadvertently left...

8.8CVSS8.7AI score0.0041EPSS
Exploits0
ICS
ICSadded 2023/08/24 6:0 a.m.28 views

Rockwell Automation Select Distributed I/O Communication Modules

1. EXECUTIVE SUMMARY ​CVSS v3 8.6 ​ATTENTION: Exploitable remotely/low attack complexity ​Vendor: Rockwell Automation ​Equipment: 1734-AENT/1734-AENTR Series C, 1734-AENT/1734-AENTR Series B, 1738-AENT/ 1738-AENTR Series B, 1794-AENTR Series A, 1732E-16CFGM12QCWR Series A, 1732E-12X4M12QCDR Serie...

9.8CVSS7.9AI score0.01055EPSS
Exploits0References8
Rows per page
Query Builder