Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

89 matches found

Positive Technologies
Positive Technologiesadded 2026/06/03 12:0 a.m.6 views

PT-2026-45924

A remote attacker with user privileges can exploit a stack buffer overflow to gain full system access as root...

8.8CVSS6AI score0.00115EPSS
Exploits0References3
EUVD
EUVDadded 2026/05/27 3:33 p.m.8 views

EUVD-2026-32278

In Slican telephone exchanges it is possible to manage the control panel remotely. An unauthenticated attacker can connect to the modem via a telephone with a specific caller ID. This allows them to bypass admin authentication and gain full access to the service protocol and configuration panel...

9.3CVSS5.8AI score0.00103EPSS
Exploits0References2
CNNVD
CNNVDadded 2026/05/27 12:0 a.m.5 views

Netis AC1200 安全漏洞

The Netis AC1200 is a series of dual-band wireless broadband routers produced by the Chinese company Netis. The Netis AC1200 Router NC21 V4.0.1.4296 version contains a security vulnerability. This vulnerability stems from the hardcoded root credentials stored in the /etc/shadow.sample file. The...

7.3CVSS5.8AI score0.00047EPSS
Exploits0References3
CVE
CVEadded 2026/05/17 12:11 p.m.10 views

CVE-2018-25320

CVE-2018-25320 affects ACL Analytics 11.x through 13.0.0.579. The vulnerability is an arbitrary code execution via the EXECUTE function, enabling an attacker to run commands with SYSTEM privileges. Reported chain includes using bitsadmin to download malicious PowerShell scripts and execute them t...

9.8CVSS6.5AI score0.00128EPSS
Exploits0References4
NVD
NVDadded 2026/04/02 8:16 p.m.2 views

CVE-2023-7343

Hirschmann Industrial HiVision versions 05.0.00 through 08.3.01 prior to 08.3.02 contain an arbitrary code execution vulnerability triggered when an administrator opens a maliciously crafted project file. Successful exploitation allows the attacker to execute code in the context of the HiVision...

8.5CVSS0.00002EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/03/09 12:0 a.m.7 views

PT-2026-24031

Name of the Vulnerable Software and Affected Versions UBR affected versions not specified Description A local attacker with limited privileges who gains access to the UBR service account, for example through SSH, can escalate their privileges to achieve full system access. This is possible becaus...

7.8CVSS5.9AI score0.00011EPSS
Exploits0References6
NVD
NVDadded 2026/02/12 8:16 p.m.20 views

CVE-2019-25344

Wondershare MobileGo 8.5.0 contains an insecure file permissions vulnerability that allows local users to modify executable files in the application directory. Attackers can replace the original MobileGo.exe with a malicious executable to create a new user account and add it to the Administrators...

8.5CVSS0.00019EPSS
Exploits1References4
ATTACKERKB
ATTACKERKBadded 2026/02/02 2:12 p.m.4 views

CVE-2022-50981

An unauthenticated remote attacker can gain full access on the affected devices as they are shipped without a password by default and setting one is not enforced...

9.8CVSS5.6AI score0.00049EPSS
Exploits0References3Affected Software10
RedhatCVE
RedhatCVEadded 2026/01/16 2:23 p.m.6 views

CVE-2026-22908

Uploading unvalidated container images may allow remote attackers to gain full access to the system, potentially compromising its integrity and confidentiality...

9.1CVSS7.2AI score0.00034EPSS
Exploits0References1
NVD
NVDadded 2026/01/15 1:16 p.m.4 views

CVE-2026-22908

Uploading unvalidated container images may allow remote attackers to gain full access to the system, potentially compromising its integrity and confidentiality...

9.1CVSS0.00034EPSS
Exploits0References6
Cvelist
Cvelistadded 2026/01/15 1:0 p.m.23 views

CVE-2026-22908

Uploading unvalidated container images may allow remote attackers to gain full access to the system, potentially compromising its integrity and confidentiality...

9.1CVSS0.00034EPSS
Exploits0References6
Vulnrichment
Vulnrichmentadded 2026/01/15 1:0 p.m.2 views

CVE-2026-22908

Uploading unvalidated container images may allow remote attackers to gain full access to the system, potentially compromising its integrity and confidentiality...

9.1CVSS6.8AI score0.00034EPSS
Exploits0References6
EUVD
EUVDadded 2026/01/15 1:0 p.m.3 views

EUVD-2026-2823

Uploading unvalidated container images may allow remote attackers to gain full access to the system, potentially compromising its integrity and confidentiality...

9.1CVSS6.7AI score0.00034EPSS
Exploits0References7
CVE
CVEadded 2026/01/15 1:0 p.m.9 views

CVE-2026-22908

CVE-2026-22908 affects SICK TDC-X401GL (and related) via uploading unvalidated container images, enabling remote attackers to potentially gain full system access and impact confidentiality, integrity, and possibly availability. Root cause: unvalidated image upload. Exploitation status is not docu...

9.1CVSS6.8AI score0.00034EPSS
Exploits0References6Affected Software1
Positive Technologies
Positive Technologiesadded 2026/01/15 12:0 a.m.4 views

PT-2026-2989

Name of the Vulnerable Software and Affected Versions versions prior to 2026-22908 Description Uploading unvalidated container images may allow remote attackers to gain full access to the system, potentially compromising its integrity and confidentiality. Recommendations At the moment, there is n...

9.1CVSS6.7AI score0.00034EPSS
Exploits0References12
CNNVD
CNNVDadded 2026/01/15 12:0 a.m.1 views

SICK TDC-X401GL has security vulnerabilities

The SICK TDC-X401GL is a edge computing gateway developed by the German company SICK. The SICK TDC-X401GL has a security vulnerability, which stems from the upload of unverified container images. This vulnerability could allow remote attackers to gain full system access...

9.1CVSS5.8AI score0.00034EPSS
Exploits0References6
EUVD
EUVDadded 2025/12/18 12:34 a.m.3 views

EUVD-2023-60216

UliCMS 2023.1 contains an authentication bypass vulnerability that allows unauthenticated attackers to create admin users through mass assignment in the UserController. Attackers can send a crafted POST request to the admin index.php endpoint with specific parameters to generate an administrative...

9.8CVSS6.6AI score0.01248EPSS
Exploits1References4
CNVD
CNVDadded 2025/10/17 12:0 a.m.3 views

Rockwell Automation FactoryTalk Linx Elevation of Privilege Vulnerability

Rockwell Automation FactoryTalk Linx is a set of industrial communication solutions from Rockwell Rockwell Automation. It is used to communicate between small applications and large automation systems. An elevation of privilege vulnerability exists in Rockwell Automation FactoryTalk Linx due to a...

8.5CVSS5.8AI score0.00012EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/10/14 12:0 a.m.3 views

PT-2025-41916

Name of the Vulnerable Software and Affected Versions FTLinx versions affected versions not specified Description A security issue exists in the x86 Microsoft Installer MSI used with FTLinx. Authenticated attackers with valid Windows user credentials can initiate a repair and hijack the resulting...

8.5CVSS6.2AI score0.00012EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2025-30193

Malicious code in bioql PyPI...

9.8CVSS6.5AI score0.001EPSS
Exploits0References3
Rows per page
Query Builder