Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

54 matches found

CVE
CVEadded 2026/06/18 2:13 p.m.12 views

CVE-2026-50141

CVE-2026-50141 affects Woodpecker CI prior to 3.14.1, where the gRPC layer allowed an authenticated agent to impersonate another by forging agent_id in outgoing metadata. The server verified the JWT but then ignored it in favor of the client-supplied agent_id, enabling cross-tenant impersonation....

7.1CVSS5.4AI score0.00246EPSS
Exploits0References5
NVD
NVDadded 2026/06/15 11:16 p.m.10 views

CVE-2026-48854

Allocation of Resources Without Limits or Throttling vulnerability in elixir-grpc grpc allows unauthenticated attackers to exhaust the BEAM's memory and crash the server by streaming a large or slow-trickle unary request body. 'Elixir.GRPC.Server.Adapters.Cowboy.Handler':readfullbody/3...

8.7CVSS0.00344EPSS
Exploits0References4
CVE
CVEadded 2026/06/15 9:56 p.m.21 views

CVE-2026-48853

CVE-2026-48853 affects the elixir-grpc/grpc stack where the Erlpack codec decodes gRPC payloads with :erlang.binary_to_term/1 without safety bounds. This leads to untrusted data deserialization, atom creation risk (atom table exhaustion) and potential remote code execution if a malicious term rea...

9.2CVSS6.5AI score0.00573EPSS
Exploits0References4
SUSE Linux
SUSE Linuxadded 2026/06/15 3:34 p.m.8 views

Security update for kubevirt

This update for kubevirt fixes the following issues: Update to version 1.7.4, fixes various go embedded security issues: CVE-2025-47911: golang.org/x/net/html: various algorithms with quadratic complexity when parsing HTML documents bsc1251420. CVE-2025-47913: golang.org/x/crypto/ssh/agent: clien...

9.9CVSS6.4AI score0.00579EPSS
Exploits3References28
Tenable Nessus
Tenable Nessusadded 2026/06/11 12:0 a.m.5 views

openSUSE 16 Security Update : elemental-register (openSUSE-SU-2026:20920-1)

The remote openSUSE 16 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2026:20920-1 advisory. This update for elemental-register fixes the following issue - CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation o...

9.1CVSS7.7AI score0.00522EPSS
Exploits1References8
OSV
OSVadded 2026/06/10 7:45 a.m.2 views

SUSE-SU-2026:22075-1 Security update for elemental-operator

This update for elemental-operator fixes the following issue - CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2 :path pseudo- header bsc1260277. Changes for elemental-operator: - Changes on top of v1.7.5: 41f54076 Fix reference in labels 3bdb93...

9.6CVSS6.4AI score0.00565EPSS
Exploits2References16
OSV
OSVadded 2026/06/08 3:15 p.m.4 views

OPENSUSE-SU-2026:20924-1 Security update for elemental-system-agent

This update for elemental-system-agent fixes the following issue - CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2: path pseudo- header bsc1260277. Changes: - Update to version 0.3.16: setup for immutable releases 274 align system-agent image...

9.1CVSS6.5AI score0.00522EPSS
Exploits1References2
RedHat Linux
RedHat Linuxadded 2026/06/03 12:58 p.m.16 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.18.43 security and extras update

Red Hat OpenShift Container Platform release 4.18.43 is now available with updates to packages and images that fix several bugs. This release includes a security update for Red Hat OpenShift Container Platform 4.18. Red Hat Product Security has rated this update as having a security impact of...

9.8CVSS7.6AI score0.01026EPSS
Exploits3References9
RedHat Linux
RedHat Linuxadded 2026/05/27 8:55 a.m.24 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.19.32 security and extras update

Red Hat OpenShift Container Platform release 4.19.32 is now available with updates to packages and images that fix several bugs. This release includes a security update for Red Hat OpenShift Container Platform 4.19. Red Hat Product Security has rated this update as having a security impact of...

9.8CVSS6.9AI score0.01026EPSS
Exploits3References9
OSV
OSVadded 2026/05/18 8:52 a.m.4 views

SUSE-SU-2026:21732-1 Security update for google-guest-agent

This update for google-guest-agent fixes the following issue - CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2: path pseudo- header bsc1260264...

9.1CVSS5.8AI score0.00522EPSS
Exploits1References3
Veracode
Veracodeadded 2026/05/03 1:35 a.m.7 views

Authorization Bypass

google.golang.org/grpc is vulnerable to authorization bypass. The vulnerability is due to improper validation of the HTTP/2 :path pseudo-header, which allows an attacker to send malformed requests without a leading slash and bypass path-based authorization policies when fallback "allow" rules are...

9.1CVSS6.8AI score0.00522EPSS
Exploits1References3Affected Software3
Tenable Nessus
Tenable Nessusadded 2026/04/15 12:0 a.m.2 views

SUSE SLES15 / openSUSE 15 Security Update : ignition (SUSE-SU-2026:1314-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:1314-1 advisory. This update for ignition fixes the following issue: - CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper...

9.1CVSS5.9AI score0.00522EPSS
Exploits1References4
SUSE Linux
SUSE Linuxadded 2026/04/07 11:50 a.m.3 views

Security update for ignition

This update for ignition fixes the following issue: CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2: path pseudo- header bsc1260251 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.6CVSS5.9AI score0.00522EPSS
Exploits1References4
SUSE Linux
SUSE Linuxadded 2026/04/07 10:25 a.m.3 views

Security update for ignition

This update for ignition fixes the following issue: CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2: path pseudo- header bsc1260251 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.6CVSS5.9AI score0.00522EPSS
Exploits1References4
IBM Security Bulletins
IBM Security Bulletinsadded 2026/01/16 5:30 p.m.9 views

Security Bulletin: A vulnerability in grpc affects IBM Robotic Process Automation and may result in unexpected results (CVE-2025-47907).

Summary A vulnerability in grpc affects IBM Robotic Process Automation and may result in unexpected results CVE-2025-47907. grpc is used by IBM Robotic Process Automation as part of Watson NLP. This bulletin identifies the fixes required to address this vulnerability. Vulnerability Details...

7CVSS6.5AI score0.00331EPSS
Exploits0Affected Software1
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2017-15653

Malware in sbrugna...

5.3CVSS5.5AI score0.02045EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.16 views

EUVD-2021-1152

Malware in sbrugna...

9.8CVSS8.5AI score0.03554EPSS
Exploits0References10
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2017-16835

Malware in sbrugna...

9.8CVSS9.3AI score0.03125EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2017-0058

Malware in sbrugna...

9.8CVSS9.3AI score0.02465EPSS
Exploits1References8
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2023-2204

Malicious code in bioql PyPI...

7.5CVSS7.7AI score0.00412EPSS
Exploits0References5
Rows per page
Query Builder