Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CVE
CVEadded 2026/04/13 6:56 a.m.4 views

CVE-2026-5085

CVE-2026-5085 affects Solstice::Session (Perl) versions through 1440. The root cause is insecure session ID generation in _generateSessionID (and _generateID in Solstice::Subsession), which uses an MD5 digest seeded by the epoch time, a random hash reference, the built-in rand() (seeded with 16 b...

9.1CVSS5.7AI score0.00045EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologiesadded 2026/01/05 12:0 a.m.3 views

PT-2026-1251

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's crypto subsystem, specifically within the starfive implementation. The sg nents for len function's return value was incorrectly assigned to an unsigne...

4.6CVSS6.4AI score0.00025EPSS
Exploits0
OSV
OSVadded 2025/10/24 11:15 p.m.0 views

UBUNTU-CVE-2025-12194

Uncontrolled Resource Consumption vulnerability in Legion of the Bouncy Castle Inc. Bouncy Castle for Java FIPS bc-fips on All API modules, Legion of the Bouncy Castle Inc. Bouncy Castle for Java LTS bcprov-lts8on on All API modules allows Excessive Allocation. This vulnerability is associated wi...

5.9CVSS5.8AI score0.00025EPSS
Exploits0References3
Code423n4
Code423n4added 2023/07/28 12:0 a.m.6 views

_getSelector does not return the right selector

Lines of code Vulnerability details Impact getSelector... function in the CoreVoting.sol will NEVER return the correct function selector of a calldata string. This can lead to malfunction in the system when creating a proposal. Proof of Concept The function selector is suppose to be the hash dige...

6.7AI score
Exploits0
OSV
OSVadded 2021/07/09 7:15 p.m.1 views

CVE-2021-24020

A missing cryptographic step in the implementation of the hash digest algorithm in FortiMail 6.4.0 through 6.4.4, and 6.2.0 through 6.2.7 may allow an unauthenticated attacker to tamper with signed URLs by appending further data which allows bypass of signature verification...

9.8CVSS5.8AI score
Exploits0References1
Fortinet
Fortinetadded 2021/07/07 12:0 a.m.25 views

FortiMail - Salted Digest vulnerable to length extension attacks

A missing cryptographic step in the implementation of the hash digest algorithm in FortiMail may allow an unauthenticated attacker to tamper with signed URLs by appending further data which allows bypass of signature verification...

7.5CVSS9AI score0.00171EPSS
Exploits0Affected Software1
OSV
OSVadded 2019/09/16 6:15 p.m.0 views

DEBIAN-CVE-2019-16370

The PGP signing plugin in Gradle before 6.0 relies on the SHA-1 algorithm, which might allow an attacker to replace an artifact with a different one that has the same SHA-1 message digest, a related issue to CVE-2005-4900...

5.9CVSS6.6AI score0.00162EPSS
Exploits1References1
Rows per page
Query Builder