Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1391 matches found

Tenable Nessus
Tenable Nessusadded 2023/12/21 12:0 a.m.47 views

Oracle Linux 8 : conmon (ELSA-2023-13054)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-13054 advisory. - Resolve CVE-2023-39325 - Resolve CVE-2023-39325 - Resolve CVE-2023-39325 - Resolve CVE-2023-44487 and CVE-2023-39325 - address CVE-2023-44487 and...

8.2CVSS7.4AI score0.94395EPSS
Exploits20References3
IBM Security Bulletins
IBM Security Bulletinsadded 2023/12/15 4:25 p.m.38 views

Security Bulletin: IBM Storage Protect is vulnerable to multiple attacks due to http2-server and http2-common (CVE-2023-44487)

Summary IBM Storage Protect Server uses the http2-server and http2-common components and may be vulnerable to denial of service caused by a flaw in handling multiplexed streams in the HTTP/2 protocol. Vulnerability Details CVEID:CVE-2023-44487 DESCRIPTION: Multiple vendors are vulnerable to a...

7.5CVSS7.7AI score0.94395EPSS
Exploits19Affected Software1
FreeBSD
FreeBSDadded 2023/12/14 12:0 a.m.21 views

QtNetwork -- potential buffer overflow

Andy Shaw reports: A potential integer overflow has been discovered in Qt's HTTP2 implementation. If the HTTP2 implementation receives more than 4GiB in total headers, or more than 2GiB for any given header pair, then the internal buffers may overflow...

9.8CVSS7.7AI score0.00139EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2023/12/13 9:3 p.m.23 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.11.55 security update

Red Hat OpenShift Container Platform release 4.11.55 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.11. Red Hat Product Security has rated this update as having a...

7.5CVSS7.1AI score0.0015EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2023/12/08 12:0 a.m.46 views

Oracle Linux 7 : conmon (ELSA-2023-13029)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-13029 advisory. - Resolve CVE-2023-39325 - Resolve CVE-2023-39325 cri-tools - Resolve CVE-2023-39325 flannel-cni-plugin - Resolve CVE-2023-44487 and CVE-2023-39325 he...

8.2CVSS7.4AI score0.94395EPSS
Exploits20References3
Tenable Nessus
Tenable Nessusadded 2023/12/06 12:0 a.m.23 views

Fedora 38 : gmailctl (2023-6f4c5b6331)

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-6f4c5b6331 advisory. upgrade to v0.10.7, close rhbz2249798 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has...

7.5CVSS7AI score0.0015EPSS
Exploits0References2
RedHat Linux
RedHat Linuxadded 2023/11/24 4:56 p.m.45 views

Important: Red Hat Security Advisory: Red Hat Single Sign-On 7.6.6 security update on RHEL 9

New Red Hat Single Sign-On 7.6.6 packages are now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS7.1AI score0.94395EPSS
Exploits19References5
Tenable Nessus
Tenable Nessusadded 2023/11/19 12:0 a.m.34 views

Fedora 38 : podman-tui (2023-e359fd31d2)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-e359fd31d2 advisory. podman-tui v0.12.0 + security fix for CVE-2023-39325 and CVE-2022-41717 and CVE-2022-41723 Tenable has extracted the preceding description block...

7.5CVSS7.2AI score0.00331EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2023/11/19 12:0 a.m.23 views

Fedora 37 : prometheus-podman-exporter (2023-b60ff8c9ec)

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-b60ff8c9ec advisory. release v1.5.0 + security fix for CVE-2023-39325 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...

7.5CVSS7AI score0.0015EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2023/11/19 12:0 a.m.21 views

Fedora 39 : prometheus-podman-exporter (2023-b75ee820ce)

The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-b75ee820ce advisory. release v1.5.0 + security fix for CVE-2023-39325 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...

7.5CVSS7AI score0.0015EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2023/11/17 12:0 a.m.26 views

Amazon Linux 2 : ecs-init (ALASECS-2023-020)

The version of ecs-init installed on the remote host is prior to 1.79.0-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2ECS-2023-020 advisory. The HTTP/2 protocol allows a denial of service server resource consumption because request cancellation can reset many streams...

7.5CVSS7AI score0.0015EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2023/11/17 12:0 a.m.30 views

Fedora 37 : syncthing (2023-fa2d7b25d9)

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-fa2d7b25d9 advisory. Update to version 1.26.0. Release notes: https://github.com/syncthing/syncthing/releases/tag/v1.26.0 Tenable has extracted the preceding description block...

7.5CVSS7AI score0.0015EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2023/11/15 12:0 a.m.25 views

Amazon Linux 2023 : ecs-init (ALAS2023-2023-435)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-435 advisory. The HTTP/2 protocol allows a denial of service server resource consumption because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023...

7.5CVSS6.9AI score0.0015EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2023/11/15 12:0 a.m.19 views

Amazon Linux 2023 : ecs-init (ALAS2023-2023-434)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-434 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks ...

5.5AI score
Exploits0References2
RedHat Linux
RedHat Linuxadded 2023/11/14 3:32 p.m.53 views

Moderate: Red Hat Security Advisory: container-tools:4.0 security and bug fix update

An update for the container-tools:4.0 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...

9.8CVSS6.5AI score0.02514EPSS
Exploits2References20
Kitploit
Kitploitadded 2023/11/10 11:30 a.m.43 views

Afuzz - Automated Web Path Fuzzing Tool For The Bug Bounty Projects

Afuzz is an automated web path fuzzing tool for the Bug Bounty projects. Afuzz is being actively developed by @rapiddns Features Afuzz automatically detects the development language used by the website, and generates extensions according to the language Uses blacklist to filter invalid pages Uses...

7.1AI score
Exploits0References3
OpenVAS
OpenVASadded 2023/11/08 12:0 a.m.33 views

Fedora: Security Advisory for mod_http2 (FEDORA-2023-c0c6a91330)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.6AI score0.94395EPSS
Exploits20References4
Fedora
Fedoraadded 2023/11/07 2:32 a.m.46 views

[SECURITY] Fedora 37 Update: mod_http2-2.0.25-1.fc37

The modh2 Apache httpd module implements the HTTP2 protocol h2+h2c on top of libnghttp2 for httpd 2.4 servers...

7.5CVSS7.3AI score0.94395EPSS
Exploits20
Fedora
Fedoraadded 2023/11/07 1:40 a.m.41 views

[SECURITY] Fedora 39 Update: mod_http2-2.0.25-1.fc39

The modh2 Apache httpd module implements the HTTP2 protocol h2+h2c on top of libnghttp2 for httpd 2.4 servers...

7.5CVSS7.3AI score0.94395EPSS
Exploits20
OpenVAS
OpenVASadded 2023/11/07 12:0 a.m.37 views

Fedora: Security Advisory (FEDORA-2023-492b7be466)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.8AI score0.94395EPSS
Exploits20References6
Rows per page
Query Builder