Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2220 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-23130

Malicious code in bioql PyPI...

5.5CVSS6.3AI score0.00071EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-2250

Malicious code in bioql PyPI...

9.3CVSS7.5AI score0.00898EPSS
Exploits0References11
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2021-7202

Malicious code in bioql PyPI...

7.8CVSS7.5AI score0.00266EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2023-49952

Malicious code in bioql PyPI...

7.1CVSS6.6AI score0.00083EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2021-32113

Malicious code in bioql PyPI...

6.5CVSS6.4AI score0.00146EPSS
Exploits1References1
GithubExploit
GithubExploitadded 2025/09/30 2:7 p.m.272 views

Exploit for Out-of-bounds Write in Apple Ipados

CVE-2025-43300: iOS/macOS DNG Image Processing Memory Corrupti...

8.8CVSS7.5AI score0.04417EPSS
Exploits9
SUSE Linux
SUSE Linuxadded 2025/09/26 9:14 a.m.2 views

Security update for jasper

This update for jasper fixes the following issues: CVE-2025-8835: missing range check in the JPEG-2000 JPC Encoder leads to assertion failure and crash when processing a malformed JPEG2000 image with an invalid cblkwidth parameter bsc1247904. CVE-2025-8836: out-of-bounds array indexing in functio...

6.9CVSS7.1AI score0.00202EPSS
Exploits3References12
Veracode
Veracodeadded 2025/09/23 6:28 a.m.7 views

Denial Of Service (DoS)

jspdf is vulnerable to Denial of Service DoS. The vulnerability is due to improper handling of unsanitized image data or URLs in the addImage method, which allows an attacker to supply a malicious PNG file that triggers high CPU utilization and denial of service...

8.7CVSS6.6AI score0.00261EPSS
Exploits1References4Affected Software1
CNVD
CNVDadded 2025/09/18 12:0 a.m.3 views

Apple macOS Tahoe Memory Corruption Vulnerability

Apple macOS Tahoe is the 26th major release of Apple's macOS operating system, which was released on June 10, 2025, and features a new "Liquid Glass" visual design that significantly optimizes interface aesthetics, feature integration, and cross-device collaboration. The 26th major version of the...

7.1CVSS6.7AI score0.00026EPSS
Exploits0References1
OSV
OSVadded 2025/09/15 11:15 p.m.0 views

CVE-2025-43287

The issue was addressed with improved memory handling. This issue is fixed in macOS Tahoe 26. Processing a maliciously crafted image may corrupt process memory...

7.1CVSS5.8AI score0.00026EPSS
Exploits0References2
SUSE Linux
SUSE Linuxadded 2025/09/15 9:19 a.m.2 views

Security update for jasper

This update for jasper fixes the following issues: CVE-2025-8835: missing range check in the JPEG-2000 JPC Encoder leads to assertion failure and crash when processing a malformed JPEG2000 image with an invalid cblkwidth parameter bsc1247904. CVE-2025-8836: out-of-bounds array indexing in functio...

6.9CVSS7.2AI score0.00202EPSS
Exploits3References12
Gitee
Giteeadded 2025/09/06 12:2 a.m.135 views

ruby-dragonfly

This repository is an offensive tool for Ruby. It is a highly customizable gem for handling images and other attachments, and is already in use on thousands of websites. The tool is designed to generate image thumbnails in Rails and to manage attachments in web applications. It provides a range o...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2025/09/01 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-6199

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the GIF parser of GdkPixbuf's LZW decoder. When an invalid symbol is encountered during decompression, the decoder sets the reported output...

3.3CVSS6AI score0.00102EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/09/01 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2022-40755

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - JasPer 3.0.6 allows denial of service via a reachable assertion in the function inttobits in libjasper/base/jasimage.c. CVE-2022-40755 Note that Nessus relies o...

5.5CVSS6.5AI score0.0004EPSS
Exploits1References3
OSV
OSVadded 2025/08/31 2:15 p.m.2 views

CVE-2025-9732

A vulnerability was identified in DCMTK up to 3.6.9. This affects an unknown function in the library dcmimage/include/dcmtk/dcmimage/diybrpxt.h of the component dcm2img. Such manipulation leads to memory corruption. Local access is required to approach this attack. The name of the patch is...

7.8CVSS6.8AI score
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2025/08/27 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2018-6799

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The AcquireCacheNexus function in magick/pixelcache.c in GraphicsMagick before 1.3.28 allows remote attackers to cause a denial of service heap overwrite or...

8.8CVSS7.9AI score0.00776EPSS
Exploits0References2
Trellix
Trellixadded 2025/08/27 12:0 a.m.6 views

The Bug Report – August 2025 Edition

The Bug Report – August 2025 Edition By Jonathan Omakun, Tola Olawale · August 27, 2025 Why am I here? Welcome back to The Bug Report! Did you miss us? The Trellix Advanced Research Center has been playing a high-stakes game of whack-a-mole with this month's vulnerabilities. We've dug through all...

10CVSS9AI score0.30509EPSS
Exploits13
Tenable Nessus
Tenable Nessusadded 2025/08/27 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2022-21831

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A code injection vulnerability exists in the Active Storage = v5.2.0 that could allow an attacker to execute code via imageprocessing arguments. CVE-2022-21831...

9.8CVSS6.9AI score0.0142EPSS
Exploits0References2
Snyk
Snykadded 2025/08/25 3:54 p.m.2 views

Heap-based Buffer Overflow

Overview Magick.NET-Q16-HDRI-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package...

5.1CVSS6.6AI score0.00024EPSS
Exploits1References2
GithubExploit
GithubExploitadded 2025/08/24 3:48 p.m.648 views

Exploit for Out-of-bounds Write in Apple Ipados

CVE-2025-43300: iOS/macOS DNG Image Processing Memory Corrupti...

8.8CVSS7.2AI score0.04417EPSS
Exploits9
Rows per page
Query Builder