Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Positive Technologies
Positive Technologiesadded 2026/02/10 12:0 a.m.3 views

PT-2026-7299

Name of the Vulnerable Software and Affected Versions IntelR Processor Family affected versions not specified Description An issue involving improper handling of values in the microcode flow may allow for escalation of privilege. A local attacker with a privileged user account, high attack...

3.9CVSS5.4AI score0.00005EPSS
Exploits0References20
EUVD
EUVDadded 2026/02/04 8:52 p.m.1 views

EUVD-2024-55395

IBM Db2 Big SQL on Cloud Pak for Data versions 7.6 on CP4D 4.8, 7.7 on CP4D 5.0, and 7.8 on CP4D 5.1 do not properly limit the allocation of system resources. An authenticated user with internal knowledge of the environment could exploit this weakness to cause a denial of service...

5.3CVSS5.7AI score0.00019EPSS
Exploits0References1
OSV
OSVadded 2025/11/11 5:15 p.m.0 views

CVE-2025-24862

Unrestricted upload of file with dangerous type for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with a privileged user combined with a high complexity attack may enable data...

2CVSS5.7AI score0.00028EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/11/11 4:50 p.m.2 views

CVE-2025-24862

Unrestricted upload of file with dangerous type for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with a privileged user combined with a high complexity attack may enable data...

2CVSS6.5AI score0.00028EPSS
Exploits0References1
CNNVD
CNNVDadded 2024/10/05 12:0 a.m.1 views

Mediawiki 安全漏洞

MediaWiki is a suite of free and freely available web-based Wiki engines from the MediaWiki Foundation. The product can be used to deploy internal knowledge management and content management systems. Mediawiki has a security vulnerability that stems from the presence of a stored cross-site...

6.9CVSS6.1AI score0.0066EPSS
Exploits1References4
Node.js
Node.jsadded 2021/03/08 3:57 p.m.33 views

Improper Authentication

Overview In affected versions of botframework-connector, a maliciously crafted claim may be incorrectly authenticated by the bot. Impacts bots that are not configured to be used as a Skill. This vulnerability requires an attacker to have internal knowledge of the bot. Recommendation Upgrade to fi...

2.1CVSS5.4AI score0.0052EPSS
Exploits0Affected Software1
Github Security Blog
Github Security Blogadded 2021/03/08 3:50 p.m.34 views

Improper Authentication

Impact A maliciously crafted claim may be incorrectly authenticated by the bot. Impacts bots that are not configured to be used as a Skill. This vulnerability requires an an attacker to have internal knowledge of the bot. Patches The problem has been patched in all affected versions. Please see t...

3.3AI score
Exploits0References4Affected Software1
Positive Technologies
Positive Technologiesadded 2021/01/12 12:0 a.m.2 views

PT-2021-1610 · Microsoft · Bot Framework Sdk

Name of the Vulnerable Software and Affected Versions: Bot Framework SDK versions prior to the fixed version Description: The vulnerability is related to the lack of protection of service data in the Bot Framework SDK. It may allow a remote attacker to gain unauthorized access to protected...

8.2CVSS7.2AI score0.0052EPSS
Exploits0References16
Rows per page
Query Builder