Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

23 matches found

RedHat Linux
RedHat Linuxadded 4 days ago9 views

coreutils: Heap Buffer Under-Read in GNU Coreutils sort via Key Specification

A flaw was found in GNU Coreutils. The sort utility's begfield function is vulnerable to a heap buffer under-read. The program may access memory outside the allocated buffer if a user runs a crafted command using the traditional key format. A malicious input could lead to a crash or leak sensitiv...

4.4CVSS6AI score0.00215EPSS
Exploits0References6
EUVD
EUVDadded 2026/05/11 6:31 p.m.10 views

EUVD-2026-29085

Local file inclusion LFI and server-side request forgery SSRF vulnerabilities in pgAdmin 4 LLM API configuration endpoints. User-supplied apikeyfile and apiurl preferences were passed to the LLM provider clients without validation. An authenticated user could read arbitrary server-side files by...

7.1CVSS6AI score0.00217EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2021-27207

Malware in sbrugna...

9.8CVSS9.4AI score0.00542EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/08/15 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2019-11719

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When importing a curve25519 private key in PKCS8format with leading 0x00 bytes, it is possible to trigger an out-of-bounds read in the Network Security Services...

7.5CVSS8AI score0.02202EPSS
Exploits0References2
OSV
OSVadded 2025/05/27 9:15 p.m.1 views

DEBIAN-CVE-2025-5278

A flaw was found in GNU Coreutils. The sort utility's begfield function is vulnerable to a heap buffer under-read. The program may access memory outside the allocated buffer if a user runs a crafted command using the traditional key format. A malicious input could lead to a crash or leak sensitiv...

4.4CVSS5AI score0.00215EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2025/05/27 9:15 p.m.2 views

CVE-2025-5278

A flaw was found in GNU Coreutils. The sort utility's begfield function is vulnerable to a heap buffer under-read. The program may access memory outside the allocated buffer if a user runs a crafted command using the traditional key format. A malicious input could lead to a crash or leak sensitiv...

4.4CVSS6AI score0.00215EPSS
Exploits0References6Affected Software7
OSV
OSVadded 2025/05/27 9:15 p.m.3 views

UBUNTU-CVE-2025-5278

A flaw was found in GNU Coreutils. The sort utility's begfield function is vulnerable to a heap buffer under-read. The program may access memory outside the allocated buffer if a user runs a crafted command using the traditional key format. A malicious input could lead to a crash or leak sensitiv...

4.4CVSS5.9AI score0.00215EPSS
Exploits0References6
OSV
OSVadded 2024/11/18 1:19 p.m.18 views

SUSE-SU-2024:4006-1 Security update for SUSE Manager Server 4.3

This update fixes the following issues: cobbler: - Security issues fixed: CVE-2024-47533: Prevent privilege escalation from none to admin bsc1231332 - Other bugs fixed: Increase start timeout for cobblerd unit bsc1219450 Provide syncsinglesystem for DHCP modules to improve performance bsc1219450...

9.8CVSS8.2AI score0.03948EPSS
Exploits6References57
OSV
OSVadded 2024/06/06 12:25 p.m.6 views

CGA-FWXM-W3HH-RG5P

Bulletin has no description...

7.2AI score
Exploits0
CNNVD
CNNVDadded 2024/04/25 12:0 a.m.2 views

python-jose 安全漏洞

python-jose is a JOSE implementation in Python by the individual developer Michael Davis. A security vulnerability exists in python-jose 3.3.0 and earlier versions, which stems from confusion between OpenSSH ECDSA keys and other key formats...

6.5CVSS7.5AI score0.00307EPSS
Exploits1References6
Positive Technologies
Positive Technologiesadded 2023/11/20 12:0 a.m.4 views

PT-2023-30740

Name of the Vulnerable Software and Affected Versions fast-jwt versions prior to 3.3.2 Description The fast-jwt library does not properly prevent JWT algorithm confusion for all public key types. The 'publicKeyPemMatcher' in 'fast-jwt/src/crypto.js' does not properly match all common PEM formats...

5.9CVSS6.3AI score0.00687EPSS
Exploits1References10
OpenVAS
OpenVASadded 2023/03/08 12:0 a.m.34 views

Debian: Security Advisory (DLA-634-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.6AI score0.10494EPSS
Exploits0References2
NVD
NVDadded 2022/09/16 6:15 p.m.16 views

CVE-2021-40017

The HWKEYMASTER module lacks the validity check of the key format. Successful exploitation of this vulnerability may result in out-of-bounds memory access...

9.8CVSS0.00542EPSS
Exploits0References2
OSV
OSVadded 2022/09/16 6:15 p.m.2 views

CVE-2021-40017

The HWKEYMASTER module lacks the validity check of the key format. Successful exploitation of this vulnerability may result in out-of-bounds memory access...

9.8CVSS5.8AI score0.00542EPSS
Exploits0References2
Prion
Prionadded 2022/09/16 6:15 p.m.24 views

Out-of-bounds

The HWKEYMASTER module lacks the validity check of the key format. Successful exploitation of this vulnerability may result in out-of-bounds memory access...

7.5CVSS9.3AI score0.00542EPSS
Exploits0References2Affected Software2
Positive Technologies
Positive Technologiesadded 2022/09/16 12:0 a.m.4 views

PT-2022-11139 · Unknown · Hw Keymaster

Name of the Vulnerable Software and Affected Versions: HW KEYMASTER affected versions not specified Description: The HW KEYMASTER module lacks a validity check of the key format, which may result in out-of-bounds memory access if successfully exploited. Recommendations: At the moment, there is no...

9.8CVSS9.4AI score0.00542EPSS
Exploits0References4
Cvelist
Cvelistadded 2022/09/16 12:0 a.m.18 views

CVE-2021-40017

The HWKEYMASTER module lacks the validity check of the key format. Successful exploitation of this vulnerability may result in out-of-bounds memory access...

9.6AI score0.00542EPSS
Exploits0References2
CVE
CVEadded 2022/09/16 12:0 a.m.61 views

CVE-2021-40017

CVE-2021-40017 affects Huawei HarmonyOS HW_KEYMASTER; lack of key-format validity check can cause out-of-bounds memory access. Documents tie this to HarmonyOS 2.0 and related advisories, with patches referenced in Huawei security bulletins (2022). Exploit details are not provided in the sources; ...

9.8CVSS9.4AI score0.00542EPSS
Exploits0References2Affected Software2
CNNVD
CNNVDadded 2022/09/05 12:0 a.m.3 views

Huawei HarmonyOS 输入验证错误漏洞

Huawei HarmonyOS is an operating system from Huawei China. HarmonyOS version 2.0 contains a buffer overflow vulnerability that stems from the fact that the HWKEYMASTER module does not perform a legitimacy check on the key format, which can be exploited to cause out-of-bounds access...

9.8CVSS7.2AI score0.00542EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2018/04/20 3:35 p.m.680 views

Invalid secret key format when accessing to a vault

No description provided...

2.6AI score
Exploits0
Rows per page
Query Builder