Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

NVD
NVDadded 2024/02/23 5:15 p.m.15 views

CVE-2024-23320

Improper Input Validation vulnerability in Apache DolphinScheduler. An authenticated user can cause arbitrary, unsandboxed javascript to be executed on the server. This issue is a legacy of CVE-2023-49299. We didn't fix it completely in CVE-2023-49299, and we added one more patch to fix it. This...

8.8CVSS8.5AI score0.00737EPSS
Exploits0References5
SUSE CVE
SUSE CVEadded 2023/02/15 4:27 a.m.3 views

SUSE CVE-2018-11813

libjpeg 9c has a large loop because readpixel in rdtarga.c mishandles EOF...

3.3CVSS7AI score0.00278EPSS
Exploits0References11
Vulnrichment
Vulnrichmentadded 2022/01/18 3:25 p.m.2 views

CVE-2022-23307 A deserialization flaw in the Chainsaw component of Log4j 1 can lead to malicious code execution.

CVE-2020-9493 identified a deserialization issue that was present in Apache Chainsaw. Prior to Chainsaw V2.0 Chainsaw was a component of Apache Log4j 1.2.x where the same issue exists...

7AI score0.02603EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2019/11/05 9:22 p.m.1 views

libseccomp: incorrect generation of syscall filters in libseccomp

libseccomp before 2.4.0 did not correctly generate 64-bit syscall argument comparisons using the arithmetic operators LT, GT, LE, GE, which might able to lead to bypassing seccomp filters and potential privilege escalations...

9.8CVSS7.3AI score0.00683EPSS
Exploits0References4
CVE
CVEadded 2017/02/13 9:0 p.m.44 views

CVE-2016-9357

The CVE-2016-9357 issue affects legacy Eaton ePDUs (EAMxxx, EMAxxx, EAMAxx, EMAAxx, ESWAxx) that are past end-of-life and no longer supported. A path traversal vulnerability allows an unauthenticated attacker to access configuration files via a specially crafted URL. Documents note remote exploit...

5.3CVSS5.2AI score0.01661EPSS
Exploits0References2Affected Software1
Gentoo Linux
Gentoo Linuxadded 2014/02/06 12:0 a.m.25 views

Freeciv: User-assisted execution of arbitrary code

Background Freeciv is an open-source empire building strategy game. Description The Lua component of Freeciv does not restrict which modules may be loaded by scenario scripts. Impact A remote attacker could entice a user to open a specially crafted scenario file, possibly resulting in execution o...

10CVSS6.9AI score0.01199EPSS
Exploits1
Gentoo Linux
Gentoo Linuxadded 2014/01/20 12:0 a.m.24 views

GNUstep Base library: Multiple vulnerabilities

Background GNUstep Base library is a free software package implementing the API of the OpenStep Foundation Kit tm, including later additions. Description Multiple vulnerabilities have been discovered in GNUstep Base library. Please review the CVE identifiers referenced below for details. Impact A...

7.2CVSS7.1AI score0.00229EPSS
Exploits2
Tenable Nessus
Tenable Nessusadded 2013/12/18 12:0 a.m.20 views

GLSA-201312-14 : libsndfile: Arbitrary code execution

The remote host is affected by the vulnerability described in GLSA-201312-14 libsndfile: Arbitrary code execution An integer overflow flaw has been discovered in Libsndfile. Impact : A remote attacker could entice a user to open a specially crafted PAF file using libsndfile, possibly resulting in...

6.8CVSS6.1AI score0.08918EPSS
Exploits0References2
Rows per page
Query Builder