Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1404 matches found

OSV
OSVadded 2023/04/06 8:15 p.m.2 views

DEBIAN-CVE-2023-29465

SageMath FlintQS 1.0 relies on pathnames under TMPDIR typically world-writable, which for example allows a local user to overwrite files with the privileges of a different user who is running FlintQS...

5.5CVSS5.6AI score0.00245EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2023/04/06 12:0 a.m.3 views

PT-2023-22268 · Sagemath +1 · Sagemath Flintqs +1

Name of the Vulnerable Software and Affected Versions: SageMath FlintQS version 1.0 Description: The issue allows a local user to overwrite files with the privileges of a different user who is running SageMath FlintQS, due to its reliance on pathnames under TMPDIR, which is typically...

5.5CVSS5.4AI score0.00245EPSS
Exploits1References13
Positive Technologies
Positive Technologiesadded 2023/04/05 12:0 a.m.5 views

PT-2023-22231

Name of the Vulnerable Software and Affected Versions LangChain versions 0.0.0 through 0.0.131 Description The issue allows prompt injection attacks that can execute arbitrary code via the Python exec method. This is specifically related to the LLMMathChain chain in LangChain. Recommendations For...

9.8CVSS9AI score0.39653EPSS
Exploits1References14
OSV
OSVadded 2023/03/31 12:44 a.m.8 views

USN-5990-1 musl vulnerabilities

It was discovered that musl did not handle certain i386 math functions properly. An attacker could use this vulnerability to cause a denial of service crash or possibly execute arbitrary code. This issue only affected Ubuntu 14.04 ESM, Ubuntu 16.04 ESM, and Ubuntu 18.04 LTS. CVE-2019-14697 It was...

9.8CVSS7.2AI score0.02548EPSS
Exploits1References3
Snyk
Snykadded 2023/03/26 7:38 a.m.3 views

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference in QuantizedMatMulWithBiasAndDequantize with MKL enabled. PoC import tensorflow as tf func = tf.rawops.QuantizedMatMulWithBiasAndDequantize para='a': tf.constant138, dtype=tf.quint8, 'b': tf.constant4,...

7.5CVSS7AI score0.00391EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2023/03/24 12:0 a.m.1 views

PT-2023-20232 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.12.0 TensorFlow versions prior to 2.11.1 Description: TensorFlow is an open source platform for machine learning. The issue is a null point error in QuantizedMatMulWithBiasAndDequantize with MKL enabled. A fix i...

7.5CVSS5.8AI score0.00391EPSS
Exploits0References9
RedHat Linux
RedHat Linuxadded 2023/03/15 7:58 p.m.88 views

Important: Red Hat Security Advisory: Red Hat OpenStack Platform (etcd) security update

An update for etcd is now available for Red Hat OpenStack Platform. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.5CVSS6.9AI score0.05623EPSS
Exploits5References13
Code423n4
Code423n4added 2023/03/15 12:0 a.m.11 views

Infinite mint via points underflow (in scope)

Lines of code Vulnerability details Impact Due to unchecked math in the withdrawLP function, a user can trigger an underflow in their points and infinitely increase their rewards. The problem exists in several places. Problem 1. The configureTimelockOptions function allows setting...

6.9AI score
Exploits0
Code423n4
Code423n4added 2023/03/15 12:0 a.m.6 views

share underflow in getPoolReward()

Lines of code Vulnerability details Impact It is important to draw attention to an issue that, while out of scope, can lead to a complete loss of funds on the contract and, therefore, seems significant. The configurePools function allows setting an arbitrary, unrestricted daoTax, which can result...

6.8AI score
Exploits0
Friends Of PHP
Friends Of PHPadded 2023/03/06 9:20 a.m.16 views

Infinite Loop vulnerability

Math/PrimeField.php in phpseclib has an infinite loop with composite primefields. This vulnerability was introduced in version 3.0.0, and has been patched in 3.0.19. The CVE for this issue originally identified the the vulnerable version as 2.x, however, the vulnerable functionality was not...

7.5CVSS7.3AI score0.00808EPSS
Exploits0Affected Software1
Github Security Blog
Github Security Blogadded 2023/03/03 6:30 a.m.60 views

phpseclib Infinite Loop vulnerability

Math/PrimeField.php in phpseclib has an infinite loop with composite primefields. This vulnerability was introduced in version 3.0.0, and has been patched in 3.0.19. The CVE for this issue originally identified the the vulnerable version as 2.x, however, the vulnerable functionality was not...

7.5CVSS7.3AI score0.00808EPSS
Exploits0References6Affected Software1
OSV
OSVadded 2023/03/03 6:30 a.m.103 views

GHSA-HM7P-R324-HHF3 phpseclib Infinite Loop vulnerability

Math/PrimeField.php in phpseclib has an infinite loop with composite primefields. This vulnerability was introduced in version 3.0.0, and has been patched in 3.0.19. The CVE for this issue originally identified the the vulnerable version as 2.x, however, the vulnerable functionality was not...

7.5CVSS7.3AI score0.00808EPSS
Exploits0References6
OSV
OSVadded 2023/03/03 6:15 a.m.10 views

CVE-2023-27560

Math/PrimeField.php in phpseclib 3.x before 3.0.19 has an infinite loop with composite primefields...

7.5CVSS7.7AI score
Exploits0References2
NVD
NVDadded 2023/03/03 6:15 a.m.13 views

CVE-2023-27560

Math/PrimeField.php in phpseclib 3.x before 3.0.19 has an infinite loop with composite primefields...

7.5CVSS7.4AI score0.00808EPSS
Exploits0References2
Cvelist
Cvelistadded 2023/03/03 12:0 a.m.18 views

CVE-2023-27560

Math/PrimeField.php in phpseclib 3.x before 3.0.19 has an infinite loop with composite primefields...

7.6AI score0.00808EPSS
Exploits0References2
UbuntuCve
UbuntuCveadded 2023/03/03 12:0 a.m.36 views

CVE-2023-27560

Math/PrimeField.php in phpseclib 3.x before 3.0.19 has an infinite loop with composite primefields...

7.5CVSS7.1AI score0.00808EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2023/03/03 12:0 a.m.4 views

PT-2023-21205 · Phpseclib · Phpseclib

Name of the Vulnerable Software and Affected Versions: phpseclib versions 3.0.0 through 3.0.18 Description: The issue is related to an infinite loop with composite primefields in the Math/PrimeField.php file. This was introduced in version 3.0.0 and has been patched in version 3.0.19...

7.5CVSS7.2AI score0.00808EPSS
Exploits0References27
CNNVD
CNNVDadded 2023/03/03 12:0 a.m.4 views

Terrafrost phpseclib 安全漏洞

Terrafrost phpseclib is a Terrafrost open source application. pure PHP implementation under the MIT license. A security vulnerability exists in Terrafrost phpseclib version 2.0.41 and earlier versions, which originates from an infinite loop with a compound prime field in the Math/PrimeField.php...

7.5CVSS7.2AI score0.00808EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2023/03/03 12:0 a.m.5 views

CVE-2023-27560

Math/PrimeField.php in phpseclib 3.x before 3.0.19 has an infinite loop with composite primefields...

7.2AI score0.00808EPSS
Exploits0References2
Debian CVE
Debian CVEadded 2023/03/03 12:0 a.m.24 views

CVE-2023-27560

Math/PrimeField.php in phpseclib 3.x before 3.0.19 has an infinite loop with composite primefields...

7.5CVSS7.5AI score0.00808EPSS
Exploits0
Rows per page
Query Builder