Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

68 matches found

SUSE CVE
SUSE CVEadded 2026/03/19 12:30 a.m.0 views

SUSE CVE-2025-71270

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Enable exception fixup for specific ADE subcode This patch allows the LoongArch BPF JIT to handle recoverable memory access errors generated by BPFPROBEMEM instructions. When a BPF program performs memory access...

5.6AI score0.00017EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2019-16698

Malware in sbrugna...

6.5CVSS6.7AI score0.00754EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2018-13203

Malware in sbrugna...

6.5CVSS6.5AI score0.00421EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2017-4716

Malware in sbrugna...

7.8CVSS7.6AI score0.02288EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-1867

Malicious code in bioql PyPI...

7.5CVSS6.8AI score0.00611EPSS
Exploits1References8
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-4264

Malicious code in bioql PyPI...

6.5CVSS6.8AI score0.00591EPSS
Exploits1References12
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-1484

Malicious code in bioql PyPI...

5.5CVSS6.5AI score0.00049EPSS
Exploits0References5
Veracode
Veracodeadded 2025/07/21 5:41 a.m.3 views

Denial Of Service (DoS)

org.apache.cxf, cxf-core is vulnerable to Denial Of Service DoS. The vulnerability is due to a bug where large stream-based messages stored as temporary files are fully read into memory and logged, which allows an attacker to exploit this behavior to cause a denial-of-service DoS via an...

5.6CVSS5.6AI score0.0031EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blogadded 2025/07/15 3:31 p.m.4 views

Apache CXF is vulnerable to DoS attacks as entire files are read into memory and logged

Apache CXF stores large stream based messages as temporary files on the local filesystem. A bug was introduced which means that the entire temporary file is read into memory and then logged. An attacker might be able to exploit this to cause a denial of service attack by causing an out of memory...

5.6CVSS6.1AI score0.0031EPSS
Exploits0References6Affected Software1
Cvelist
Cvelistadded 2025/07/15 2:26 p.m.5 views

CVE-2025-48795 Apache CXF: Denial of Service and sensitive data exposure in logs

Apache CXF stores large stream based messages as temporary files on the local filesystem. A bug was introduced which means that the entire temporary file is read into memory and then logged. An attacker might be able to exploit this to cause a denial of service attack by causing an out of memory...

0.0031EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/07/15 2:26 p.m.3 views

CVE-2025-48795 Apache CXF: Denial of Service and sensitive data exposure in logs

Apache CXF stores large stream based messages as temporary files on the local filesystem. A bug was introduced which means that the entire temporary file is read into memory and then logged. An attacker might be able to exploit this to cause a denial of service attack by causing an out of memory...

6.2AI score0.0031EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 5:33 p.m.6 views

CVE-2020-27217

In Eclipse Hono version 1.3.0 and 1.4.0 the AMQP protocol adapter does not verify the size of AMQP messages received from devices. In particular, a device may send messages that are bigger than the max-message-size that the protocol adapter has indicated during link establishment. While the AMQP...

7.5CVSS6.7AI score0.00325EPSS
Exploits0
OpenVAS
OpenVASadded 2024/04/08 12:0 a.m.22 views

Huawei EulerOS: Security Advisory for giflib (EulerOS-SA-2024-1506)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.9AI score0.0081EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2024/01/23 12:0 a.m.41 views

Oracle Linux 9 : openssl (ELSA-2024-0310)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-0310 advisory. - AES-SIV cipher implementation contains a bug that causes it to ignore empty associated data entries CVE-2023-2975 Resolves: RHEL-5302 - Excessive time spent...

7.5CVSS6.5AI score0.06469EPSS
Exploits0References2
NVD
NVDadded 2023/10/25 6:17 p.m.35 views

CVE-2023-5363

Issue summary: A bug has been identified in the processing of key and initialisation vector IV lengths. This can lead to potential truncation or overruns during the initialisation of some symmetric ciphers. Impact summary: A truncation in the IV can result in non-uniqueness, which could result in...

7.5CVSS7.4AI score0.06469EPSS
Exploits0References14
Prion
Prionadded 2023/10/25 6:17 p.m.76 views

Design/Logic Flaw

Issue summary: A bug has been identified in the processing of key and initialisation vector IV lengths. This can lead to potential truncation or overruns during the initialisation of some symmetric ciphers. Impact summary: A truncation in the IV can result in non-uniqueness, which could result in...

5CVSS7.2AI score0.06469EPSS
Exploits0References8Affected Software2
Cvelist
Cvelistadded 2023/10/24 3:31 p.m.22 views

CVE-2023-5363 Incorrect cipher key & IV length processing

Issue summary: A bug has been identified in the processing of key and initialisation vector IV lengths. This can lead to potential truncation or overruns during the initialisation of some symmetric ciphers. Impact summary: A truncation in the IV can result in non-uniqueness, which could result in...

7.7AI score0.06469EPSS
Exploits0References3
Debian CVE
Debian CVEadded 2023/10/24 3:31 p.m.81 views

CVE-2023-5363

Issue summary: A bug has been identified in the processing of key and initialisation vector IV lengths. This can lead to potential truncation or overruns during the initialisation of some symmetric ciphers. Impact summary: A truncation in the IV can result in non-uniqueness, which could result in...

7.5CVSS6.8AI score0.06469EPSS
Exploits0
AlpineLinux
AlpineLinuxadded 2023/10/24 3:31 p.m.85 views

CVE-2023-5363

Issue summary: A bug has been identified in the processing of key and initialisation vector IV lengths. This can lead to potential truncation or overruns during the initialisation of some symmetric ciphers. Impact summary: A truncation in the IV can result in non-uniqueness, which could result in...

7.5CVSS7.7AI score0.06469EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2023/09/12 12:0 a.m.21 views

SUSE SLES12 Security Update : MozillaFirefox (SUSE-SU-2023:3559-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3559-1 advisory. - A website could have obscured the full screen notification by using the file open dialog. This could have led to user confusion a...

8.8CVSS8AI score0.00657EPSS
Exploits0References28
Rows per page
Query Builder