Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

Snyk
Snykadded 2026/04/10 9:10 p.m.2 views

Missing Write Protection for Parametric Data Values

Overview Affected versions of this package are vulnerable to Missing Write Protection for Parametric Data Values through improper sanitization of the destination path in the rename process. An attacker can overwrite files outside the intended root directory by supplying crafted destination paths...

7.7CVSS8.4AI score0.00318EPSS
Exploits1References2
EUVD
EUVDadded 2026/04/10 8:0 p.m.1 views

EUVD-2026-21589

goshs is Missing Write Protection for Parametric Data Values...

7.7CVSS5.8AI score0.00318EPSS
Exploits1References3
EUVD
EUVDadded 2026/01/28 3:33 p.m.5 views

EUVD-2025-206476

Shadow mode tracing code uses a set of per-CPU variables to avoid cumbersome parameter passing. Some of these variables are written to with guest controlled data, of guest controllable size. That size can be larger than the variable, and bounding of the writes was missing...

8.8CVSS6AI score0.00127EPSS
Exploits0References1
CVE
CVEadded 2025/12/24 1:6 p.m.8 views

CVE-2023-54089

CVE-2023-54089 : In the Linux kernel, the virtio_pmem path did not assign REQ_OP_WRITE for flush bios, causing submit_bio_noacct() to fail when flushing PMEM-backed devices (e.g., during mkfs.xfs). The root cause is that async_pmem_flush() allocated a flush bio without setting REQ_OP_WRITE, so th...

6.1AI score0.00173EPSS
Exploits0References3
CNNVD
CNNVDadded 2025/12/24 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a lack of REQOPWRITE in the flush bio, which could lead to a failed commit bio...

6.1AI score0.00173EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2025/09/23 1:2 p.m.2 views

CVE-2025-10184 OnePlus OxygenOS Telephony provider permission bypass

The vulnerability allows any application installed on the device to read SMS/MMS data and metadata from the system-provided Telephony provider without permission, user interaction, or consent. The user is also not notified that SMS data is being accessed. This could lead to sensitive information...

8.2CVSS6.8AI score0.0367EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2023/02/15 5:13 a.m.3 views

SUSE CVE-2015-7549

The MSI-X MMIO support in hw/pci/msix.c in QEMU aka Quick Emulator allows local guest OS privileged users to cause a denial of service NULL pointer dereference and QEMU process crash by leveraging failure to define the .write method...

6CVSS6.3AI score0.00377EPSS
Exploits0References15
OSV
OSVadded 2021/06/07 11:2 a.m.2 views

OESA-2021-1211 qemu security update

QEMU is a FAST! processor emulator using dynamic translation to achieve good emulation speed. Security Fixes: In QEMU 4.2.0, a MemoryRegionOps object may lack read/write callback methods, leading to a NULL pointer dereference.CVE-2020-15469...

2.3CVSS6.8AI score0.00425EPSS
Exploits0References2
Packet Storm
Packet Stormadded 2019/01/16 12:0 a.m.419 views

WebKit JSC JIT Use-After-Free

WebKit: JSC: JIT: GetIndexedPropertyStorage can GC CVE-2018-4442 The doesGC function simply takes a node, and tells if it might cause a garbage collection. This function is used to determine whether to insert write barriers. But it's missing some cases such as StringCharAt, StringCharCodeAt and...

0.05827EPSS
Exploits2
Rows per page
Query Builder