Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

11954 matches found

RedHat Linux
RedHat Linuxadded 2026/06/08 1:12 p.m.8 views

Important: Red Hat Security Advisory: RHTAS 1.4 - GA Release of Model Transparency 1.0.1

The GA release of the RHTAS Model Transparency CLI image. For more details please visit the product documentation at https://access.redhat.com/documentation/en-us/redhattrustedartifactsigner/1.4 The RHTAS Model Transparency CLI image can be used to sign and verify AI/ML workloads...

9.8CVSS6.3AI score0.00525EPSS
Exploits0References7
RedhatCVE
RedhatCVEadded 2026/06/08 10:33 a.m.8 views

CVE-2026-3198

A flaw was found in MLflow. When configured with basic authentication, MLflow fails to enforce proper authorization checks for several Gateway API list endpoints. This oversight allows any authenticated user, regardless of their assigned permissions, to enumerate sensitive information such as...

6.5CVSS6.5AI score0.00208EPSS
Exploits1References4
ATTACKERKB
ATTACKERKBadded 2026/06/08 7:0 a.m.6 views

CVE-2026-11499

A vulnerability was determined in Tenda HG7HG9 and HG10 300001138enxpon. This affects the function formDOMAINBLK of the file /boaform/formDOMAINBLK. Executing a manipulation of the argument blkDomain can lead to stack-based buffer overflow. The attack may be performed from remote...

10CVSS8.5AI score0.00609EPSS
Exploits1References7
EUVD
EUVDadded 2026/06/08 6:30 a.m.9 views

EUVD-2026-35027

A vulnerability has been found in D-Link DCS-5615 1.01.00. Affected by this vulnerability is an unknown functionality of the file /etc/conf.d/boa/boa.conf of the component Boa Webserver. Such manipulation leads to least privilege violation. The attack can be executed remotely. The exploit has bee...

6.9CVSS5.4AI score0.00432EPSS
Exploits0References6
GithubExploit
GithubExploitadded 2026/06/08 6:19 a.m.45 views

janus-security-platform

Agentic Security Platform Payments-domain SAST + autonomous P...

6AI score
Exploits0
Vulnrichment
Vulnrichmentadded 2026/06/08 1:0 a.m.6 views

CVE-2026-11474 Kushan2k student-management-system Registration Endpoint RegisterService.php unrestricted upload

A security flaw has been discovered in Kushan2k student-management-system up to f16a4ceaddd6729c4b306ed4641cda3176c1ef2a. Affected is an unknown function of the file service/RegisterService.php of the component Registration Endpoint. Performing a manipulation of the argument stimg results in...

7.5CVSS6.8AI score0.00288EPSS
Exploits0References6
OSV
OSVadded 2026/06/08 12:2 a.m.3 views

OSV-2026-879 Heap-use-after-free in lsr_restore_base

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=520664955 Crash type: Heap-use-after-free READ 8 Crash state: lsrrestorebase lsrreadpolygon lsrreadscenecontentmodel...

5.4AI score
Exploits0References1
Packet Storm News
Packet Storm Newsadded 2026/06/08 12:0 a.m.6 views

Model Poisoning against Federated Model Adaptation with Chain of Bit-Flips

Federated Learning FL allows a set of clients to collectively train a global model without sharing local training data. Giving the responsibility of the training to decentralized actors may lead to poisoning attacks: clients controlled by malicious third party potentially poison the training...

5.5AI score
Exploits0
Packet Storm News
Packet Storm Newsadded 2026/06/08 12:0 a.m.4 views

RECON: An LLM-Enhanced Backward Constraint Analysis Framework

While traditional techniques, such as symbolic execution, provide a principled foundation for precise constraint reasoning in program analysis, they struggle to scale to modern software systems mainly due to path explosion, the need for function modeling, and the loss of semantic intent at...

5.8AI score
Exploits0
Packet Storm News
Packet Storm Newsadded 2026/06/08 12:0 a.m.3 views

RadKey: An LLM-Guided RF Backscatter System for Through-Wall Keystroke Inference

In today's digitally connected world, keyboards remain the primary interface for inputting sensitive information, making them a persistent target for eavesdropping attacks. While prior keystroke inference techniques have exploited side-channel signals such as acoustics and vibrations, they...

5.6AI score
Exploits0
Packet Storm News
Packet Storm Newsadded 2026/06/08 12:0 a.m.11 views

Customization under Fire: Plugin Poisoning in Text-To-Image Ecosystem

The prosperity of text-to-image T2I models has fostered a vibrant share-and-play ecosystem centered on Low-Rank Adaptation LoRA plugins, which allow users to customize and share model capabilities with ease. This democratization, however, comes with a hidden but severe security risk. Malicious...

5.5AI score
Exploits0
Packet Storm News
Packet Storm Newsadded 2026/06/08 12:0 a.m.8 views

Steganography without Modification: Hidden Communication Via LLM Seeds

We demonstrate that widely deployed Large Language Model LLM inference stacks harbor a steganographic channel that requires no modification to model weights, sampling code, or output distributions. The channel exploits a structural property of deterministic decoding: pseudo-random number generato...

5.5AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2026/06/08 12:0 a.m.7 views

TencentOS Server 4: python-django (TSSA-2026:0341)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2026:0341 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

9.8CVSS5.5AI score0.00458EPSS
Exploits0References2
GithubExploit
GithubExploitadded 2026/06/07 9:38 p.m.57 views

ps4-1350-poc

...

5.4AI score
Exploits0
RedhatCVE
RedhatCVEadded 2026/06/07 8:58 p.m.14 views

CVE-2026-4944

vllm-project/vllm version 0.14.1 contains a vulnerability where the trustremotecode=True parameter is hardcoded in two model implementation files vllm/modelexecutor/models/nemotronvl.py and vllm/modelexecutor/models/kimik25.py. This bypasses the user's explicit --trust-remote-code=False setting,...

8.8CVSS8.3AI score0.00747EPSS
Exploits0References1
OSV
OSVadded 2026/06/07 7:24 p.m.5 views

MINI-MHJ4-RC4R-698M

Bulletin has no description...

7.5CVSS5.2AI score0.00378EPSS
Exploits0
OSV
OSVadded 2026/06/07 7:24 p.m.7 views

MINI-R98Q-234X-WR36

Bulletin has no description...

7.5CVSS5.2AI score0.00276EPSS
Exploits0
OSV
OSVadded 2026/06/07 7:24 p.m.2 views

MINI-689F-689Q-65Q5

Bulletin has no description...

9.1CVSS5.2AI score0.00313EPSS
Exploits0
OSV
OSVadded 2026/06/07 7:24 p.m.3 views

MINI-M8MV-VWP7-6J95

Bulletin has no description...

5.3CVSS5.2AI score0.00208EPSS
Exploits0
OSV
OSVadded 2026/06/07 7:24 p.m.5 views

MINI-V378-HPC8-2VP4

Bulletin has no description...

9.1CVSS5.2AI score0.0033EPSS
Exploits0
Rows per page
Query Builder