CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSSF Malicious Packages•added 2025/09/26 9:37 a.m.•2 views

Malicious code in native-preview (npm)

--- -= Per source details. Do not edit below this line.=-...

OSV•added 2025/09/26 9:37 a.m.•1 views

MAL-2025-47693 Malicious code in native-preview (npm)

--- -= Per source details. Do not edit below this line.=-...

Trend Micro Simply Security•added 2025/09/26 12:0 a.m.•1 views

CNAPP is the Solution to Multi-cloud Flexibility

Cloud-native application protection platform CNAPP not only helps organizations protect, but offers the flexibility of multi-cloud...

Trend Micro Simply Security•added 2025/09/26 12:0 a.m.•4 views

Cloud Security in the CNAPP Era: Eight Important Takeaways

Eight takeaways on why Trend Vision One™ embodies the best of today’s CNAPP vision. Includes insights from 2025 Gartner® Market Guide for CNAPP...

OSSF Malicious Packages•added 2025/09/25 4:10 a.m.•1 views

Malicious code in checkout-sheet-kit-react-native (npm)

The package checkout-sheet-kit-react-native was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 54397e8e5f2da7ea785328f6913d946c6a1a7daaab2b703580781f80f4e19726 Any computer that has this package installed or running should be...

6.9AI score

Exploits0References3

Snyk•added 2025/09/25 4:10 a.m.•1 views

Malicious Package

Overview checkout-sheet-kit-react-native is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and th...

OSV•added 2025/09/25 4:10 a.m.•2 views

MAL-2025-47549 Malicious code in checkout-sheet-kit-react-native (npm)

6.9AI score

Exploits0References3

Trend Micro Simply Security•added 2025/09/19 12:0 a.m.•2 views

How AI-Native Development Platforms Enable Fake Captcha Pages

Cybercriminals are abusing AI-native platforms like Vercel, Netlify, and Lovable to host fake captcha pages that deceive users, bypass detection, and drive phishing campaigns...

HackRead•added 2025/09/16 12:0 p.m.•3 views

Seraphic Browser-Native Protection Now Available for Purchase on the CrowdStrike Marketplace

Las Vegas, United States, 16th September 2025, CyberNewsWire...

Snyk•added 2025/09/15 4:58 a.m.•1 views

Malicious Package

Overview optional-native-module is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this packag...

Snyk•added 2025/09/15 2:26 a.m.•3 views

Malicious Package

Overview react-native-httpapi is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

Snyk•added 2025/09/15 2:26 a.m.•1 views

Malicious Package

Overview react-native-wm-weighingscale is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

Snyk•added 2025/09/15 2:26 a.m.•2 views

Malicious Package

Overview react-native-wm-barcode is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this packa...

Schneier on Security•added 2025/09/12 9:4 p.m.•5 views

A Cyberattack Victim Notification Framework

Interesting analysis: When cyber incidents occur, victims should be notified in a timely manner so they have the opportunity to assess and remediate any harm. However, providing notifications has proven a challenge across industry. When making notifications, companies often do not know the true...

6.9AI score

The Hacker News•added 2025/09/12 8:0 a.m.•5 views

Cloud-Native Security in 2025: Why Runtime Visibility Must Take Center Stage

The security landscape for cloud-native applications is undergoing a profound transformation. Containers, Kubernetes, and serverless technologies are now the default for modern enterprises, accelerating delivery but also expanding the attack surface in ways traditional security models can't keep ...

7.1AI score

RedhatCVE•added 2025/09/11 3:19 a.m.•13 views

CVE-2025-42933

When a user logs in via SAP Business One native client, the SLD backend service fails to enforce proper encryption of certain APIs. This leads to exposure of sensitive credentials within http response body. As a result, it has a high impact on the confidentiality, integrity, and availability of t...

8.8CVSS6.5AI score0.00257EPSS

Exploits0References1

Tenable Nessus•added 2025/09/10 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2015-1528

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in the nativehandlecreate function in libcutils/nativehandle.c in Android before 5.1.1 LMY48M allows attackers to obtain a different...

9.3CVSS5.6AI score0.02742EPSS