Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4506 matches found

Positive Technologies
Positive Technologiesadded 2021/08/11 12:0 a.m.2 views

PT-2021-6503 · Unknown +1 · Tinyobjloader +1

Name of the Vulnerable Software and Affected Versions: tinyobjloader versions v2.0-rc1 through development commit 79d4421 Description: An improper array index validation issue exists in the LoadObj functionality, allowing a specially crafted file to potentially lead to code execution. An attacker...

9.6CVSS8.7AI score0.0188EPSS
Exploits1References13
OSV
OSVadded 2021/08/10 8:15 p.m.1 views

CVE-2021-29296

Null Pointer Dereference vulnerability in D-Link DIR-825 2.10b02, which could let a remote malicious user cause a denial of service. The vulnerability could be triggered by sending an HTTP request with URL /vctwan; the sbin/httpd would invoke the strchr function and take NULL as a first argument,...

7.5CVSS7.1AI score0.01127EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2021/08/10 12:0 a.m.2 views

PT-2021-4039 · Microsoft · Windows Digital Tv Tuner Device Registration Application +1

Name of the Vulnerable Software and Affected Versions: Windows Digital TV Tuner device registration application affected versions not specified Description: The issue is related to insufficient access restrictions in the Windows Digital TV Tuner device registration application, which can be...

7.8CVSS7.2AI score0.00457EPSS
Exploits0References7
Positive Technologies
Positive Technologiesadded 2021/08/10 12:0 a.m.2 views

PT-2021-18162 · D Link · D-Link Dsp-W215

Name of the Vulnerable Software and Affected Versions: D-Link DSP-W215 version 1.10 Description: A Null Pointer Dereference issue exists, which could allow a remote malicious user to cause a denial of service via usr/bin/lighttpd. This can be triggered by sending an HTTP request without a URL in...

7.5CVSS6.8AI score0.01127EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2021/08/10 12:0 a.m.2 views

PT-2021-3826 · Microsoft · Windows Bluetooth Driver +1

Name of the Vulnerable Software and Affected Versions: Windows Bluetooth Driver affected versions not specified Description: The issue is related to insufficient access control in the Windows Bluetooth Driver, which can be exploited to elevate privileges. This could allow an attacker to affect th...

8CVSS7.2AI score0.00431EPSS
Exploits0References8
Positive Technologies
Positive Technologiesadded 2021/08/10 12:0 a.m.5 views

PT-2021-18161 · D Link · D-Link Dsl-2740E

Name of the Vulnerable Software and Affected Versions: D-Link DSL-2740R version UK 1.01 Description: A Null Pointer Dereference issue exists, which could allow a remote malicious user to cause a denial of service via the send hnap unauthorized function. This can be triggered by sending a crafted...

7.5CVSS7.2AI score0.01127EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2021/08/10 12:0 a.m.4 views

PT-2021-6722 · Cacti · Cacti

Name of the Vulnerable Software and Affected Versions: Cacti version 1.2.12 Description: The issue is related to multiple Cross Site Scripting XSS vulnerabilities in several components of the Cacti network monitoring tool, including reports admin.php, data queries.php, data input.php, graph...

9.8CVSS6.8AI score0.99826EPSS
Exploits79References71
Positive Technologies
Positive Technologiesadded 2021/07/28 12:0 a.m.3 views

PT-2021-5452 · Foxit · Foxit Pdf Reader +1

Name of the Vulnerable Software and Affected Versions: Foxit PDF Reader affected versions not specified Foxit PhantomPDF affected versions not specified Description: This issue allows remote attackers to disclose sensitive information on affected installations. User interaction is required, where...

10CVSS7.8AI score0.0032EPSS
Exploits0References9
Positive Technologies
Positive Technologiesadded 2021/07/25 12:0 a.m.2 views

PT-2021-5251 · Foxit · Foxit Reader +2

Name of the Vulnerable Software and Affected Versions: Foxit PDF Editor affected versions not specified Foxit PhantomPDF affected versions not specified Foxit Reader affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations...

10CVSS7.9AI score0.00349EPSS
Exploits0References8
Rapid7 Blog
Rapid7 Blogadded 2021/07/21 4:1 p.m.571 views

Microsoft SAM File Readability CVE-2021-36934: What You Need to Know

On Monday, July 19, 2021, community security researchers began reporting that the Security Account Manager SAM file on Windows 10 and 11 systems was READ-enabled for all local users. The SAM file is used to store sensitive security information, such as hashed user and admin passwords. READ...

4.6CVSS0.9AI score0.67252EPSS
Exploits11
Positive Technologies
Positive Technologiesadded 2021/07/14 12:0 a.m.4 views

PT-2021-7654

Name of the Vulnerable Software and Affected Versions SonicWall Secure Remote Access SRA appliances versions 8.x through 9.0.0.9-26sv Description The issue is related to improper neutralization of a SQL command, leading to a SQL injection vulnerability. This vulnerability impacts end-of-life Secu...

10CVSS7.2AI score0.30084EPSS
Exploits0References13
Positive Technologies
Positive Technologiesadded 2021/07/13 12:0 a.m.2 views

PT-2021-4155 · Microsoft · Windows Dns Server +1

Name of the Vulnerable Software and Affected Versions: Windows DNS Server affected versions not specified Description: The issue is related to incorrect code generation management in the Windows DNS Server component, allowing remote attackers to execute arbitrary code and affect the system...

8.8CVSS9AI score0.02084EPSS
Exploits1References8
ATTACKERKB
ATTACKERKBadded 2021/06/29 12:0 a.m.92 views

CVE-2021-35941

Western Digital WD My Book Live 2.x and later and WD My Book Live Duo all versions have an administrator API that can perform a system factory restore without authentication, as exploited in the wild in June 2021, a different vulnerability than CVE-2018-18472. Recent assessments: gwillcox-r7 at...

10CVSS8.8AI score0.30284EPSS
In wildExploits1References3
Positive Technologies
Positive Technologiesadded 2021/06/22 12:0 a.m.2 views

PT-2021-10740 · Unknown · Phpgurukul Hospital Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Hospital Management System in PHP version 4.0 Description: The issue concerns a SQL injection vulnerability located in the hmsadminbetweendates-detailsreports.php file. This vulnerability can be exploited by remote unauthenticated...

7.5CVSS7.6AI score0.02188EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2021/06/08 12:0 a.m.2 views

PT-2021-3269 · Microsoft · Sharepoint Server +1

Name of the Vulnerable Software and Affected Versions: Microsoft SharePoint Server affected versions not specified Microsoft SharePoint Foundation affected versions not specified Microsoft SharePoint Enterprise Server affected versions not specified Description: The vulnerability is related to a...

8.8CVSS7.5AI score0.02962EPSS
Exploits0References17
Positive Technologies
Positive Technologiesadded 2021/06/02 12:0 a.m.6 views

PT-2021-19379 · Opentext · Opentext Brava! Desktop

Name of the Vulnerable Software and Affected Versions: OpenText Brava! Desktop version 16.6.3.84 Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a malicious file...

7.8CVSS7.8AI score0.01419EPSS
Exploits0References6
Positive Technologies
Positive Technologiesadded 2021/06/02 12:0 a.m.3 views

PT-2021-19365 · Opentext · Opentext Brava! Desktop

Name of the Vulnerable Software and Affected Versions: OpenText Brava! Desktop version 16.6.3.84 Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a malicious file...

7.8CVSS7.8AI score0.01419EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2021/06/02 12:0 a.m.3 views

PT-2021-19378 · Opentext · Opentext Brava! Desktop

Name of the Vulnerable Software and Affected Versions: OpenText Brava! Desktop version 16.6.3.84 Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a malicious file...

7.8CVSS8AI score0.01419EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2021/06/02 12:0 a.m.4 views

PT-2021-19360 · Opentext · Opentext Brava! Desktop

Name of the Vulnerable Software and Affected Versions: OpenText Brava! Desktop version 16.6.3.84 Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a malicious file...

7.8CVSS7.8AI score0.01419EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2021/06/02 12:0 a.m.2 views

PT-2021-19359 · Opentext · Opentext Brava! Desktop

Name of the Vulnerable Software and Affected Versions: OpenText Brava! Desktop version 16.6.3.84 Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a malicious file...

7.8CVSS7.8AI score0.01419EPSS
Exploits0References4
Rows per page
Query Builder