Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OSV
OSVadded 2024/07/12 1:15 p.m.0 views

DEBIAN-CVE-2024-40907

In the Linux kernel, the following vulnerability has been resolved: ionic: fix kernel panic in XDPTX action In the XDPTX path, ionic driver sends a packet to the TX path with rx page and corresponding dma address. After tx is done, ionictxclean frees that page. But RX ring buffer isn't reset to...

5.5CVSS5.9AI score0.00017EPSS
Exploits0References1
CNNVD
CNNVDadded 2024/07/02 12:0 a.m.3 views

Aimeos Security Breach

Aimeos is an open source e-commerce framework for online stores open-sourced by Aimeos. Aimeos has a security vulnerability that stems from ai-controller-frontend not resetting the payment status of a user's shopping cart after the user completes a purchase. The affected versions are as follows:...

5.3CVSS6.8AI score0.00667EPSS
Exploits0References7
Positive Technologies
Positive Technologiesadded 2024/07/02 12:0 a.m.2 views

PT-2024-28450 · Aimeos · Ai-Controller-Frontend

Name of the Vulnerable Software and Affected Versions: aimeos/ai-controller-frontend versions prior to 2024.04.2 aimeos/ai-controller-frontend versions prior to 2023.10.9 aimeos/ai-controller-frontend versions prior to 2022.10.8 aimeos/ai-controller-frontend versions prior to 2021.10.8...

5.3CVSS6.8AI score0.00667EPSS
Exploits0References13
Positive Technologies
Positive Technologiesadded 2022/09/16 12:0 a.m.2 views

PT-2022-33594 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.2 Description: The issue is related to the arm64 kernel and the Memory Tagging Extension MTE. It involves the page tag in page-flags not being reset properly. The actual impact and potential for attack hav...

7.2AI score
Exploits0References1
Positive Technologies
Positive Technologiesadded 2020/07/01 12:0 a.m.1 views

PT-2020-13163 · Envoy · Envoy

Name of the Vulnerable Software and Affected Versions: Envoy versions 1.14.2, 1.13.2, 1.12.4 or earlier Description: The issue arises when an HTTP/2 client requests a large payload but fails to send sufficient window updates to consume the entire stream and does not reset the stream, leading to...

7.5CVSS7.4AI score0.00786EPSS
Exploits1References17
OSV
OSVadded 2019/07/08 1:15 a.m.2 views

CVE-2019-13402

/usr/sbin/default.sh and /usr/apache/htdocs/cgi-bin/admin/hardfactorydefault.cgi on Dynacolor FCM-MB40 v1.2.0.0 devices implement an incomplete factory-reset process. A backdoor can persist because neither system accounts nor the set of services is reset...

8.8CVSS7.3AI score
Exploits0References1
RedHat Linux
RedHat Linuxadded 2018/08/27 8:35 a.m.4 views

postgresql: Certain host connection parameters defeat client-side security defenses

A vulnerability was found in libpq, the default PostgreSQL client library where libpq failed to properly reset its internal state between connections. If an affected version of libpq were used with "host" or "hostaddr" connection parameters from untrusted input, attackers could bypass client-side...

8.5CVSS7.3AI score0.01753EPSS
Exploits0References5
Rows per page
Query Builder