Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7683 matches found

OSV
OSVadded 2024/02/28 9:15 a.m.0 views

UBUNTU-CVE-2021-46996

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: Fix a memleak from userdata error path in new objects Release object name if userdata allocation fails...

5.5CVSS6.6AI score0.00036EPSS
Exploits0References7
Prion
Prionadded 2024/02/28 9:15 a.m.26 views

Design/Logic Flaw

In the Linux kernel, the following vulnerability has been resolved: mm: memcontrol: slab: fix obtain a reference to a freeing memcg Patch series "Use objcgroup APIs to charge kmem pages", v5. Since Roman's series "The new cgroup slab memory controller" applied. All slab objects are charged with t...

6.8AI score0.00019EPSS
Exploits0References4
Cvelist
Cvelistadded 2024/02/28 8:13 a.m.26 views

CVE-2021-46980 usb: typec: ucsi: Retrieve all the PDOs instead of just the first 4

In the Linux kernel, the following vulnerability has been resolved: usb: typec: ucsi: Retrieve all the PDOs instead of just the first 4 commit 4dbc6a4ef06d "usb: typec: ucsi: save power data objects in PD mode" introduced retrieval of the PDOs when connected to a PD-capable source. But only the...

6.4AI score0.00039EPSS
Exploits0References4
Debian CVE
Debian CVEadded 2024/02/28 8:13 a.m.22 views

CVE-2021-46980

In the Linux kernel, the following vulnerability has been resolved: usb: typec: ucsi: Retrieve all the PDOs instead of just the first 4 commit 4dbc6a4ef06d "usb: typec: ucsi: save power data objects in PD mode" introduced retrieval of the PDOs when connected to a PD-capable source. But only the...

7.1CVSS6.2AI score0.00039EPSS
Exploits0
NVD
NVDadded 2024/02/26 4:27 p.m.10 views

CVE-2023-30996

IBM Cognos Analytics 11.1.7, 11.2.4, and 12.0.0 could be vulnerable to information leakage due to unverified sources in messages sent between Windows objects of different origins. IBM X-Force ID: 254290...

5.3CVSS6.1AI score0.00073EPSS
Exploits0References4
OSV
OSVadded 2024/02/26 4:27 p.m.2 views

CVE-2023-30996

IBM Cognos Analytics 11.1.7, 11.2.4, and 12.0.0 could be vulnerable to information leakage due to unverified sources in messages sent between Windows objects of different origins. IBM X-Force ID: 254290...

5.3CVSS5.8AI score
Exploits0References4
Prion
Prionadded 2024/02/26 4:27 p.m.32 views

Information disclosure

IBM Cognos Analytics 11.1.7, 11.2.4, and 12.0.0 could be vulnerable to information leakage due to unverified sources in messages sent between Windows objects of different origins. IBM X-Force ID: 254290...

5CVSS6.3AI score0.00073EPSS
Exploits0References2
CVE
CVEadded 2024/02/24 3:35 p.m.102 views

CVE-2023-30996

CVE-2023-30996 affects IBM Cognos Analytics (versions 11.1.7, 11.2.4, 12.0.0) and describes information leakage due to unverified sources in inter-origin Windows object messages. The vulnerability is an information disclosure issue rather than remote code execution. Remediation is to upgrade to f...

5.3CVSS5AI score0.00073EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologiesadded 2024/02/24 12:0 a.m.2 views

PT-2024-12249 · Ibm +1 · Ibm Cognos Analytics +1

Name of the Vulnerable Software and Affected Versions: IBM Cognos Analytics versions 11.1.7 through 12.0.0 Description: The issue is related to information leakage due to unverified sources in messages sent between Windows objects of different origins. Recommendations: For IBM Cognos Analytics...

5.3CVSS6.4AI score0.00073EPSS
Exploits0References7
Github Security Blog
Github Security Blogadded 2024/02/22 9:36 p.m.14 views

User with ci:ReadAction permissions and write permissions to one path in a repository may copy objects from any path in the repository

Impact A bug in permissions validation allows a user with the ci:ReadAction permission to skip read checks when copying an object. If they additionally have read and write permission to path in the repository, they can copy an otherwise unreadable object and read it. In order to be affected and...

6.9AI score
Exploits0References3Affected Software1
Veracode
Veracodeadded 2024/02/21 11:26 a.m.29 views

Insecure Deserialization

org.apache.camel:camel-cassandraql is vulnerable to Insecure Deserialization. The vulnerability is due to insufficient validation of serialized objects, which can be exploited by attackers to execute arbitrary code...

9.8CVSS7.4AI score0.01348EPSS
Exploits1References2Affected Software1
Veracode
Veracodeadded 2024/02/21 10:1 a.m.28 views

Insecure Deserialisation

org.apache.camel:camel-sql is vulnerable to Insecure Deserialisation. The vulnerability is due to insufficient validation of serialized objects, which can be exploited by attackers to execute arbitrary code...

7.8CVSS7.4AI score0.11975EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTECadded 2024/02/20 12:0 a.m.1 views

The vulnerability of the application programming interface for accessing ActiveX Data Objects (ADO) on Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of the application programming interface for accessing ActiveX Data Objects ADO on Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS7.6AI score0.01901EPSS
Exploits0References3
VulnCheck KEV
VulnCheck KEVadded 2024/02/14 12:0 a.m.1 views

VulnCheck KEV: CVE-2020-6308

SAP BusinessObjects Business Intelligence Platform Web Services versions - 410, 420, 430, allows an unauthenticated attacker to inject arbitrary values as CMS parameters to perform lookups on the internal network which is otherwise not accessible externally. On successful exploitation, attacker...

5.3CVSS6.5AI score0.82056EPSS
Exploits3References1
NVD
NVDadded 2024/02/13 6:15 p.m.18 views

CVE-2024-21349

Microsoft ActiveX Data Objects Remote Code Execution Vulnerability...

8.8CVSS8.8AI score0.01901EPSS
Exploits0References1
OSV
OSVadded 2024/02/13 6:15 p.m.1 views

CVE-2024-21349

Microsoft ActiveX Data Objects Remote Code Execution Vulnerability...

8.8CVSS7.4AI score0.01901EPSS
Exploits0References1
Prion
Prionadded 2024/02/13 6:15 p.m.22 views

Remote code execution

Microsoft ActiveX Data Objects Remote Code Execution Vulnerability...

6.8CVSS7.5AI score0.01901EPSS
Exploits0References1Affected Software14
Vulnrichment
Vulnrichmentadded 2024/02/13 6:2 p.m.15 views

CVE-2024-21349 Microsoft ActiveX Data Objects Remote Code Execution Vulnerability

...

8.8CVSS8.7AI score0.01901EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/02/13 6:2 p.m.24 views

CVE-2024-21349 Microsoft ActiveX Data Objects Remote Code Execution Vulnerability

...

8.8CVSS8.8AI score0.01901EPSS
Exploits0References1
CVE
CVEadded 2024/02/13 6:2 p.m.243 views

CVE-2024-21349

Technical details for CVE-2024-21349 (Microsoft ActiveX Data Objects remote code execution) are not provided in the connected documents; no affected versions, root cause, impact, or remediation are cited. Monitor for updates.

8.8CVSS8.9AI score0.01901EPSS
Exploits0References1Affected Software14
Rows per page
Query Builder