Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

13 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2014-3649

Malware in sbrugna...

5CVSS6.4AI score0.00266EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2016-7714

Malware in sbrugna...

9.8CVSS9.2AI score0.03197EPSS
Exploits0References8
EUVD
EUVDadded 2025/10/07 12:30 a.m.0 views

EUVD-2013-6274

Malware in sbrugna...

5CVSS6.4AI score0.0028EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2014-4542

Malware in sbrugna...

5CVSS6AI score0.0075EPSS
Exploits0References13
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2013-6294

Malware in sbrugna...

4.3CVSS6AI score0.00456EPSS
Exploits0References9
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-3483

Malicious code in bioql PyPI...

5.9CVSS6.2AI score0.00942EPSS
Exploits0References13
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-4542

Malicious code in bioql PyPI...

9.1CVSS9.1AI score0.00965EPSS
Exploits0References10
OSV
OSVadded 2025/05/08 5:16 p.m.6 views

CVE-2025-44021

OpenStack Ironic before 29.0.1 can write unintended files to a target node disk during image handling if a deployment was performed via the API. A malicious project assigned as a node owner can provide a path to any local file readable by ironic-conductor, which may then be written to the target...

6.4AI score
Exploits0References3
OSV
OSVadded 2022/05/13 1:46 a.m.5 views

GHSA-6XC7-4CX8-J3XC OpenStack Nova-LXD bypass security restrictions

OpenStack Nova-LXD before 13.1.1 uses the wrong name for the veth pairs when applying Neutron security group rules for instances, which allows remote attackers to bypass intended security restrictions...

8.7CVSS7.5AI score0.02467EPSS
Exploits0References8
OSV
OSVadded 2022/04/22 12:24 a.m.6 views

GHSA-VCMV-6RXX-FH7R OpenStack Nova Exposure of Sensitive Information to an Unauthorized Actor

OpenStack Nova before 2012.1 allows someone with access to an EC2ACCESSKEY equivalent to a username to obtain the EC2SECRETKEY equivalent to a password. Exposing the EC2ACCESSKEY via http or tools that allow man-in-the-middle over https could allow an attacker to easily obtain the EC2SECRETKEY. A...

5.9CVSS5.5AI score0.00408EPSS
Exploits1References8
OSV
OSVadded 2017/08/18 2:29 p.m.3 views

CVE-2017-12440

Aodh as packaged in Openstack Ocata and Newton before change-ID I8fd11a7f9fe3c0ea5f9843a89686ac06713b7851 and before Pike-rc1 does not verify that trust IDs belong to the user when creating alarm action with the scheme trust+http, which allows remote authenticated users with knowledge of trust ID...

7.5CVSS7.2AI score
Exploits0References8
OSV
OSVadded 2016/12/09 8:59 p.m.4 views

CVE-2016-6829

The trove service user in 1 Openstack deployment aka crowbar-openstack and 2 Trove Barclamp aka barclamp-trove and crowbar-barclamp-trove in the Crowbar Framework has a default password, which makes it easier for remote attackers to obtain access via unspecified vectors...

9.8CVSS9.2AI score0.03197EPSS
Exploits0References6
OSV
OSVadded 2014/10/02 2:55 p.m.2 views

CVE-2014-7144

OpenStack keystonemiddleware formerly python-keystoneclient 0.x before 0.11.0 and 1.x before 1.2.0 disables certification verification when the "insecure" option is set in a paste configuration paste.ini file regardless of the value, which allows remote attackers to conduct man-in-the-middle...

6AI score
Exploits0References8
Rows per page
Query Builder