Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2543 matches found

Tenable Nessus
Tenable Nessusadded 2019/05/28 12:0 a.m.25 views

SUSE SLED15 / SLES15 Security Update : python3 (SUSE-SU-2019:1352-1)

This update for python3 to version 3.6.8 fixes the following issues : Security issue fixed : CVE-2019-9947: Fixed an issue in urllib2 which allowed CRLF injection if the attacker controls a url parameter bsc1130840. Non-security issue fixed: Fixed broken debuginfo packages by switching off LTO an...

6.1CVSS7.3AI score0.01161EPSS
Exploits1References5
Tenable Nessus
Tenable Nessusadded 2019/05/28 12:0 a.m.31 views

openSUSE Security Update : systemd (openSUSE-2019-1450)

This update for systemd fixes the following issues : Security issues fixed : - CVE-2018-6954: Fixed a vulnerability in the symlink handling of systemd-tmpfiles which allowed a local user to obtain ownership of arbitrary files bsc1080919. - CVE-2019-3842: Fixed a vulnerability in pamsystemd which...

7.8CVSS6.3AI score0.00145EPSS
Exploits5References14
UbuntuCve
UbuntuCveadded 2019/05/23 8:29 p.m.28 views

CVE-2019-5791

Inappropriate optimization in V8 in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page...

8.8CVSS7AI score0.01646EPSS
Exploits0References2
0day.today
0day.todayadded 2019/05/21 12:0 a.m.102 views

macOS < 10.14.5 / iOS < 12.3 JavaScriptCore - AIR Optimization Incorrectly Removes Assignment

macOS 10.14.5 / iOS 12.3 JavaScriptCore - AIR Optimization Incorrectly Removes Assignment to Register While fuzzing JavaScriptCore, I encountered the following JavaScript program which crashes jsc from current HEAD git commit 3c46422e45fef2de6ff13b66cd45705d63859555 in debug and release builds...

8.8CVSS8.3AI score0.2418EPSS
Exploits1
exploitpack
exploitpackadded 2019/05/21 12:0 a.m.22 views

Apple macOS 10.14.5 iOS 12.3 JavaScriptCore - AIR Optimization Incorrectly Removes Assignment to Register

Apple macOS 10.14.5 iOS 12.3 JavaScriptCore - AIR Optimization Incorrectly Removes Assignment to Register While fuzzing JavaScriptCore, I encountered the following JavaScript program which crashes jsc from current HEAD git commit 3c46422e45fef2de6ff13b66cd45705d63859555 in debug and release build...

0.3AI score
Exploits0
Exploit DB
Exploit DBadded 2019/05/21 12:0 a.m.163 views

Apple macOS &lt; 10.14.5 / iOS &lt; 12.3 JavaScriptCore - AIR Optimization Incorrectly Removes Assignment to Register

While fuzzing JavaScriptCore, I encountered the following JavaScript program which crashes jsc from current HEAD git commit 3c46422e45fef2de6ff13b66cd45705d63859555 in debug and release builds ./Tools/Scripts/build-jsc --jsc-only --debug or --release: // Run with --useConcurrentJIT=false...

7.4AI score
Exploits0
Schneier on Security
Schneier on Securityadded 2019/05/16 2:28 p.m.60 views

Another Intel Chip Flaw

Remember the Spectre and Meltdown attacks from last year? They were a new class of attacks against complex CPUs, finding subliminal channels in optimization techniques that allow hackers to steal information. Since their discovery, researchers have found additional similar vulnerabilities. A whol...

1.6AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2019/05/16 12:0 a.m.25 views

Fedora 30 : php-pecl-imagick (2019-488d0f9a4b)

Version 3.4.4 - The 3.4.4 release is intended to be the last release other than small bug fixes that will support either PHP 5.x, or ImageMagick 6.x. The next planned release will be PHP 7.0 and ImageMagick 7.0 at least, if not higher. - Added: - function Imagick::optimizeImageTransparency -...

9.8CVSS7AI score0.01299EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2019/05/16 12:0 a.m.28 views

Fedora 28 : php-pecl-imagick (2019-9448fa46f3)

Version 3.4.4 - The 3.4.4 release is intended to be the last release other than small bug fixes that will support either PHP 5.x, or ImageMagick 6.x. The next planned release will be PHP 7.0 and ImageMagick 7.0 at least, if not higher. - Added: - function Imagick::optimizeImageTransparency -...

9.8CVSS7AI score0.01299EPSS
Exploits0References2
RedHat Linux
RedHat Linuxadded 2019/05/14 8:45 p.m.99 views

Important: Red Hat Security Advisory: qemu-kvm-rhev security update

An update for qemu-kvm-rhev is now available for Red Hat OpenStack Platform 14.0 Rocky. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

5.9CVSS7AI score0.01697EPSS
Exploits0References6
RedHat Linux
RedHat Linuxadded 2019/05/14 7:28 p.m.0 views

hardware: Microarchitectural Store Buffer Data Sampling (MSBDS)

Modern Intel microprocessors implement hardware-level micro-optimizations to improve the performance of writing data back to CPU caches. The write operation is split into STA STore Address and STD STore Data sub-operations. These sub-operations allow the processor to hand-off address generation...

5.6CVSS6.9AI score0.00515EPSS
Exploits0References6
Citrix
Citrixadded 2019/05/14 12:0 a.m.4 views

Codec H.265 not working in HDX session

H.265 not getting utilized in the HDX session with the below settings: Followed the link: https://docs.citrix.com/en-us/receiver/windows/current-release/improve/h-265-video-encoding.html Studio Policy set: 1. Graphic Status indicator - Disabled 2. Moving Image Compression - Disabled 3. Optimize...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2019/05/14 12:0 a.m.49 views

RHEL 6 : qemu-kvm (RHSA-2019:1181)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:1181 advisory. Kernel-based Virtual Machine KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide th...

5.9CVSS7.1AI score0.01697EPSS
Exploits0References11
GoogleProjectZero
GoogleProjectZeroadded 2019/05/10 12:0 a.m.10 views

Trashing the Flow of Data

Posted by Stephen Röttger In this blog post I want to present crbug.com/944062, a vulnerability in Chrome’s JavaScript compiler TurboFan that was discovered independently by Samuel saelo@ via fuzzing with fuzzilli, and by myself via manual code auditing. The bug was found in beta and was fixed...

7.7AI score
Exploits0
Veracode
Veracodeadded 2019/05/02 5:39 a.m.40 views

Denial Of Service (DoS)

The kernel-rt packages contain the Linux kernel, the core of any Linux operating system. It was found that the Linux kernel's implementation of vectored pipe read and write functionality did not take into account the I/O vectors that were already processed when retrying after a failed atomic acce...

5.5CVSS6.6AI score0.09009EPSS
Exploits4References12Affected Software1
Akamai Blog
Akamai Blogadded 2019/04/25 4:0 p.m.27 views

How Credit Unions Can Optimize & Secure the Mobile App Experience

A small army of digital natives are about to become the largest generation globally. Gen Z, those born after 1996, will account for 32% of the world's population 7.7 billion in 2019 and outnumber millennials for the first time, according to World Economic Forum. This year, it will be critical for...

7.7AI score
Exploits0
BDU FSTEC
BDU FSTECadded 2019/04/12 12:0 a.m.0 views

The vulnerability of Google Chrome, related to improper input data validation, allows a hacker to execute arbitrary code.

The vulnerability of Google Chrome is related to an incorrect optimization assumption in the V8 module. Exploiting this vulnerability allows a remote attacker to execute arbitrary code in a isolated software environment, using a specially created HTML page...

8.8CVSS8.5AI score0.74826EPSS
Exploits2References4Affected Software2
RedHat Linux
RedHat Linuxadded 2019/04/08 7:48 a.m.3 views

chromium-browser: Type confusion in V8

Inappropriate optimization in V8 in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page...

8.8CVSS7.4AI score0.01646EPSS
Exploits0References5
Jake Archibald's Blog
Jake Archibald's Blogadded 2019/03/19 12:0 p.m.180 views

Who has the fastest website in F1?

I was trying to make my predictions for the new Formula One season by studying the aerodynamics of the cars, their cornering speeds, their ability to run with different amounts of fuel. Then it hit me: I have no idea what I'm doing. So, I'm going to make my predictions the only way I know how: By...

6.7AI score
Exploits0
Fedora
Fedoraadded 2019/03/16 7:17 p.m.24 views

[SECURITY] Fedora 29 Update: advancecomp-2.1-9.fc29

AdvanceCOMP is a set of recompression utilities for .PNG, .MNG and .ZIP fil es. The main features are : Recompress ZIP, PNG and MNG files using the Deflate 7-Zip implementation. Recompress MNG files using Delta and Move optimization. This package contains: advzip - Recompression and test utility...

7.8CVSS1.8AI score0.00312EPSS
Exploits1
Rows per page
Query Builder