Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5 matches found

EUVD
EUVDadded 4 days ago6 views

EUVD-2025-210292

picklescan before 0.0.25 fails to detect malicious pickle files that use timeit.timeit in the reduce method, allowing remote code execution. Attackers can craft pickle files that import dangerous libraries like os and execute arbitrary system commands, which evade picklescan detection and execute...

7.6CVSS6.4AI score0.00418EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2026/02/18 7:30 p.m.4 views

CVE-2026-22208

OpenS100 the reference implementation S-100 viewer prior to commit 753cf29 contains a remote code execution vulnerability via an unrestricted Lua interpreter. The Portrayal Engine initializes Lua using luaLopenlibs without sandboxing or capability restrictions, exposing standard libraries such as...

9.6CVSS6.6AI score0.00924EPSS
Exploits0References1
NVD
NVDadded 2026/02/17 3:16 p.m.7 views

CVE-2026-22208

OpenS100 the reference implementation S-100 viewer prior to commit 753cf29 contains a remote code execution vulnerability via an unrestricted Lua interpreter. The Portrayal Engine initializes Lua using luaLopenlibs without sandboxing or capability restrictions, exposing standard libraries such as...

9.6CVSS0.00924EPSS
Exploits0References3
NVD
NVDadded 2014/07/07 11:1 a.m.17 views

CVE-2014-2967

Autodesk VRED Professional 2014 before SR1 SP8 allows remote attackers to execute arbitrary code via Python os library calls in Python API commands to the integrated web server...

10CVSS7.8AI score0.05073EPSS
Exploits0References1
CVE
CVEadded 2014/07/07 10:0 a.m.67 views

CVE-2014-2967

Autodesk VRED Pro 2014 (before SR1 SP8) is affected by an unauthenticated remote code execution via the built‑in web server’s Python API. An attacker can remotely execute arbitrary code by sending commands through the exposed Python API (using the os library) on the server (port 8888). Impact is ...

10CVSS8.1AI score0.05073EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder