Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

75 matches found

ATTACKERKB
ATTACKERKBadded yesterday2 views

CVE-2026-42127

The public dashboard query endpoint does not limit request body size before processing, allowing unauthenticated attackers to trigger excessive memory allocation by sending arbitrarily large JSON payloads. This can lead to denial of service through memory exhaustion. No valid dashboard access tok...

7.5CVSS5.9AI score
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessusadded 3 days ago5 views

Linux Distros Unpatched Vulnerability : CVE-2026-48990

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - joserfc is a Python library that provides an implementation of several JSON Object Signing and Encryption JOSE standards. In versions 1.3.4 through 1.6.5, joser...

5.3CVSS5.9AI score0.00163EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 5 days ago6 views

CVE-2026-48990

A flaw was found in joserfc, a Python library for JSON Object Signing and Encryption JOSE. This vulnerability allows a remote attacker to cause resource exhaustion, leading to a Denial of Service DoS, by sending oversized JSON Web Signature JWS payloads. The library fails to apply size limits,...

5.3CVSS5.3AI score0.00163EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2026/06/16 12:0 a.m.10 views

PT-2026-49735

Name of the Vulnerable Software and Affected Versions Hono versions prior to 4.12.25 Description The Body Limit Middleware trusts the Content-Length header to determine if a request body is within the allowed limit. In environments such as AWS Lambda including API Gateway v1/v2, ALB, VPC Lattice,...

6.5CVSS5.8AI score0.00014EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2026/06/05 7:50 p.m.7 views

CVE-2026-21388

Mattermost Plugins versions =2.3.1 fail to limit the request body size on the /lifecycle webhook endpoint which allows an authenticated attacker to cause memory exhaustion and denial of service via sending an oversized JSON payload. Mattermost Advisory ID: MMSA-2026-00610...

6.5CVSS5.5AI score0.00311EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/06/05 7:37 p.m.6 views

CVE-2026-47309

Uncontrolled Recursion vulnerability in Samsung Open Source Escargot allows Oversized Serialized Data Payloads. This issue affects Escargot: 590345cc6258317c5da850d846ce6baaf2afc2d3...

7.5CVSS5.4AI score0.00266EPSS
Exploits0References1
NVD
NVDadded 2026/06/04 10:16 a.m.11 views

CVE-2026-47320

Access of uninitialized pointer, Uncontrolled Recursion vulnerability in Samsung Open Source rlottie allows Pointer Manipulation, Oversized Serialized Data Payloads. This issue affects rlottie: before eae37633fda13ac05b25c6c95aacea4bc33c80a3...

6.1CVSS0.00104EPSS
Exploits0References1
NVD
NVDadded 2026/06/04 10:16 a.m.9 views

CVE-2026-47306

Uncontrolled Recursion vulnerability in Samsung Open Source rlottie allows Oversized Serialized Data Payloads. This issue affects rlottie: before e2d19e3b150e0e4a9586fa90b56fd3061cc98945...

6.1CVSS0.00103EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/06/04 9:43 a.m.6 views

CVE-2026-47306

Uncontrolled Recursion vulnerability in Samsung Open Source rlottie allows Oversized Serialized Data Payloads. This issue affects rlottie: before e2d19e3b150e0e4a9586fa90b56fd3061cc98945...

6.1CVSS5.8AI score0.00103EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/06/04 9:43 a.m.6 views

CVE-2026-47306

Uncontrolled Recursion vulnerability in Samsung Open Source rlottie allows Oversized Serialized Data Payloads. This issue affects rlottie: before e2d19e3b150e0e4a9586fa90b56fd3061cc98945...

6.1CVSS5.8AI score0.00103EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/06/04 9:43 a.m.39 views

CVE-2026-47306

Uncontrolled Recursion vulnerability in Samsung Open Source rlottie allows Oversized Serialized Data Payloads. This issue affects rlottie: before e2d19e3b150e0e4a9586fa90b56fd3061cc98945...

6.1CVSS0.00103EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/06/04 9:38 a.m.6 views

CVE-2026-47320

Access of uninitialized pointer, Uncontrolled Recursion vulnerability in Samsung Open Source rlottie allows Pointer Manipulation, Oversized Serialized Data Payloads. This issue affects rlottie: before eae37633fda13ac05b25c6c95aacea4bc33c80a3...

6.1CVSS5.8AI score0.00104EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/06/04 9:38 a.m.7 views

CVE-2026-47320

Access of uninitialized pointer, Uncontrolled Recursion vulnerability in Samsung Open Source rlottie allows Pointer Manipulation, Oversized Serialized Data Payloads. This issue affects rlottie: before eae37633fda13ac05b25c6c95aacea4bc33c80a3...

6.1CVSS5.8AI score0.00104EPSS
Exploits0References1
EUVD
EUVDadded 2026/06/04 9:38 a.m.9 views

EUVD-2026-34232

Access of uninitialized pointer, Uncontrolled Recursion vulnerability in Samsung Open Source rlottie allows Pointer Manipulation, Oversized Serialized Data Payloads. This issue affects rlottie: before eae37633fda13ac05b25c6c95aacea4bc33c80a3...

6.1CVSS5.8AI score0.00104EPSS
Exploits0References1
CVE
CVEadded 2026/06/04 9:38 a.m.24 views

CVE-2026-47320

CVE-2026-47320 affects the Samsung Open Source library rlottie (pre-commit eae37633fda13ac05b25c6c95aacea4bc33c80a3). The issue is described as an access of an uninitialized pointer and uncontrolled recursion, enabling pointer manipulation and handling of oversized serialized data payloads. Accor...

6.1CVSS5.8AI score0.00104EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/06/04 12:0 a.m.13 views

PT-2026-46171

Access of uninitialized pointer, Uncontrolled Recursion vulnerability in Samsung Open Source rlottie allows Pointer Manipulation, Oversized Serialized Data Payloads. This issue affects rlottie: before eae37633fda13ac05b25c6c95aacea4bc33c80a3...

6.1CVSS5.8AI score0.00104EPSS
Exploits0References2
EUVD
EUVDadded 2026/05/19 4:47 a.m.8 views

EUVD-2026-30839

Uncontrolled Recursion vulnerability in Samsung Open Source Escargot allows Oversized Serialized Data Payloads. This issue affects Escargot: 590345cc6258317c5da850d846ce6baaf2afc2d3...

5.5CVSS5.8AI score0.00266EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/05/19 4:47 a.m.6 views

CVE-2026-47309

Uncontrolled Recursion vulnerability in Samsung Open Source Escargot allows Oversized Serialized Data Payloads. This issue affects Escargot: 590345cc6258317c5da850d846ce6baaf2afc2d3...

5.5CVSS5.8AI score0.00266EPSS
Exploits0References1
CVE
CVEadded 2026/05/19 4:47 a.m.14 views

CVE-2026-47309

Technical details for CVE-2026-47309 are not publicly available in the provided documents. Monitor for updates.

7.5CVSS5.8AI score0.00266EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/05/13 2:58 p.m.4 views

CVE-2026-44456

Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.16, bodyLimit does not reliably enforce maxSize for requests without a usable Content-Length e.g. Transfer-Encoding: chunked. Oversized requests can reach handlers and return 200 instead of 413. Th...

6.5CVSS5.8AI score0.00219EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder