Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9995 matches found

Positive Technologies
Positive Technologiesadded 2026/04/02 12:0 a.m.3 views

PT-2026-29930

Ella Core panics when processing a crafted NGAP LocationReport message in github.com/ellanetworks/core...

6.5CVSS5.8AI score0.00033EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2026/04/02 12:0 a.m.0 views

PT-2026-29943

Sliver: Nil Pointer Dereference in tunnelCloseHandler causes panic when a reverse tunnel rportfwd close is attempted in github.com/bishopfox/sliver...

5.9AI score
Exploits0References2
OSV
OSVadded 2026/04/01 10:59 p.m.2 views

GHSA-6GM8-3G4H-W82M Ella Core Panics Upon NGAP handover failure

Summary Ella Core panics when processing a NGAP handover failure message. Impact If an attacker can force a gNodeB to send NGAP handover failure messages to Ella Core, the process will crash, thereby disrupting service for all connected subscribers. Fix Improve guards in NGAP handover handlers...

5.8CVSS5.9AI score0.00023EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2026/04/01 5:3 p.m.2 views

CVE-2026-34219

libp2p-rust is the official rust language Implementation of the libp2p networking stack. Prior to version 0.49.4, the Rust libp2p Gossipsub implementation contains a remotely reachable panic in backoff expiry handling. After a peer sends a crafted PRUNE control message with an attacker-controlled...

8.2CVSS5.8AI score0.0011EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/04/01 5:3 p.m.2 views

CVE-2026-34202

ZEBRA is a Zcash node written entirely in Rust. Prior to zebrad version 4.3.0 and zebra-chain version 6.0.1, a vulnerability in Zebra's transaction processing logic allows a remote, unauthenticated attacker to cause a Zebra node to panic crash. This is triggered by sending a specially crafted V5...

9.2CVSS5.8AI score0.0016EPSS
Exploits0References1
NVD
NVDadded 2026/03/31 4:16 p.m.2 views

CVE-2026-34219

libp2p-rust is the official rust language Implementation of the libp2p networking stack. Prior to version 0.49.4, the Rust libp2p Gossipsub implementation contains a remotely reachable panic in backoff expiry handling. After a peer sends a crafted PRUNE control message with an attacker-controlled...

8.2CVSS0.0011EPSS
Exploits1References1
CVE
CVEadded 2026/03/31 3:47 p.m.5 views

CVE-2026-34219

CVE-2026-34219 affects libp2p-rust’s libp2p-gossipsub: prior to 0.49.4, Gossipsub’s backoff expiry handling can overflow when adding Slack to an Instant, after a crafted PRUNE with attacker-controlled backoff. This remotely reachable panic is triggered in heartbeat processing and is exploitable o...

8.2CVSS5.8AI score0.0011EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2026/03/31 3:47 p.m.23 views

CVE-2026-34219 libp2p-gossipsub: Gossipsub PRUNE Backoff Heartbeat Instant Overflow

libp2p-rust is the official rust language Implementation of the libp2p networking stack. Prior to version 0.49.4, the Rust libp2p Gossipsub implementation contains a remotely reachable panic in backoff expiry handling. After a peer sends a crafted PRUNE control message with an attacker-controlled...

8.2CVSS0.0011EPSS
Exploits1References1
Vulnrichment
Vulnrichmentadded 2026/03/31 3:47 p.m.2 views

CVE-2026-34219 libp2p-gossipsub: Gossipsub PRUNE Backoff Heartbeat Instant Overflow

libp2p-rust is the official rust language Implementation of the libp2p networking stack. Prior to version 0.49.4, the Rust libp2p Gossipsub implementation contains a remotely reachable panic in backoff expiry handling. After a peer sends a crafted PRUNE control message with an attacker-controlled...

8.2CVSS5.8AI score0.0011EPSS
Exploits1References1
NVD
NVDadded 2026/03/31 3:16 p.m.1 views

CVE-2026-33762

go-git is an extensible git implementation library written in pure Go. Prior to version 5.17.1, go-git’s index decoder for format version 4 fails to validate the path name prefix length before applying it to the previously decoded path name. A maliciously crafted index file can trigger an...

2.8CVSS0.00006EPSS
Exploits0References2
OSV
OSVadded 2026/03/31 3:16 p.m.1 views

DEBIAN-CVE-2026-33762

go-git is an extensible git implementation library written in pure Go. Prior to version 5.17.1, go-git’s index decoder for format version 4 fails to validate the path name prefix length before applying it to the previously decoded path name. A maliciously crafted index file can trigger an...

2.8CVSS5.2AI score0.00006EPSS
Exploits0References1
UbuntuCve
UbuntuCveadded 2026/03/31 3:16 p.m.6 views

CVE-2026-33762

go-git is an extensible git implementation library written in pure Go. Prior to version 5.17.1, go-git’s index decoder for format version 4 fails to validate the path name prefix length before applying it to the previously decoded path name. A maliciously crafted index file can trigger an...

2.8CVSS5.7AI score0.00006EPSS
Exploits0References3
OSV
OSVadded 2026/03/31 3:16 p.m.2 views

UBUNTU-CVE-2026-33762

go-git is an extensible git implementation library written in pure Go. Prior to version 5.17.1, go-git’s index decoder for format version 4 fails to validate the path name prefix length before applying it to the previously decoded path name. A maliciously crafted index file can trigger an...

2.8CVSS5.7AI score0.00006EPSS
Exploits0References4
CVE
CVEadded 2026/03/31 2:2 p.m.11 views

CVE-2026-34202

Zebra vulnerability (CVE-2026-34202) allows remote DoS via crafted V5 transactions. All Zebra versions supporting V5 (Network Upgrade 5+) prior to 4.3.0 are affected. Malformed PushTransaction messages deserialize to the internal Transaction type, but TxID calculation triggers a panic due to lazy...

9.2CVSS5.8AI score0.0016EPSS
Exploits0References3Affected Software2
Cvelist
Cvelistadded 2026/03/31 2:2 p.m.18 views

CVE-2026-34202 Zebra node crash — V5 transaction hash panic (P2P reachable)

ZEBRA is a Zcash node written entirely in Rust. Prior to zebrad version 4.3.0 and zebra-chain version 6.0.1, a vulnerability in Zebra's transaction processing logic allows a remote, unauthenticated attacker to cause a Zebra node to panic crash. This is triggered by sending a specially crafted V5...

9.2CVSS0.0016EPSS
Exploits0References3
CVE
CVEadded 2026/03/31 1:47 p.m.17 views

CVE-2026-33762

The CVE-2026-33762 vulnerability affects the go-git library prior to v5.17.1, specifically the index decoder for Git index format version 4. The issue is a missing validation of the path name prefix length before applying it to the decoded path, which can cause an out-of-bounds slice operation an...

2.8CVSS5.7AI score0.00006EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVEadded 2026/03/31 1:47 p.m.6 views

CVE-2026-33762

go-git is an extensible git implementation library written in pure Go. Prior to version 5.17.1, go-git’s index decoder for format version 4 fails to validate the path name prefix length before applying it to the previously decoded path name. A maliciously crafted index file can trigger an...

2.8CVSS5.2AI score0.00006EPSS
Exploits0
OSV
OSVadded 2026/03/31 1:47 p.m.2 views

CVE-2026-33762 go-git: Missing validation decoding Index v4 files leads to panic

go-git is an extensible git implementation library written in pure Go. Prior to version 5.17.1, go-git’s index decoder for format version 4 fails to validate the path name prefix length before applying it to the previously decoded path name. A maliciously crafted index file can trigger an...

2.8CVSS5.8AI score0.00006EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2026/03/31 1:47 p.m.1 views

CVE-2026-33762 go-git: Missing validation decoding Index v4 files leads to panic

go-git is an extensible git implementation library written in pure Go. Prior to version 5.17.1, go-git’s index decoder for format version 4 fails to validate the path name prefix length before applying it to the previously decoded path name. A maliciously crafted index file can trigger an...

2.8CVSS5.7AI score0.00006EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/03/31 1:47 p.m.3 views

CVE-2026-33762

go-git is an extensible git implementation library written in pure Go. Prior to version 5.17.1, go-git’s index decoder for format version 4 fails to validate the path name prefix length before applying it to the previously decoded path name. A maliciously crafted index file can trigger an...

2.8CVSS5.7AI score0.00006EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder