Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2459 matches found

EUVD
EUVDadded 4 hours ago3 views

EUVD-2026-34239

A weakness has been identified in PaddlePaddle FastDeploy up to 2.4.1. Affected by this issue is the function hashfeatures of the file fastdeploy/multimodal/hasher.py of the component MultimodalHasher. Executing a manipulation can lead to use of weak hash. The attack requires local access. A high...

3.6CVSS5.2AI score
Exploits0References8
SUSE CVE
SUSE CVEadded 11 hours ago5 views

SUSE CVE-2026-10650

A flaw has been found in warmcat libwebsockets up to 4.5.8. This issue affects the function lwssshparseplaintext of the file plugins/protocollwssshbase/sshd.c of the component SSH Protocol Handler. Executing a manipulation of the argument msglen can lead to resource consumption. The attack may be...

6.9CVSS5.7AI score0.00055EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2 days ago3 views

CVE-2026-10692

A weakness has been identified in johnhuang316 code-index-mcp up to 2.14.0. Affected is the function issaferegexpattern of the component searchcodeadvanced. Executing a manipulation of the argument regex can lead to inefficient regular expression complexity. It is possible to launch the attack...

5.3CVSS5.4AI score0.00045EPSS
Exploits0References8Affected Software1
NVD
NVDadded 2 days ago7 views

CVE-2026-10661

A vulnerability has been found in ahujasid blender-mcp up to 7636d13bded82eca58eb93c3f4cd8708dfdfbe8b. Impacted is the function Open of the file src/blendermcp/server.py. The manipulation of the argument inputimageurl leads to injection. Remote exploitation of the attack is possible. The exploit...

5.3CVSS0.00033EPSS
Exploits0References8
ATTACKERKB
ATTACKERKBadded 3 days ago7 views

CVE-2026-10514

A vulnerability has been found in 1Panel-dev CordysCRM up to 1.6.2. This affects an unknown function of the file backend/framework/src/main/java/cn/cordys/config/RequestParamTrimConfig.java. The manipulation leads to cross site scripting. Remote exploitation of the attack is possible. The exploit...

4.8CVSS4.1AI score0.00042EPSS
Exploits0References9Affected Software1
Cvelist
Cvelistadded 3 days ago25 views

CVE-2026-10291 Enderfga claw-orchestrator Session Grep Endpoint embedded-server.ts validateRegex redos

A security vulnerability has been detected in Enderfga claw-orchestrator up to 3.7.0. The impacted element is the function validateRegex of the file claw-orchestrator/src/embedded-server.ts of the component Session Grep Endpoint. The manipulation of the argument body.pattern leads to inefficient...

5.3CVSS0.0006EPSS
Exploits0References9
NVD
NVDadded 3 days ago6 views

CVE-2026-10275

A flaw has been found in OpenSC up to 0.26.1. This affects the function testkpgencertwrite of the file src/tools/pkcs11-tool.c of the component pkcs11-tool Key Generation Module. This manipulation causes buffer overflow. The attack is possible to be carried out remotely. The complexity of an atta...

5.1CVSS0.00064EPSS
Exploits0References9
RedhatCVE
RedhatCVEadded 3 days ago5 views

CVE-2026-10157

A vulnerability was identified in Open5GS up to 2.7.6. This impacts an unknown function of the file src/amf/ngap-handler.c of the component NGAP PathSwitchRequest Message Handler. The manipulation leads to improper authentication. It is possible to initiate the attack remotely. The exploit is...

7.5CVSS5.4AI score0.00095EPSS
Exploits0References1
CVE
CVEadded 3 days ago16 views

CVE-2026-20452

The CVE-2026-20452 entry concerns memory corruption in the wlan AP driver caused by a heap buffer overflow. Impact is remote (proximal/adjacent) code execution with HIGH confidentiality, integrity, and availability impact, exploitable with adjacent network access, low privileges, and no user inte...

8CVSS6.5AI score0.00021EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologiesadded 3 days ago8 views

PT-2026-45445

A weakness has been identified in janet-lang janet up to 1.41.0. This vulnerability affects the function unmarshal one fiber of the file src/core/marsh.c. Executing a manipulation can lead to integer overflow. It is possible to launch the attack on the local host. The exploit has been made...

4.8CVSS5.5AI score0.00013EPSS
Exploits0References9
Positive Technologies
Positive Technologiesadded 3 days ago9 views

PT-2026-45606

A security vulnerability has been detected in Enderfga claw-orchestrator up to 3.7.0. The impacted element is the function validateRegex of the file claw-orchestrator/src/embedded-server.ts of the component Session Grep Endpoint. The manipulation of the argument body.pattern leads to inefficient...

5.3CVSS5.4AI score0.0006EPSS
Exploits0References10
NVD
NVDadded 4 days ago6 views

CVE-2026-10157

A vulnerability was identified in Open5GS up to 2.7.6. This impacts an unknown function of the file src/amf/ngap-handler.c of the component NGAP PathSwitchRequest Message Handler. The manipulation leads to improper authentication. It is possible to initiate the attack remotely. The exploit is...

7.5CVSS0.00095EPSS
Exploits0References8
Positive Technologies
Positive Technologiesadded 4 days ago7 views

PT-2026-45204

A weakness has been identified in OFFIS DCMTK 3.7.0. This affects the function DcmQueryRetrieveIndexDatabaseHandle::deleteOldestImages of the file dcmqrdb/libsrc/dcmqrdbi.cc of the component dcmqrscp. Executing a manipulation can lead to heap-based buffer overflow. The attack may be launched...

6.5CVSS6.8AI score0.00044EPSS
Exploits0References6
RedhatCVE
RedhatCVEadded last week8 views

CVE-2026-9572

A security vulnerability has been detected in GPAC up to 2.4.0. Affected by this issue is the function MediaGetSample of the file src/isomedia/media.c of the component MP4Box. Such manipulation of the argument cat leads to memory leak. The attack can only be performed from a local environment. Th...

5.5CVSS5.2AI score0.00019EPSS
Exploits1References1
OSV
OSVadded 2026/05/26 7:16 p.m.6 views

UBUNTU-CVE-2026-9572

A security vulnerability has been detected in GPAC up to 2.4.0. Affected by this issue is the function MediaGetSample of the file src/isomedia/media.c of the component MP4Box. Such manipulation of the argument cat leads to memory leak. The attack can only be performed from a local environment. Th...

5.5CVSS5.3AI score0.00019EPSS
Exploits1References9
Cvelist
Cvelistadded 2026/05/26 6:30 p.m.33 views

CVE-2026-9572 GPAC MP4Box media.c Media_GetSample memory leak

A security vulnerability has been detected in GPAC up to 2.4.0. Affected by this issue is the function MediaGetSample of the file src/isomedia/media.c of the component MP4Box. Such manipulation of the argument cat leads to memory leak. The attack can only be performed from a local environment. Th...

4.8CVSS0.00019EPSS
Exploits1References7
Vulnrichment
Vulnrichmentadded 2026/05/26 6:30 p.m.5 views

CVE-2026-9572 GPAC MP4Box media.c Media_GetSample memory leak

A security vulnerability has been detected in GPAC up to 2.4.0. Affected by this issue is the function MediaGetSample of the file src/isomedia/media.c of the component MP4Box. Such manipulation of the argument cat leads to memory leak. The attack can only be performed from a local environment. Th...

4.8CVSS5.2AI score0.00019EPSS
Exploits1References7
EUVD
EUVDadded 2026/05/26 6:30 p.m.11 views

EUVD-2026-31955

A security vulnerability has been detected in GPAC up to 2.4.0. Affected by this issue is the function MediaGetSample of the file src/isomedia/media.c of the component MP4Box. Such manipulation of the argument cat leads to memory leak. The attack can only be performed from a local environment. Th...

4.8CVSS5.3AI score0.00019EPSS
Exploits1References7
Positive Technologies
Positive Technologiesadded 2026/05/26 12:0 a.m.7 views

PT-2026-43178

A security vulnerability has been detected in fraillt bitsery up to 5.2.4. Affected is the function loadFromSharedState in the library include/bitsery/ext/std smart ptr.h. Such manipulation leads to improper validation of specified type of input. It is possible to launch the attack remotely. The...

7.5CVSS6.6AI score0.00079EPSS
Exploits0References8
CVE
CVEadded 2026/05/25 8:45 p.m.14 views

CVE-2026-9502

Summary: CVE-2026-9502 affects GNU LibreDWG’s Dwgread Utility (up to 0.14). The issue is in decompress_R2004_section (src/decode.c), causing a heap-based buffer overflow. The attack is local and there is a publicly available exploit. A patch is identified by commit/id e501cb9926c1e9a07a0d1cc997f3...

5.3CVSS6AI score0.00014EPSS
Exploits0References7
Rows per page
Query Builder