Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4571 matches found

Tenable Nessus
Tenable Nessusadded 2025/08/12 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2024-6613

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The frame iterator could get stuck in a loop when encountering certain wasm frames leading to incorrect stack traces. This vulnerability affects Firefox 128 and...

5.5CVSS7.3AI score0.00186EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/08/12 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2023-0240

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is a logic error in iouring's implementation which can be used to trigger a use-after-free vulnerability leading to privilege escalation. In the...

7.8CVSS6.3AI score0.00269EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/08/12 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2022-21527

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.29 and prior. Easily...

5.5CVSS5.6AI score0.0129EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/08/12 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2021-46910

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ARM: 9063/1: mm: reduce maximum number of CPUs if DEBUGKMAPLOCAL is enabled The debugging co...

5.5CVSS4.9AI score0.00193EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/08/12 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2019-9811

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - As part of a winning Pwn2Own entry, a researcher demonstrated a sandbox escape by installing a malicious language pack and then opening a browser feature that...

8.3CVSS8.1AI score0.02574EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2025/08/12 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2023-22056

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.33 and prior. Easily...

4.9CVSS6AI score0.01594EPSS
Exploits0References2
CBLMariner
CBLMarineradded 2025/08/11 9:13 p.m.6 views

CVE-2024-48916 affecting package ceph for versions less than 18.2.2-10

CVE-2024-48916 affecting package ceph for versions less than 18.2.2-10. A patched version of the package is available...

8.1CVSS7.3AI score0.00184EPSS
Exploits0
OSV
OSVadded 2025/08/11 8:15 a.m.2 views

CVE-2025-8837

A vulnerability was identified in JasPer up to 4.2.5. This affects the function jpcdecdump of the file src/libjasper/jpc/jpcdec.c of the component JPEG2000 File Handler. The manipulation leads to use after free. An attack has to be approached locally. The exploit has been disclosed to the public...

7.8CVSS7.1AI score
Exploits0References7
AlpineLinux
AlpineLinuxadded 2025/08/11 8:15 a.m.6 views

CVE-2025-8837

A vulnerability was identified in JasPer up to 4.2.5. This affects the function jpcdecdump of the file src/libjasper/jpc/jpcdec.c of the component JPEG2000 File Handler. The manipulation leads to use after free. An attack has to be approached locally. The exploit has been disclosed to the public...

7.8CVSS7.2AI score0.00205EPSS
Exploits1References7
OSV
OSVadded 2025/08/11 8:15 a.m.6 views

AZL-66165 CVE-2025-8836 affecting package jasper for versions less than 4.2.1-3

A vulnerability was determined in JasPer up to 4.2.5. Affected by this issue is the function jpcfloorlog2 of the file src/libjasper/jpc/jpcenc.c of the component JPEG2000 Encoder. The manipulation leads to reachable assertion. The attack needs to be approached locally. The exploit has been...

4.8CVSS5AI score0.00186EPSS
Exploits1References1
OSV
OSVadded 2025/08/11 8:15 a.m.2 views

UBUNTU-CVE-2025-8836

A vulnerability was determined in JasPer up to 4.2.5. Affected by this issue is the function jpcfloorlog2 of the file src/libjasper/jpc/jpcenc.c of the component JPEG2000 Encoder. The manipulation leads to reachable assertion. The attack needs to be approached locally. The exploit has been...

4.8CVSS5AI score0.00186EPSS
Exploits1References8
CVE
CVEadded 2025/08/11 8:2 a.m.35 views

CVE-2025-8837

CVE-2025-8837 affects JasPer up to 4.2.5, in the JPC decoder (jpc_dec_dump) of the JPEG2000 File Handler. The issue enables a use-after-free condition when processing malformed input, with local attack requirements and public exploit disclosure. Multiple connected advisories report a patch to upg...

7.8CVSS7.1AI score0.00205EPSS
Exploits1References7Affected Software1
CVE
CVEadded 2025/08/11 7:32 a.m.39 views

CVE-2025-8836

CVE-2025-8836 affects JasPer up to 4.2.5, where manipulation in jpc_floorlog2 (src/libjasper/jpc/jpc_enc.c - JPC Encoder) can trigger a reachable assertion. Exploitation is described as local; public exploit guidance exists. Remediation is available via patches, e.g., upgrade to JasPer 4.2.8 (ope...

4.8CVSS7.1AI score0.00186EPSS
Exploits1References6Affected Software1
Cvelist
Cvelistadded 2025/08/11 7:2 a.m.10 views

CVE-2025-8835 JasPer Image Color Space Conversion jas_image.c jas_image_chclrspc null pointer dereference

A vulnerability was found in JasPer up to 4.2.5. Affected by this vulnerability is the function jasimagechclrspc of the file src/libjasper/base/jasimage.c of the component Image Color Space Conversion Handler. The manipulation leads to null pointer dereference. It is possible to launch the attack...

4.8CVSS0.00195EPSS
Exploits1References7
Tenable Nessus
Tenable Nessusadded 2025/08/11 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2023-52723

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In KDE libksieve before 23.03.80, kmanagesieve/session.cpp places a cleartext password in server logs because a username variable is accidentally given a passwo...

7.1CVSS5.5AI score0.00547EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/08/11 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2022-21605

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Data Dictionary. Supported versions that are affected are 8.0.28 and prior. Easily...

4.9CVSS5.5AI score0.01024EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/08/11 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2021-47132

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: mptcp: fix skforwardmemory corruption on retransmission MPTCP skforwardmemory handling is a...

7.1CVSS6.3AI score0.00213EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/08/11 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-52889

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incus is a system container and virtual machine manager. When using an ACL on a device connected to a bridge, Incus version 6.12 and 6.13 generates nftables rul...

3.4CVSS6AI score0.00202EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/08/11 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-20970

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.35 and prior and 8.2.0 and...

4.9CVSS5.5AI score0.01096EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2025/08/11 12:0 a.m.5 views

PT-2025-32528

Name of the Vulnerable Software and Affected Versions: JasPer versions up to 4.2.5 Description: A vulnerability exists in JasPer up to version 4.2.5, specifically within the JPEG2000 Encoder component. The issue resides in the jpc floorlog2 function located in the src/libjasper/jpc/jpc enc.c file...

7.8CVSS4AI score0.00205EPSS
Exploits3References24
Rows per page
Query Builder