Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4569 matches found

VulnCheck KEV
VulnCheck KEVadded 2026/05/01 12:0 a.m.15 views

VulnCheck KEV: CVE-2025-60021

Remote command injection vulnerability in heap profiler builtin service in Apache bRPC all versions 1.15.0 on all platforms allows attacker to inject remote command. Root Cause: The bRPC heap profiler built-in service /pprof/heap does not validate the user-provided extraoptions parameter and...

9.8CVSS7.6AI score0.26163EPSS
In wildExploits3References2
OSV
OSVadded 2026/04/30 6:20 p.m.4 views

GHSA-W24R-5266-9C3C Clerk has an authorization bypass when combining organization, billing, or reverification checks

Summary has, auth.protect, and related authorization predicates in @clerk/shared, @clerk/nextjs, @clerk/backend, and other framework SDKs can return true for certain combined authorization checks when the result should be false, allowing a gated action to proceed for a user who does not satisfy t...

8.1CVSS5.8AI score0.00246EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/04/30 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-41606

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Uncontrolled Recursion vulnerability in Apache Thrift. This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, whic...

5.3CVSS5.8AI score0.00585EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/04/30 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-7376

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Crash in sharkd 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service CVE-2026-7376 Note that Nessus relies on the presence of the package as reported by...

7.5CVSS5.8AI score0.00193EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2026/04/30 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-40684

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Exim before 4.99.2, on systems using musl libc not glibc, an attacker can crash the connection instance when malformed DNS data is present in PTR records. Th...

7.5CVSS6AI score0.00362EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2026/04/30 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-42013

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in gnutls. When validating certificates, an oversized Subject Alternative Name SAN could cause the validation process to incorrectly fall back ...

8.2CVSS5.8AI score0.00288EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/04/30 12:0 a.m.1 views

Linux Distros Unpatched Vulnerability : CVE-2026-6535

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Dissection engine zlib decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service CVE-2026-6535 Note that Nessus relies on the...

5.5CVSS5.8AI score0.00141EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2026/04/30 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-40685

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Exim before 4.99.2, when JSON lookup is enabled, an out-of-bounds heap write can occur when a JSON operator encounters malformed JSON in an untrusted header,...

9.8CVSS6AI score0.00321EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/04/30 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-42009

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in gnutls. A remote attacker could exploit an issue in the Datagram Transport Layer Security DTLS packet reordering logic. The comparator...

7.5CVSS5.8AI score0.01078EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/04/30 12:0 a.m.23 views

Linux Distros Unpatched Vulnerability : CVE-2026-42014

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - gnutls: Fix use-after-free in gnutlspkcs11tokensetpin CVE-2026-42014 Note that Nessus relies on the presence of the package as reported by the vendor...

6.6CVSS5.8AI score0.00141EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/04/30 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-33846

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of GnuTLS. The issue arises in mergehandshakepacket where incoming...

7.5CVSS6.1AI score0.01027EPSS
Exploits0References3
Packet Storm
Packet Stormadded 2026/04/30 12:0 a.m.137 views

📄 EfficientLab Controlio DLL Hijacking

EfficientLab Controlio versions prior to 1.3.95 suffer from dll hijacking vulnerabilities. SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: DLL Hijacking product: EfficientLab Controlio cloud-based employee monitoring...

5.1CVSS5.3AI score0.00163EPSS
Exploits1
Tenable Nessus
Tenable Nessusadded 2026/04/29 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-42198

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pgjdbc is an open source postgresql JDBC Driver. From version 42.2.0 to before version 42.7.11, pgjdbc is vulnerable to a client-side denial of service during...

7.5CVSS7.2AI score0.00478EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2026/04/29 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-23557

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Any guest can cause xenstored to crash by issuing a XSRESETWATCHES command within a transaction due to an assert triggering. In case xenstored was built with...

6.5CVSS5.8AI score0.00158EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/04/29 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-7320

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Information disclosure due to incorrect boundary conditions in the Audio/Video component. This vulnerability was fixed in Firefox 150.0.1, Firefox ESR 140.10.1,...

7.5CVSS5.8AI score0.00273EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/04/29 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-5545

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libcurl might in some circumstances reuse the wrong connection when asked to do an authenticated HTTPS request after a Negotiate-authenticated one, when both us...

6.5CVSS5.8AI score0.00414EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2026/04/29 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2026-31786

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer overflow in drivers/xen/sys-hypervisor.c The build id returned by HYPERVISORxenversionXENVERbuildid is neither NUL terminated nor a string. The first...

7.8CVSS6AI score0.00197EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/04/29 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-7356

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in Navigation in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium...

8.8CVSS6.1AI score0.00309EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2026/04/29 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-7349

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in Cast in Google Chrome prior to 147.0.7727.138 allowed an attacker on the local network segment to execute arbitrary code inside a sandbox via...

7.5CVSS6.2AI score0.00136EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2026/04/29 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-35251

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is 7.2.6. Difficult to exploi...

7.5CVSS7.4AI score0.00107EPSS
Exploits0References2
Rows per page
Query Builder