Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Snyk
Snykadded 2026/05/07 3:34 a.m.6 views

Authorization Bypass Through User-Controlled Key

Overview Affected versions of this package are vulnerable to Authorization Bypass Through User-Controlled Key through the RSL policy validation. An attacker can revert the system to a previous trusted state by creating a new Reference State Log entry that references an older policy, provided it i...

6CVSS5.8AI score0.00043EPSS
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/08/14 6:52 p.m.2 views

Malicious code in network_policy (npm)

The package networkpolicy was found to contain malicious code...

7AI score
Exploits0
Fortinet
Fortinetadded 2021/09/07 12:0 a.m.29 views

FortiManager - Access Control missing in P&O module assignment vulnerability

An improper authentication vulnerability CWE-287 in FortiManager may allow a standard user to assign or un-assign a global policy package via a POST request to flatui/json module...

4CVSS5.2AI score0.00154EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVEadded 2020/08/25 7:34 a.m.30 views

CVE-2020-24612

An issue was discovered in the selinux-policy aka Reference Policy package 3.14 through 2020-08-24 because the .config/Yubico directory is mishandled. Consequently, when SELinux is in enforced mode, pam-u2f is not allowed to read the user's U2F configuration file. If configured with the nouserok...

1.9CVSS1.9AI score0.00051EPSS
Exploits0References4
Fedora
Fedoraadded 2018/02/27 4:58 p.m.28 views

[SECURITY] Fedora 26 Update: knot-resolver-2.1.0-1.fc26

The Knot DNS Resolver is a caching full resolver implementation written in C and LuaJIT, including both a resolver library and a daemon. Modular architecture of the library keeps the core tiny and efficient, and provides a state-machine like API for extensions. The package is pre-configured as...

4.3CVSS1AI score0.00377EPSS
Exploits0
BDU FSTEC
BDU FSTECadded 2015/04/28 12:0 a.m.2 views

The vulnerability of the Red Hat Enterprise Linux operating system allows malicious actors to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the selinux-policy-targeted-3.7.19 package of the Red Hat Enterprise Linux operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited locally...

6.9CVSS5.4AI score0.00044EPSS
Exploits0References2
BDU FSTEC
BDU FSTECadded 2015/04/28 12:0 a.m.3 views

Vulnerabilities of the Debian GNU/Linux operating system, which allow a remote attacker to compromise the integrity and accessibility of protected information

The multiple vulnerabilities in the selinux-policy-refpolicy-dev package of the Debian GNU/Linux operating system may lead to a violation of the integrity and accessibility of protected information. These vulnerabilities can be exploited remotely...

6.4CVSS6.6AI score0.88109EPSS
Exploits20References3Affected Software1
Rows per page
Query Builder