Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Snyk
Snykadded 2026/03/18 3:1 p.m.3 views

Predictable Value Range from Previous Values

Overview Affected versions of this package are vulnerable to Predictable Value Range from Previous Values when granting permissions to secrets using a predictable XID. An attacker can gain unauthorized access to resources associated with previously granted secrets by predicting secret identifiers...

7.5CVSS5.8AI score0.0006EPSS
Exploits1References2
OSV
OSVadded 2026/03/18 2:16 p.m.3 views

CVE-2026-32694

In Juju from version 3.0.0 through 3.6.18, when a secret owner grants permissions to a secret to a grantee, the secret owner relies exclusively on a predictable XID of the secret to verify ownership. This allows a malicious grantee which can request secrets to predict past secrets granted by the...

6.6CVSS5.9AI score
Exploits0References1
UbuntuCve
UbuntuCveadded 2026/03/18 2:16 p.m.1 views

CVE-2026-32694

In Juju from version 3.0.0 through 3.6.18, when a secret owner grants permissions to a secret to a grantee, the secret owner relies exclusively on a predictable XID of the secret to verify ownership. This allows a malicious grantee which can request secrets to predict past secrets granted by the...

6.6CVSS6.4AI score0.0006EPSS
Exploits1References2
CNVD
CNVDadded 2025/02/06 12:0 a.m.2 views

coolLabs Coolify Denial of Service Vulnerability

Coolify is an open source and self-hosted alternative to Heroku/Netlify/Vercel. coolLabs Coolify suffers from a denial of service vulnerability that stems from the fact that any authenticated user can revoke any team invitation on an instance by simply providing a predictable incremental ID, whic...

6.5CVSS6.7AI score0.00111EPSS
Exploits1References1
CNNVD
CNNVDadded 2025/01/24 12:0 a.m.2 views

Coolify 安全漏洞

Coolify is an open source and self-hosted alternative to Heroku/Netlify/Vercel. coolLabs Coolify suffers from a denial of service vulnerability that stems from the fact that any authenticated user can revoke any team invitation on an instance by simply providing a predictable incremental ID, whic...

6.5CVSS6.5AI score0.00111EPSS
Exploits1References2
NVD
NVDadded 2024/04/15 11:15 a.m.14 views

CVE-2024-28957

Generation of predictable identifiers issue exists in Cente middleware TCP/IP Network Series. If this vulnerability is exploited, a remote unauthenticated attacker may interfere communications by predicting some packet header IDs of the device...

5.3CVSS6.7AI score0.00408EPSS
Exploits0References3
CNNVD
CNNVDadded 2021/02/19 12:0 a.m.2 views

Owncloud 权限许可和访问控制问题漏洞

OwnCloud OwnCloud is a personal cloud storage solution from OwnCloud Owncloud, an American company. A privilege permission and access control issue vulnerability exists in OwnCloud Server, which can be exploited by an attacker to access any version of any file by sending a request with a...

6.8CVSS5.8AI score0.00087EPSS
Exploits0References2
UbuntuCve
UbuntuCveadded 2007/09/12 1:17 a.m.37 views

CVE-2007-2930

The 1 NSIDSHUFFLEONLY and 2 NSIDUSEPOOL PRNG algorithms in ISC BIND 8 before 8.4.7-P1 generate predictable DNS query identifiers when sending outgoing queries such as NOTIFY messages when answering questions as a resolver, which allows remote attackers to poison DNS caches via unknown vectors...

4.3CVSS6AI score0.29869EPSS
Exploits0References1
Rows per page
Query Builder