Lucene search
K

1709 matches found

NVD
NVD
added 2026/04/30 11:16 p.m.3 views

CVE-2026-7510

A vulnerability was determined in OWAP DefectDojo up to 2.55.4. Affected by this vulnerability is an unknown functionality of the component Benchmark/Engagement/Product/Survey. Executing a manipulation can lead to authorization bypass. The attack can be executed remotely. The exploit has been...

6.5CVSS0.00281EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2026/04/30 11:0 p.m.3 views

CVE-2026-7510 OWAP DefectDojo Benchmark/Engagement/Product/Survey authorization

A vulnerability was determined in OWAP DefectDojo up to 2.55.4. Affected by this vulnerability is an unknown functionality of the component Benchmark/Engagement/Product/Survey. Executing a manipulation can lead to authorization bypass. The attack can be executed remotely. The exploit has been...

6.5CVSS6.2AI score0.00281EPSS
Exploits0References7
CISA
CISA
added 2023/02/16 12:0 a.m.35 views

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. This type of vulnerability is a frequent attack vector for malicious cyber actors and poses a significant risk to the federal enterprise. Note: To view the newly added...

1.7AI score
Exploits0References5
CISA
CISA
added 2023/02/14 12:0 a.m.11 views

Apple Releases Security Updates for Multiple Products

Apple has released security updates to address vulnerabilities in multiple products. An attacker could exploit these vulnerabilities to take control of an affected device. CISA encourages users and administrators to review the Apple security updates page for the following products and apply the...

1.7AI score
Exploits0References3
CISA
CISA
added 2023/02/14 12:0 a.m.11 views

Mozilla Releases Security Updates for Firefox 110 and Firefox ESR

Mozilla has released security updates to address vulnerabilities in Firefox 110 and Firefox ESR. An attacker could exploit these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review Mozilla’s security advisories for Firefox 110 and Firefox ESR...

2.2AI score
Exploits0References2
CISA
CISA
added 2023/02/14 12:0 a.m.19 views

Adobe Releases Security Updates for Multiple Products

Adobe has released security updates to address multiple vulnerabilities in Adobe software. An attacker can exploit these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following Adobe Security Bulletins and apply the necessary updates...

1.4AI score
Exploits0References9
CISA
CISA
added 2023/02/14 12:0 a.m.8 views

Microsoft Releases February 2023 Security Updates

Microsoft has released updates to address multiple vulnerabilities in Microsoft software. An attacker can exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review Microsoft’s February 2023 Security Update Guide and Deployment...

1.7AI score
Exploits0References2
CISA
CISA
added 2023/02/14 12:0 a.m.170 views

Citrix Releases Security Updates for Workspace Apps, Virtual Apps and Desktops

Citrix has released security updates to address high-severity vulnerabilities CVE-2023-24486, CVE-2023-24484, CVE-2023-24485, and CVE-2023-24483 in Citrix Workspace Apps, Virtual Apps and Desktops. A local user could exploit these vulnerabilities to take control of an affected system. CISA...

1.8AI score0.00265EPSS
Exploits1References3
CISA
CISA
added 2023/02/09 12:0 a.m.15 views

OpenSSL Releases Security Advisory

OpenSSL has released a security advisory to address multiple vulnerabilities affecting OpenSSL versions 3.0.0, 2.2.2, and 1.0.2. An attacker could exploit some of these vulnerabilities to obtain sensitive information. CISA encourages users and administrators to review the OpenSSL advisory and mak...

2.4AI score
Exploits0References1
CISA
CISA
added 2023/02/08 12:0 a.m.77 views

CISA and FBI Release ESXiArgs Ransomware Recovery Guidance

Today, CISA and the Federal Bureau of Investigation FBI released a joint Cybersecurity Advisory, ESXiArgs Ransomware Virtual Machine Recovery Guidance. This advisory describes the ongoing ransomware campaign known as “ESXiArgs.” Malicious cyber actors may be exploiting known vulnerabilities in...

1.7AI score
Exploits0References2
CISA
CISA
added 2023/02/07 12:0 a.m.10 views

CISA Releases ESXiArgs Ransomware Recovery Script

CISA has released a recovery script for organizations that have fallen victim to ESXiArgs ransomware. The ESXiArgs ransomware encrypts configuration files on vulnerable ESXi servers, potentially rendering virtual machines VMs unusable. CISA recommends organizations impacted by ESXiArgs evaluate t...

1.1AI score
Exploits0References1
CISA
CISA
added 2023/02/07 12:0 a.m.10 views

CISA Releases One Industrial Control Systems Advisory

CISA released one Industrial Control Systems ICS advisory on February 7, 2023. This advisory provides timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisory for technical...

2.7AI score
Exploits0References1
CISA
CISA
added 2023/02/02 12:0 a.m.7 views

Cisco Releases Security Advisories for Multiple Products

Cisco released security updates for vulnerabilities affecting multiple products. A remote attacker could exploit these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the Cisco Security Advisories page and apply the necessary updates. This...

2.3AI score
Exploits0References1
CISA
CISA
added 2023/01/27 12:0 a.m.50 views

ISC Releases Security Advisories for Multiple Versions of BIND 9

The Internet Systems Consortium ISC has released security advisories that address vulnerabilities affecting multiple versions of the ISC’s Berkeley Internet Name Domain BIND 9. A remote attacker could exploit these vulnerabilities to potentially cause denial-of-service conditions and system...

2.5AI score0.5017EPSS
Exploits0References4
CISA
CISA
added 2023/01/26 12:0 a.m.20 views

CISA Releases Eight Industrial Control Systems Advisories

CISA released eight Industrial Control Systems ICS advisories on January 26, 2023.These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisories for...

1.8AI score
Exploits0References8
CISA
CISA
added 2023/01/25 12:0 a.m.18 views

VMware Releases Security Updates for VMware vRealize Log Insight

VMware released security updates to address multiple vulnerabilities in VMware vRealize Log Insight. A remote attacker could exploit these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review VMware Security Advisory VMSA-2023-0001 and apply th...

2.5AI score
Exploits0References1
CISA
CISA
added 2023/01/24 12:0 a.m.12 views

Apple Releases Security Updates for Multiple Products 

Apple has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected device. CISA encourages users and administrators to review the Apple security updates page for the following products and app...

2.2AI score
Exploits0References9
CISA
CISA
added 2023/01/20 12:0 a.m.14 views

Cisco Releases Security Advisory for Unified CM and Unified CM SME

Cisco released a security advisory for a vulnerability affecting Cisco Unified Communications Manager Unified CM and Cisco Unified Communications Manager Session Management Edition Unified CM SME. A remote attacker could exploit this vulnerability to cause a denial-of-service condition. For updat...

2.6AI score
Exploits0References1
CISA
CISA
added 2023/01/20 12:0 a.m.13 views

Drupal Releases Security Advisories to Address Multiple Vulnerabilities

Drupal has released security advisories to address vulnerabilities affecting multiple products. An attacker could exploit these vulnerabilities to access sensitive information. CISA encourages users and administrators to review Drupal’s security advisories SA-CORE-2023-001, SA-CONTRIB-2023-002,...

2.3AI score
Exploits0References4
CISA
CISA
added 2023/01/18 12:0 a.m.12 views

Mozilla Releases Security Updates for Firefox

Mozilla has released security updates to address vulnerabilities in Firefox ESR and Firefox. An attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review Mozilla’s security advisories for Firefox ESR 102.7 and...

2.5AI score
Exploits0References2
Rows per page
Query Builder