Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2395 matches found

NVD
NVDadded 2020/09/02 1:15 p.m.8 views

CVE-2020-16602

Razer Chroma SDK Rest Server through 3.12.17 allows remote attackers to execute arbitrary programs because there is a race condition in which a file created under "%PROGRAMDATA%\Razer Chroma\SDK\Apps" can be replaced before it is executed by the server. The attacker must have access to port 54236...

8.1CVSS8.3AI score0.07085EPSS
Exploits4References4
Prion
Prionadded 2020/09/02 1:15 p.m.16 views

Race condition

Razer Chroma SDK Rest Server through 3.12.17 allows remote attackers to execute arbitrary programs because there is a race condition in which a file created under "%PROGRAMDATA%\Razer Chroma\SDK\Apps" can be replaced before it is executed by the server. The attacker must have access to port 54236...

6.8CVSS8.3AI score0.07085EPSS
Exploits4References4Affected Software1
CVE
CVEadded 2020/09/02 12:57 p.m.102 views

CVE-2020-16602

The CVE concerns Razer Chroma SDK Rest Server. A race condition allows remote code execution by replacing a file created under %PROGRAMDATA%\Razer Chroma\SDK\Apps before it is executed, with exploitation requiring network access on port 54236 during a registration step. Affected software: Razer C...

8.1CVSS8.2AI score0.07085EPSS
Exploits4References4Affected Software1
Cvelist
Cvelistadded 2020/09/02 12:57 p.m.11 views

CVE-2020-16602

Razer Chroma SDK Rest Server through 3.12.17 allows remote attackers to execute arbitrary programs because there is a race condition in which a file created under "%PROGRAMDATA%\Razer Chroma\SDK\Apps" can be replaced before it is executed by the server. The attacker must have access to port 54236...

8.3AI score0.07085EPSS
Exploits4References4
Malwarebytes
Malwarebytesadded 2020/08/21 3:0 p.m.40 views

‘Just tell me how to fix my computer:’ a crash course on malware detection

Malware. You’ve heard the term before, and you know it’s bad for your computer—like a computer virus. Which begs the question: Do the terms “malware” and “computer virus” mean the same thing? How do you know if your computer is infected with malware? Is "malware detection" just a fancy phrase for...

6.8AI score
Exploits0
Akamai Blog
Akamai Blogadded 2020/08/20 1:22 p.m.25 views

The Changing Face of Loyalty Programs Amid and Post-COVID-19

COVID-19 has undoubtedly prompted the Hospitality and Travel industry into a new era of customer loyalty. Currently, "shelter in place" or similar nonessential travel bans are instituted by many countries and companies across the world. Once travel restrictions are lifted, there will be a...

7AI score
Exploits0
OSV
OSVadded 2020/08/17 7:15 p.m.1 views

CVE-2020-1571

An elevation of privilege vulnerability exists in Windows Setup in the way it handles permissions. A locally authenticated attacker could run arbitrary code with elevated system privileges. After successfully exploiting the vulnerability, an attacker could then install programs; view, change, or...

7.3CVSS7.5AI score0.00608EPSS
Exploits0References1
OSV
OSVadded 2020/08/17 7:15 p.m.1 views

CVE-2020-1554

A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory. An attacker who successfully exploited the vulnerability could install programs; view, change, or delete data; or create new accounts with full user rights. There are multiple ways an...

7.8CVSS7.1AI score0.15675EPSS
Exploits0References1
OSV
OSVadded 2020/08/14 4:15 p.m.0 views

CVE-2020-22721

A File Upload Vulnerability in PNotes - Andrey Gruber PNotes.NET v3.8.1.2 allows a local attacker to execute arbitrary code via the Miscellaneous " External Programs by uploading the malicious .exe file to the external program...

7.8CVSS7.4AI score0.00066EPSS
Exploits1References1
Prion
Prionadded 2020/08/14 4:15 p.m.18 views

Unrestricted file upload

A File Upload Vulnerability in PNotes - Andrey Gruber PNotes.NET v3.8.1.2 allows a local attacker to execute arbitrary code via the Miscellaneous " External Programs by uploading the malicious .exe file to the external program...

4.6CVSS7.7AI score0.00066EPSS
Exploits1References1Affected Software1
CNVD
CNVDadded 2020/08/13 12:0 a.m.28 views

Microsoft Windows/Windows Server Elevation of Privilege Vulnerability (CNVD-2021-90800)

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation, an operating system for personal devices, and Microsoft Windows Server, a server operating system. An elevation of privilege vulnerability exists in Microsoft Windows/Windows Server, which could be exploite...

7.8CVSS4AI score0.00376EPSS
Exploits0References1
CNVD
CNVDadded 2020/08/13 12:0 a.m.0 views

Microsoft Windows Media Foundation Memory Corruption Vulnerability (CNVD-2020-48264)

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. Microsoft Windows Media Foundation A memory corruption vulnerability exists in Microsoft...

7.8CVSS6.9AI score0.15021EPSS
Exploits0References1
Gitee
Giteeadded 2020/08/07 1:37 p.m.2 views

webcgi-exploits

This repository is an offensive tool for Web CGI interfaces. It contains exploits for various web CGI interfaces, including PHP and Python. The primary focus is on FastCGI and Apache Modphp. The exploits are designed to take advantage of vulnerabilities in the web CGI interfaces, allowing for...

8.2AI score
Exploits0
OSV
OSVadded 2020/08/05 2:15 p.m.1 views

DEBIAN-CVE-2020-14344

An integer overflow leading to a heap-buffer overflow was found in The X Input Method XIM client was implemented in libX11 before version 1.6.10. As per upstream this is security relevant when setuid programs call XIM client functions while running with elevated privileges. No such programs are...

6.7CVSS7.5AI score0.00162EPSS
Exploits0References1
OSV
OSVadded 2020/08/05 2:15 p.m.25 views

CVE-2020-14344

An integer overflow leading to a heap-buffer overflow was found in The X Input Method XIM client was implemented in libX11 before version 1.6.10. As per upstream this is security relevant when setuid programs call XIM client functions while running with elevated privileges. No such programs are...

6.7CVSS2.9AI score0.00162EPSS
Exploits0References13
Prion
Prionadded 2020/08/05 2:15 p.m.22 views

Integer overflow

An integer overflow leading to a heap-buffer overflow was found in The X Input Method XIM client was implemented in libX11 before version 1.6.10. As per upstream this is security relevant when setuid programs call XIM client functions while running with elevated privileges. No such programs are...

4.6CVSS7AI score0.00162EPSS
Exploits0References13Affected Software4
AlpineLinux
AlpineLinuxadded 2020/08/05 1:8 p.m.27 views

CVE-2020-14344

An integer overflow leading to a heap-buffer overflow was found in The X Input Method XIM client was implemented in libX11 before version 1.6.10. As per upstream this is security relevant when setuid programs call XIM client functions while running with elevated privileges. No such programs are...

6.7CVSS7.6AI score0.00162EPSS
Exploits0
Microsoft Secure
Microsoft Secureadded 2020/08/03 4:0 p.m.20 views

Microsoft Joins Open Source Security Foundation

Microsoft has invested in the security of open-source software for many years and today I’m excited to share that Microsoft is joining industry partners to create the Open Source Security Foundation OpenSSF, a new cross-industry collaboration hosted at the Linux Foundation. The OpenSSF brings...

7.5AI score
Exploits0
Rockylinux
Rockylinuxadded 2020/07/28 12:19 p.m.27 views

postgresql-jdbc security update

An update is available for postgresql-jdbc. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list PostgreSQL is an advanced object-relational database management syste...

7.7CVSS7.7AI score0.07801EPSS
Exploits0
CNVD
CNVDadded 2020/07/20 12:0 a.m.2 views

Microsoft Windows Push Notification Service Elevation of Privilege Vulnerability

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. A security vulnerability exists in the way memory objects are handled in the Microsoft...

7.8CVSS6.7AI score0.00378EPSS
Exploits0References1
Rows per page
Query Builder