Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2242 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-24649

Malicious code in bioql PyPI...

7.1CVSS6.3AI score0.00324EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2021-30137

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.01943EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.6 views

EUVD-2022-29036

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.02634EPSS
Exploits2References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2022-15465

Malicious code in bioql PyPI...

6.5CVSS8AI score0.00732EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2023-57913

Malicious code in bioql PyPI...

5.4CVSS6.5AI score0.00426EPSS
Exploits2References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2023-49580

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00214EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.5 views

EUVD-2024-41284

Malicious code in bioql PyPI...

7.5CVSS6.5AI score0.00619EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-24303

Malicious code in bioql PyPI...

7.8CVSS6.2AI score0.0041EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2024-34741

Malicious code in bioql PyPI...

7.1CVSS6.4AI score0.00354EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-30892

Malicious code in bioql PyPI...

8.2CVSS6.7AI score0.0367EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-24305

Malicious code in bioql PyPI...

7.8CVSS6.2AI score0.0041EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.56 views

EUVD-2025-24265

Malicious code in bioql PyPI...

7.5CVSS6.5AI score0.00359EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-27898

Malicious code in bioql PyPI...

7.5AI score0.00149EPSS
Exploits0References8
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2021-29747

Malicious code in bioql PyPI...

7.3CVSS7.5AI score0.00626EPSS
Exploits0References3
SUSE CVE
SUSE CVEadded 2025/10/02 11:22 p.m.1 views

SUSE CVE-2025-59537

Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. Versions 1.2.0 through 1.8.7, 2.0.0-rc1 through 2.14.19, 3.0.0-rc1 through 3.2.0-rc1, 3.1.7 and 3.0.18 are vulnerable to malicious API requests which can crash the API server and cause denial of service to legitimate client...

5.3CVSS8.9AI score0.0055EPSS
Exploits1References3
SUSE CVE
SUSE CVEadded 2025/10/02 11:22 p.m.1 views

SUSE CVE-2025-59538

Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. For versions 2.9.0-rc1 through 2.14.19, 3.0.0-rc1 through 3.2.0-rc1, 3.1.6 and 3.0.17, when the webhook.azuredevops.username and webhook.azuredevops.password are not set in the default configuration, the /api/webhook endpoi...

5.3CVSS7AI score0.00536EPSS
Exploits1References3
Vulnrichment
Vulnrichmentadded 2025/10/01 9:9 p.m.1 views

CVE-2025-59538 Argo CD is Vulnerable to Unauthenticated Remote DoS via malformed Azure DevOps git.push webhook

Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. For versions 2.9.0-rc1 through 2.14.19, 3.0.0-rc1 through 3.2.0-rc1, 3.1.6 and 3.0.17, when the webhook.azuredevops.username and webhook.azuredevops.password are not set in the default configuration, the /api/webhook endpoi...

7.5CVSS6.5AI score0.00536EPSS
Exploits1References2
Github Security Blog
Github Security Blogadded 2025/09/30 6:32 p.m.10 views

Argo CD Unauthenticated Remote DoS via malformed Azure DevOps git.push webhook

Summary In the default configuration, webhook.azuredevops.username and webhook.azuredevops.password not set, Argo CD’s /api/webhook endpoint crashes the entire argocd-server process when it receives an Azure DevOps Push event whose JSON array resource.refUpdates is empty. The slice index 0 is...

7.5CVSS7.4AI score0.00536EPSS
Exploits1References5Affected Software2
OSV
OSVadded 2025/09/30 6:32 p.m.2 views

GHSA-GPX4-37G2-C8PV Argo CD Unauthenticated Remote DoS via malformed Azure DevOps git.push webhook

Summary In the default configuration, webhook.azuredevops.username and webhook.azuredevops.password not set, Argo CD’s /api/webhook endpoint crashes the entire argocd-server process when it receives an Azure DevOps Push event whose JSON array resource.refUpdates is empty. The slice index 0 is...

7.5CVSS7.4AI score0.00536EPSS
Exploits1References5
Snyk
Snykadded 2025/09/30 6:28 p.m.2 views

Improper Validation of Function Hook Arguments

Overview Affected versions of this package are vulnerable to Improper Validation of Function Hook Arguments in the /api/webhook endpoint via the affectedRevisionInfo function. An attacker can cause the server process to crash and disrupt service availability by sending a Gogs push event whose JSO...

8.7CVSS6.9AI score0.0055EPSS
Exploits1References2
Rows per page
Query Builder