Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

644 matches found

NVD
NVDadded 2 days ago4 views

CVE-2026-38640

A reachable unwrap in the assertfail function /assert/mod.rs of relibc commit 61f42d allows attackers to cause a Denial of Service DoS via a crafted string...

7.5CVSS0.00168EPSS
Exploits0References4
NVD
NVDadded 2 days ago4 views

CVE-2026-9718

CWE-617 Reachable Assertion vulnerability exists that could allow an authenticated attacker to trigger a denial-of-service condition, impacting system availability when a specially crafted request is sent to a vulnerable network-exposed service...

6.9CVSS0.00242EPSS
Exploits0References1
Cvelist
Cvelistadded 2 days ago31 views

CVE-2026-9718

CWE-617 Reachable Assertion vulnerability exists that could allow an authenticated attacker to trigger a denial-of-service condition, impacting system availability when a specially crafted request is sent to a vulnerable network-exposed service...

6.9CVSS0.00242EPSS
Exploits0References1
CVE
CVEadded 2 days ago10 views

CVE-2026-9718

Technical details about CVE-2026-9718 are not publicly available in the provided documents; monitor for updates from official advisories.

6.9CVSS5.9AI score0.00242EPSS
Exploits0References1
EUVD
EUVDadded 2 days ago3 views

EUVD-2026-39435

CWE-617 Reachable Assertion vulnerability exists that could allow an authenticated attacker to trigger a denial-of-service condition, impacting system availability when a specially crafted request is sent to a vulnerable network-exposed service...

6.9CVSS5.9AI score0.00242EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2 days ago4 views

PT-2026-52580

Name of the Vulnerable Software and Affected Versions relibc affected versions not specified Description A reachable unwrap in the assert fail function located in /assert/mod.rs allows attackers to cause a Denial of Service DoS by providing a crafted string. An unwrap is a operation that attempts...

5.8AI score0.00168EPSS
Exploits0References6
CVE
CVEadded 2 days ago5 views

CVE-2026-38640

CVE-2026-38640 affects relibc. A reachable unwrap in the __assert_fail function (/assert/mod.rs) from commit 61f42d may cause a Denial of Service via a crafted string. The vulnerability is evidenced in multiple sources (NVD record, cve lists, and third-party reports) with CVSS:3.1/AV:N/AC:L/PR:N/...

7.5CVSS5.9AI score0.00168EPSS
Exploits0References4
AstraLinux
AstraLinuxadded 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in avahi

A vulnerability was discovered in Avahi. There exists a potentially exploitable assertion in the avahirdataparse function...

6.2CVSS6.5AI score0.00306EPSS
Exploits0References2
Snyk
Snykadded 2026/06/16 5:34 p.m.8 views

Reachable Assertion

Overview vllm is an A high-throughput and memory-efficient inference and serving engine for LLMs Affected versions of this package are vulnerable to Reachable Assertion via the resolveobjbyqualname function. An attacker can execute arbitrary code by publishing a malicious model with a crafted...

7.5CVSS6.2AI score0.00428EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2026/06/12 12:0 a.m.9 views

PT-2026-49108

CVE-2026-10676 - Rejected reason: This CVE Record has been rejected CVE ID :CVE-2026-10676 Published : June 12, 2026, 12:16 a.m. | 1 hour, 14 minutes ago Description :Rejected reason: This CVE Record has been rejected by the Zephyr Project CNA. Subsequent analysis determined that the addressed...

5.1AI score
Exploits0References1
OSV
OSVadded 2026/06/08 10:16 a.m.5 views

SUSE-SU-2026:2296-1 Security update for avahi

This update for avahi fixes the following issue: - CVE-2026-34933: reachable assertion in transportflagsfromdomain can crash the avahi-daemon bsc1261546...

5.5CVSS5.4AI score0.00203EPSS
Exploits1References3
RedhatCVE
RedhatCVEadded 2026/06/08 2:58 a.m.10 views

CVE-2026-26422

clash-verge-service-ipc before 2.3.0 has a world-reachable IPC endpoint, leading to local privilege escalation...

8.4CVSS5.4AI score0.00164EPSS
Exploits0References1
EUVD
EUVDadded 2026/06/07 12:31 a.m.10 views

EUVD-2026-34977

clash-verge-service-ipc before 2.3.0 has a world-reachable IPC endpoint, leading to local privilege escalation...

8.4CVSS5.4AI score0.00164EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/06/06 12:0 a.m.29 views

CVE-2026-26422

clash-verge-service-ipc before 2.3.0 has a world-reachable IPC endpoint, leading to local privilege escalation...

8.4CVSS0.00164EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2026/06/06 12:0 a.m.6 views

CVE-2026-26422

clash-verge-service-ipc before 2.3.0 has a world-reachable IPC endpoint, leading to local privilege escalation...

8.4CVSS5.4AI score0.00164EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/06/06 12:0 a.m.9 views

PT-2026-47167

Name of the Vulnerable Software and Affected Versions clash-verge-service-ipc versions prior to 2.3.0 Description The software contains a world-reachable IPC Inter-Process Communication endpoint, which is a mechanism that allows different processes to communicate. This configuration allows for...

8.4CVSS5.5AI score0.00164EPSS
Exploits0References7
CVE
CVEadded 2026/06/06 12:0 a.m.21 views

CVE-2026-26422

The issue: clash-verge-service-ipc before 2.3.0 exposes a world-reachable IPC endpoint, enabling local privilege escalation. Affected component: clash-verge-service-ipc; root cause: insecure IPC surface with broad access from localhost. Impact: local privilege escalation with high confidentiality...

8.4CVSS5.4AI score0.00164EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2026/06/05 7:48 p.m.8 views

CVE-2026-10300

A security vulnerability has been detected in SGLang 0.5.10.post1. Impacted is an unknown function of the file python/sglang/srt/lora/loramanager.py of the component Inference HTTP Endpoint. Such manipulation of the argument lorapath leads to reachable assertion. The attack can be launched...

6.3CVSS4.8AI score0.00368EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/06/02 12:0 a.m.8 views

CVE-2026-48682

FastNetMon Community Edition through 1.2.9 contains an out-of-bounds read in the IPv4 packet parser. In src/simplepacketparserng.cpp, after validating that the packet contains at least sizeofipv4headert bytes 20 bytes, the code advances the localpointer by '4 ipv4header-getihl' line 164 without...

5.9AI score0.00267EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2026/06/01 11:0 p.m.10 views

CVE-2026-10300 SGLang Inference HTTP Endpoint lora_manager.py assertion

A security vulnerability has been detected in SGLang 0.5.10.post1. Impacted is an unknown function of the file python/sglang/srt/lora/loramanager.py of the component Inference HTTP Endpoint. Such manipulation of the argument lorapath leads to reachable assertion. The attack can be launched...

6.3CVSS5.2AI score0.00368EPSS
Exploits0References6
Rows per page
Query Builder