Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

OSV
OSVadded 2026/04/01 6:16 p.m.1 views

UBUNTU-CVE-2026-27489

Open Neural Network Exchange ONNX is an open standard for machine learning interoperability. Prior to version 1.21.0, a path traversal vulnerability via symlink allows to read arbitrary files outside model or user-provided directory. This issue has been patched in version 1.21.0...

8.7CVSS5.9AI score0.00522EPSS
Exploits1References2
CVE
CVEadded 2026/04/01 5:39 p.m.9 views

CVE-2026-34447

Onnx ONNX prior to version 1.21.0 has a symlink traversal vulnerability in external data loading that can read files outside the model directory. Affected component: ONNX data loading logic. Root cause: symlink traversal allowing access to restricted files. Impact: potential confidentiality breac...

5.5CVSS5.8AI score0.00248EPSS
Exploits1References1Affected Software1
Redos
Redosadded 2026/04/01 12:0 a.m.2 views

ROS-20260401-73-0016

A vulnerability in the pngdoquantize function of the pngrtran.c component of the PNG Libpng bitmap graphics library is related to reading outside the allowed data buffer boundaries. Exploitation of the vulnerability may allow an attacker to gain access to confidential data and cause a denial of...

6.1CVSS6AI score0.00181EPSS
Exploits2
CNVD
CNVDadded 2026/03/24 12:0 a.m.3 views

OpenClaw Information Disclosure Vulnerability (CNVD-2026-14826)

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from an information disclosure vulnerability that stems from the failure of a sandbox mirroring tool to enforce the tools.fs.workspaceOnly restriction on mounted sandbox paths, which can be exploited by an...

6.5CVSS5.9AI score0.00315EPSS
Exploits0References1
Redos
Redosadded 2026/01/29 12:0 a.m.5 views

ROS-20260129-73-0013

A vulnerability in the OBEX protocol implementation of the Bluetooth protocol stack for Linux BlueZ is related to reading outside the valid range. Exploitation of the vulnerability could allow a remote attacker to gain access to protected information...

5.7CVSS5.9AI score0.00949EPSS
Exploits0
Redos
Redosadded 2026/01/29 12:0 a.m.3 views

ROS-20260129-73-0012

A vulnerability in the Audio Profile AVRCP component of the Bluetooth protocol stack for Linux BlueZ is related to reading outside the valid range. Exploitation of the vulnerability could allow a remote attacker to gain unauthorized access to protected information...

5.7CVSS5.9AI score0.00808EPSS
Exploits0
BDU FSTEC
BDU FSTECadded 2024/09/03 12:0 a.m.2 views

The vulnerability of the ngx_http_v4_module in NGINX Plus and NGINX OSS web servers, related to reading data from outside of memory, allows attackers to cause service interruptions.

The vulnerability of the ngxhttpv4module in NGINX Plus and NGINX OSS web servers is related to reading data from outside of the memory boundaries. Exploiting this vulnerability can allow attackers to cause service failures...

4.7CVSS6.5AI score0.0032EPSS
Exploits0References8Affected Software6
CNNVD
CNNVDadded 2022/10/07 12:0 a.m.3 views

Autodesk Image Processing 缓冲区错误漏洞

Autodesk Image Processing is an image processing software from Autodesk, Inc. A security vulnerability exists in Autodesk Image Processing, which originates when parsing TIFF, PICT, TGA, or RLC files, the Autodesk Image Processing component may be forced to read outside of allocated boundaries,...

7.8CVSS7.7AI score0.00242EPSS
Exploits0References2
Rows per page
Query Builder