Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3265 matches found

UbuntuCve
UbuntuCveadded 2026/05/14 2:16 p.m.2 views

CVE-2026-6638

SQL injection in PostgreSQL logical replication ALTER SUBSCRIPTION ... REFRESH PUBLICATION allows a subscriber table creator to execute arbitrary SQL with the subscription's publication-side credentials. The attack takes effect at the next REFRESH PUBLICATION. Within major versions 16, 17, and 18...

8.8CVSS6AI score0.00024EPSS
Exploits0References4
OSV
OSVadded 2026/05/14 2:16 p.m.3 views

UBUNTU-CVE-2026-6638

SQL injection in PostgreSQL logical replication ALTER SUBSCRIPTION ... REFRESH PUBLICATION allows a subscriber table creator to execute arbitrary SQL with the subscription's publication-side credentials. The attack takes effect at the next REFRESH PUBLICATION. Within major versions 16, 17, and 18...

8.8CVSS6.1AI score0.00024EPSS
Exploits0References5
Debian CVE
Debian CVEadded 2026/05/14 1:0 p.m.5 views

CVE-2026-6638

SQL injection in PostgreSQL logical replication ALTER SUBSCRIPTION ... REFRESH PUBLICATION allows a subscriber table creator to execute arbitrary SQL with the subscription's publication-side credentials. The attack takes effect at the next REFRESH PUBLICATION. Within major versions 16, 17, and 18...

8.8CVSS6.1AI score0.00024EPSS
Exploits0
EUVD
EUVDadded 2026/05/14 1:0 p.m.4 views

EUVD-2026-30290

SQL injection in PostgreSQL logical replication ALTER SUBSCRIPTION ... REFRESH PUBLICATION allows a subscriber table creator to execute arbitrary SQL with the subscription's publication-side credentials. The attack takes effect at the next REFRESH PUBLICATION. Within major versions 16, 17, and 18...

3.7CVSS6.1AI score0.00024EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/05/14 1:0 p.m.6 views

CVE-2026-6638

SQL injection in PostgreSQL logical replication ALTER SUBSCRIPTION ... REFRESH PUBLICATION allows a subscriber table creator to execute arbitrary SQL with the subscription's publication-side credentials. The attack takes effect at the next REFRESH PUBLICATION. Within major versions 16, 17, and 18...

3.7CVSS6.1AI score0.00024EPSS
Exploits0References2
AlpineLinux
AlpineLinuxadded 2026/05/14 1:0 p.m.10 views

CVE-2026-6638

SQL injection in PostgreSQL logical replication ALTER SUBSCRIPTION ... REFRESH PUBLICATION allows a subscriber table creator to execute arbitrary SQL with the subscription's publication-side credentials. The attack takes effect at the next REFRESH PUBLICATION. Within major versions 16, 17, and 18...

8.8CVSS6.1AI score0.00024EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2026/05/14 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-6638

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SQL injection in PostgreSQL logical replication ALTER SUBSCRIPTION ... REFRESH PUBLICATION allows a subscriber table creator to execute arbitrary SQL with the...

8.8CVSS6.2AI score0.00024EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/05/14 12:0 a.m.4 views

PT-2026-40927

Name of the Vulnerable Software and Affected Versions PostgreSQL versions 16.0 through 16.13 PostgreSQL versions 17.0 through 17.9 PostgreSQL versions 18.0 through 18.3 Description SQL injection in logical replication occurs when using the 'ALTER SUBSCRIPTION ... REFRESH PUBLICATION' command. Thi...

8.8CVSS6.2AI score0.00076EPSS
Exploits0References37
RedhatCVE
RedhatCVEadded 2026/05/12 2:21 p.m.4 views

CVE-2025-43992

Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains an authentication bypass by assumed-immutable data vulnerability in Geo replication. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to...

5.6CVSS5.8AI score0.00026EPSS
Exploits0References1
Snyk
Snykadded 2026/05/11 9:0 p.m.5 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code that conceals a credential stealer worm. A malicious actor managed to extract a GitHub Actions OIDC token from the runner process and publish tampered versions of 42 @tanstack/ packages to npm, which then spread ...

9.8CVSS5.8AI score
Exploits0References2
EUVD
EUVDadded 2026/05/11 12:32 p.m.8 views

EUVD-2025-209757

Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains an authentication bypass by assumed-immutable data vulnerability in Geo replication. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to...

5.6CVSS5.8AI score0.00026EPSS
Exploits0References2
NVD
NVDadded 2026/05/11 10:16 a.m.7 views

CVE-2025-43992

Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains an authentication bypass by assumed-immutable data vulnerability in Geo replication. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to...

5.6CVSS0.00026EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/05/11 9:27 a.m.32 views

CVE-2025-43992

Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains an authentication bypass by assumed-immutable data vulnerability in Geo replication. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to...

5.6CVSS0.00026EPSS
Exploits0References1
CVE
CVEadded 2026/05/11 9:27 a.m.12 views

CVE-2025-43992

CVE-2025-43992 affects Dell EMC: Dell ECS versions 3.8.1.0–3.8.1.7 and Dell ObjectScale versions before 4.3.0.0. The issue is an authentication bypass via assumed-immutable data in Geo replication, allowing an unauthenticated attacker with remote access to potentially access data in transit. The ...

5.6CVSS5.8AI score0.00026EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichmentadded 2026/05/11 9:27 a.m.4 views

CVE-2025-43992

Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains an authentication bypass by assumed-immutable data vulnerability in Geo replication. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to...

5.6CVSS5.8AI score0.00026EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/05/11 9:27 a.m.3 views

CVE-2025-43992

Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains an authentication bypass by assumed-immutable data vulnerability in Geo replication. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to...

5.6CVSS5.8AI score0.00026EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2026/05/11 12:0 a.m.7 views

Unity Linux 20.1070e Security Update: mysql (UTSA-2026-017671)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017671 advisory. Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Replication. Supported versions that are affected are 8.0.22 and prior. Easily exploitab...

6.8CVSS6.7AI score0.00145EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2026/05/11 12:0 a.m.6 views

Unity Linux 20.1070e Security Update: mysql (UTSA-2026-017443)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017443 advisory. Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Group Replication Plugin. Supported versions that are affected are 8.0.26 and prior...

5.3CVSS6.5AI score0.00254EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2026/05/11 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: mysql (UTSA-2026-017442)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017442 advisory. Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Replication. Supported versions that are affected are 8.0.26 and prior. Easily exploitab...

4.9CVSS6.5AI score0.00379EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2026/05/11 12:0 a.m.13 views

Unity Linux 20.1070e Security Update: mysql (UTSA-2026-017711)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017711 advisory. Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Group Replication Plugin. Supported versions that are affected are 8.0.23 and prior...

1.9CVSS6.7AI score0.00115EPSS
Exploits0References4
Rows per page
Query Builder