Lucene search
K

58880 matches found

Cvelist
Cvelist
added yesterday4 views

CVE-2026-59874 node-tar: Negative tar entry size causes infinite loop in archive replace

node-tar is a tar archive manipulation library for Node.js. Prior to 7.5.18, tar.replace accepts a checksum-valid tar header with a negative base-256 encoded entry size, causing the archive scanner to make no progress while repeatedly parsing the same header. This issue is fixed in version 7.5.18...

8.7CVSS
Exploits0References3
Nuclei
Nuclei
added 2 days ago46 views

Lantronix PremierWave 2050 8.9.0.0R4 - Remote Command Injection

Lantronix PremierWave 2050 8.9.0.0R4 contains an OS command injection vulnerability. A specially-crafted HTTP request can lead to command in the Web Manager Wireless Network Scanner. An attacker can make an authenticated HTTP request to trigger this vulnerability. id: CVE-2021-21881 info: name:...

9.9CVSS7.2AI score0.37064EPSS
Exploits1References4
Nuclei
Nuclei
added 2 days ago34 views

DataEase - Remote Code Execution

DataEase is an open-source business intelligence and data visualization platform. Public advisories state that CVE-2025-49002 is related to a bypass in the previous fix for CVE-2025-32966 involving case-insensitive handling of restricted H2 JDBC keywords. This template is a non-invasive detection...

9.8CVSS6AI score0.41835EPSS
Exploits2References2
OSV
OSV
added 3 days ago3 views

MAL-2026-6795 Malicious code in zod-pino444 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 560c3d47344d4da5dffac230236b5248d2f1856c221ffac7ff72d4e3b197957b Package [email protected] is a credential/secret harvester disguised behind a benign-sounding name. scripts/postinstall-agent.mjs is a...

6AI score
Exploits0References4
Tenable Nessus
Tenable Nessus
added 3 days ago5 views

Linux Distros Unpatched Vulnerability : CVE-2018-25282

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Nmap 7.70 contains a denial of service vulnerability that allows local attackers to crash the application by processing malicious XML files with exponential...

6.9CVSS6AI score0.00121EPSS
Exploits0References2
Snyk
Snyk
added 5 days ago6 views

Deserialization of Untrusted Data

Overview picklescan is a Security scanner detecting Python Pickle files performing suspicious actions Affected versions of this package are vulnerable to Deserialization of Untrusted Data via the numpy.f2py.crackfortran process. An attacker can execute arbitrary code by crafting malicious pickle...

8.1CVSS6.2AI score0.003EPSS
Exploits0References2
Cvelist
Cvelist
added 5 days ago35 views

CVE-2025-71347 picklescan - Undetected Remote Code Execution via numpy.f2py.crackfortran.param_eval

picklescan before 0.0.33 fails to detect malicious pickle files using numpy.f2py.crackfortran.parameval function in reduce methods, allowing attackers to bypass security checks. Remote attackers can embed undetected code in pickle files that executes during deserialization, enabling arbitrary cod...

8.1CVSS0.00445EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 5 days ago6 views

Linux Distros Unpatched Vulnerability : CVE-2026-14604

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was determined in Open Asset Import Library Assimp up to 6.0.4. Affected is the function Assimp::Exporter::ExportToBlob of the file...

6.5CVSS6.2AI score0.00233EPSS
Exploits0References4
Snyk
Snyk
added 6 days ago6 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization due to improper error handling in the pre-receive process when processing input with bufio.Scanner. An attacker can bypass branch-protection checks by submitting oversized input that triggers scanner errors...

9.8CVSS6AI score0.00472EPSS
Exploits0References2
NVD
NVD
added 6 days ago5 views

CVE-2026-27780

Gitea versions before 1.26.0 do not fail closed on bufio.Scanner errors while processing pre-receive hook input, allowing oversized input to bypass branch-protection checks...

9.8CVSS0.00472EPSS
Exploits0References3
CVE
CVE
added 6 days ago28 views

CVE-2026-27780

The CVE-2026-27780 issue affects Gitea versions before 1.26.0, where pre-receive hook input processing with bufio.Scanner may error without failing closed, allowing oversized input to bypass branch-protection checks. The root cause is improper handling of scanner errors in the pre-receive path. A...

9.8CVSS6AI score0.00472EPSS
Exploits0References3
Cvelist
Cvelist
added 6 days ago35 views

CVE-2026-27780 Gitea pre-receive hook can miss branch-protection checks after scanner errors

Gitea versions before 1.26.0 do not fail closed on bufio.Scanner errors while processing pre-receive hook input, allowing oversized input to bypass branch-protection checks...

0.00472EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 6 days ago4 views

CVE-2026-27780

Gitea versions before 1.26.0 do not fail closed on bufio.Scanner errors while processing pre-receive hook input, allowing oversized input to bypass branch-protection checks...

6AI score0.00472EPSS
Exploits0References4
EUVD
EUVD
added 6 days ago6 views

EUVD-2026-41638

Gitea versions before 1.26.0 do not fail closed on bufio.Scanner errors while processing pre-receive hook input, allowing oversized input to bypass branch-protection checks...

6AI score0.00472EPSS
Exploits0References3
Chainguard
Chainguard
added last week8 views

GHSA-4JJ9-CGQC-X9H5 vulnerabilities

Vulnerabilities for packages: neuvector-scanner-fips...

5.8AI score
Exploits0
Chainguard
Chainguard
added last week7 views

CVE-2025-66001 vulnerabilities

Vulnerabilities for packages: neuvector-scanner-fips...

8.8CVSS7.2AI score0.00321EPSS
Exploits0
Wolfi
Wolfi
added last week9 views

CVE-2025-53884 vulnerabilities

Vulnerabilities for packages: neuvector-scanner...

5.3CVSS5.8AI score0.00162EPSS
Exploits0
Wolfi
Wolfi
added last week11 views

GHSA-8FF6-PC43-JWV3 vulnerabilities

Vulnerabilities for packages: neuvector-scanner...

5.8AI score
Exploits0
Chainguard
Chainguard
added last week11 views

GHSA-8FF6-PC43-JWV3 vulnerabilities

Vulnerabilities for packages: neuvector-scanner-fips, neuvector-scanner...

5.9AI score
Exploits0
Chainguard
Chainguard
added last week9 views

CVE-2025-53884 vulnerabilities

Vulnerabilities for packages: neuvector-scanner-fips, neuvector-scanner...

5.3CVSS5.9AI score0.00162EPSS
Exploits0
Rows per page
Query Builder