Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

30436 matches found

Tenable Nessus
Tenable Nessusadded 2025/03/04 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2019-18282

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The flowdissector feature in the Linux kernel 4.3 through 5.x before 5.3.10 has a device tracking vulnerability, aka CID-55667441c84f. This occurs because the...

5.3CVSS6.7AI score0.02605EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2018-17082

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Apache2 component in PHP before 5.6.38, 7.0.x before 7.0.32, 7.1.x before 7.1.22, and 7.2.x before 7.2.10 allows XSS via the body of a Transfer-Encoding:...

6.1CVSS6.6AI score0.04103EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2025/03/04 12:0 a.m.3 views

PT-2025-9717 · Unknown · Codezips Gym Management System

Name of the Vulnerable Software and Affected Versions: Codezips Gym Management System version 1.0 Description: A critical vulnerability was found in the Codezips Gym Management System. The issue affects an unknown function of the file /change s pwd.php. The manipulation of the login id argument...

9.8CVSS7.6AI score0.00554EPSS
Exploits1References9
Tenable Nessus
Tenable Nessusadded 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2019-3825

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was discovered in gdm before 3.31.4. When timed login is enabled in configuration, an attacker could bypass the lock screen by selecting the tim...

6.9CVSS6.7AI score0.00504EPSS
Exploits1References3
Tenable Nessus
Tenable Nessusadded 2025/03/04 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2015-8472

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer overflow in the pngsetPLTE function in libpng before 1.0.65, 1.1.x and 1.2.x before 1.2.55, 1.3.x, 1.4.x before 1.4.18, 1.5.x before 1.5.25, and 1.6.x...

7.5CVSS7.1AI score0.06054EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2013-20001

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in OpenZFS through 2.0.3. When an NFS share is exported to IPv6 addresses via the sharenfs feature, there is a silent failure to parse t...

7.5CVSS7.2AI score0.02084EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2015-2330

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Late TLS certificate verification in WebKitGTK+ prior to 2.6.6 allows remote attackers to view a secure HTTP request, including, for example, secure cookies...

7.5CVSS7.5AI score0.01694EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/03/04 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2017-12987

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The IEEE 802.11 parser in tcpdump before 4.9.2 has a buffer over-read in print-80211.c:parseelements. CVE-2017-12987 Note that Nessus relies on the presence of...

9.8CVSS7AI score0.03284EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2019-25076

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The TSS Tuple Space Search algorithm in Open vSwitch 2.x through 2.17.2 and 3.0.0 allows remote attackers to cause a denial of service delays of legitimate...

5.8CVSS6.5AI score0.0177EPSS
Exploits1References3
Tenable Nessus
Tenable Nessusadded 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2015-1270

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ucnviogetConverterName function in common/ucnvio.cpp in International Components for Unicode ICU, as used in Google Chrome before 44.0.2403.89, mishandles...

6.8CVSS8.1AI score0.02732EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2017-9050

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a heap-based buffer over-read in the xmlDictAddString function in dict.c. This vulnerability causes program...

7.5CVSS7AI score0.04626EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2021-23841

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The OpenSSL public API function X509issuerandserialhash attempts to create a unique hash value based on the issuer and serial number data contained within an X5...

5.9CVSS6.4AI score0.07471EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2015-8076

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The indexurlfetch function in index.c in Cyrus IMAP 2.3.x before 2.3.19, 2.4.x before 2.4.18, 2.5.x before 2.5.4 allows remote attackers to obtain sensitive...

7.5CVSS7.3AI score0.03261EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2018-1080

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Dogtag PKI, through version 10.6.1, has a vulnerability in AAclAuthz.java that, under certain configurations, causes the application of ACL allow and deny rules...

8.1CVSS7.4AI score0.01516EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2014-8106

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap-based buffer overflow in the Cirrus VGA emulator hw/display/cirrusvga.c in QEMU before 2.2.0 allows local guest users to execute arbitrary code via vectors...

4.6CVSS7.4AI score0.00603EPSS
Exploits0References2
CBLMariner
CBLMarineradded 2025/03/03 10:12 p.m.10 views

CVE-2021-36374 affecting package javapackages-bootstrap for versions less than 1.5.0-6

CVE-2021-36374 affecting package javapackages-bootstrap for versions less than 1.5.0-6. A patched version of the package is available...

5.5CVSS7.2AI score0.0262EPSS
Exploits0
OSV
OSVadded 2025/03/03 8:53 p.m.8 views

GHSA-GH9Q-2XRM-X6QV CGI has Denial of Service (DoS) potential in Cookie.parse

There is a possibility for DoS by in the cgi gem. This vulnerability has been assigned the CVE identifier CVE-2025-27219. We recommend upgrading the cgi gem. Details CGI::Cookie.parse took super-linear time to parse a cookie string in some cases. Feeding a maliciously crafted cookie string into t...

6.3CVSS5.5AI score0.00784EPSS
Exploits0References9
OSV
OSVadded 2025/03/03 4:30 p.m.22 views

CVE-2025-27423 Improper Input Validation in Vim

Vim is an open source, command line text editor. Vim is distributed with the tar.vim plugin, that allows easy editing and viewing of compressed or uncompressed tar files. Starting with 9.1.0858, the tar.vim plugin uses the ":read" ex command line to append below the cursor position, however the i...

7.1CVSS5.6AI score0.20775EPSS
Exploits0References6
Cvelist
Cvelistadded 2025/03/03 4:30 p.m.15 views

CVE-2025-27423 Improper Input Validation in Vim

Vim is an open source, command line text editor. Vim is distributed with the tar.vim plugin, that allows easy editing and viewing of compressed or uncompressed tar files. Starting with 9.1.0858, the tar.vim plugin uses the ":read" ex command line to append below the cursor position, however the i...

7.1CVSS0.20775EPSS
Exploits0References3
CVE
CVEadded 2025/03/03 4:30 p.m.106 views

CVE-2025-27423

CVE-2025-27423 affects Vim (tar.vim plugin). Starting with Vim 9.1.0858, tar.vim uses the :read ex command to append below the cursor; input is not sanitized and is taken literally from the tar archive, allowing shell command execution via specially crafted archives (exploitation depends on the s...

7.1CVSS7.5AI score0.20775EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder