Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CNNVD
CNNVDadded 2026/04/22 12:0 a.m.2 views

Red Hat Quay 代码问题漏洞

Red Hat Quay is a distributed container image repository provided by the American company Red Hat. It is primarily used for building, distributing, and deploying containers. Red Hat Quay 3 has code-related vulnerabilities. These vulnerabilities arise from the ability to bypass the re-authenticati...

8.1CVSS5.8AI score0.00023EPSS
Exploits0References1
EUVD
EUVDadded 2026/04/07 3:30 p.m.2 views

EUVD-2026-19692

An issue that could prevent session inactivity timeouts from triggering due to automatic page reloading has been resolved. This is an instance of CWE-613: Insufficient Control of Resources After Expiration or Release, and has an estimated CVSS score of CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N...

5.9CVSS5.8AI score0.00048EPSS
Exploits0References3
OSV
OSVadded 2024/10/02 4:27 p.m.2 views

DRUPAL-CONTRIB-2024-044

This module enables users to remain logged in separately from session timeouts. The module doesn't sufficiently check a user's disabled status when validating cookies. This vulnerability is mitigated by the fact that an attacker must have an unexpired cookie from a previous successful login...

9.8CVSS6.7AI score0.00234EPSS
Exploits0References1
Ivan 'd0znpp' Novikov
Ivan 'd0znpp' Novikovadded 2021/09/10 9:36 a.m.39 views

A2: Broken Authentication ❗️ — Top 10 OWASP 2017

A2: Broken Authentication ❗️ — Top 10 OWASP 2017 Introduction When issues arise within the authentication of a program, there are most likely a wide range of dire implications. An example we can discuss is when there is a weak password policy which allows for easily guessable or brute forceable...

10CVSS9.2AI score0.00317EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2020/05/27 12:0 a.m.24 views

Cisco Firepower Threat Defense Software Management Interface DoS (cisco-sa-ftd-mgmt-interface-dos-FkG4MuTU)

According to its self-reported version, Cisco Firepower Threat Defense Software is affected by a denial of service DoS vulnerability in the management interface due to how FTD handles session timeouts for management connections. An unauthenticated, remote attacker can exploit this issue, by sendi...

5.3CVSS5.8AI score0.00555EPSS
Exploits0References3
OSV
OSVadded 2020/05/06 5:15 p.m.0 views

CVE-2020-3188

A vulnerability in how Cisco Firepower Threat Defense FTD Software handles session timeouts for management connections could allow an unauthenticated, remote attacker to cause a buildup of remote management connections to an affected device, which could result in a denial of service DoS condition...

5.3CVSS6.1AI score
Exploits0References1
securityvulns
securityvulnsadded 2012/04/02 12:0 a.m.70 views

NGS00154 Patch Notification: McAfee Email and Web Security Appliance v5.6 - Session hijacking and bypassing client-side session timeouts

Medium Risk Vulnerability in McAfee Email and Web Security Appliance 29 March 2012 Ben Williams of NGS Secure has discovered a medium risk vulnerability in the McAfee Email and Web Security Appliance Impact: Session hijacking and bypassing client-side session timeouts Versions affected: All...

0.9AI score
Exploits0
Rows per page
Query Builder