Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2013-0003

Malware in sbrugna...

2.1CVSS6.1AI score0.00156EPSS
Exploits1References13
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2024-1406

Malicious code in bioql PyPI...

6.7CVSS7AI score0.00185EPSS
Exploits0References8
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2023-2366

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00415EPSS
Exploits1References6
OSV
OSVadded 2025/06/03 10:15 a.m.4 views

CVE-2024-54189

A privilege escalation vulnerability exists in the Snapshot functionality of Parallels Desktop for Mac version 20.1.1 build 55740. When a snapshot of a virtual machine is taken, a root service writes to a file owned by a normal user. By using a hard link, an attacker can write to an arbitrary fil...

7.8CVSS5.9AI score
Exploits0References2
Cvelist
Cvelistadded 2024/03/26 3:17 p.m.21 views

CVE-2024-26644 btrfs: don't abort filesystem when attempting to snapshot deleted subvolume

In the Linux kernel, the following vulnerability has been resolved: btrfs: don't abort filesystem when attempting to snapshot deleted subvolume If the source file descriptor to the snapshot ioctl refers to a deleted subvolume, we get the following abort: BTRFS: Transaction aborted error -2 WARNIN...

7.5AI score0.00007EPSS
Exploits0References7
OSV
OSVadded 2023/01/27 11:15 p.m.1 views

UBUNTU-CVE-2022-39324

Grafana is an open-source platform for monitoring and observability. Prior to versions 8.5.16 and 9.2.8, malicious user can create a snapshot and arbitrarily choose the originalUrl parameter by editing the query, thanks to a web proxy. When another user opens the URL of the snapshot, they will be...

6.7CVSS6.7AI score0.00185EPSS
Exploits0References7
NCSC
NCSCadded 2021/10/12 12:0 a.m.3 views

Vulnerability fixed in Grafana Enterprise

A vulnerability has been fixed in the Snapshot functionality of Grafana. A malicious party could exploit the vulnerability to obtain sensitive information that should not have been shared with them should have been shared. Under certain circumstances, when "publicmode" is configured, an...

9.8CVSS8.2AI score0.9435EPSS
Exploits1
FreeBSD
FreeBSDadded 2021/09/15 12:0 a.m.203 views

Grafana -- Snapshot authentication bypass

Grafana Labs reports: Unauthenticated and authenticated users are able to view the snapshot with the lowest database key by accessing the literal paths: /dashboard/snapshot/:key, or /api/snapshots/:key If the snapshot "publicmode" configuration setting is set to true vs default of false,...

9.8CVSS3.8AI score0.9435EPSS
Exploits1References1
OSV
OSVadded 2015/08/31 6:59 p.m.0 views

UBUNTU-CVE-2014-2331

CheckMK 1.2.2p2, 1.2.2p3, and 1.2.3i5 allows remote authenticated users to execute arbitrary Python code via a crafted rules.mk file in a snapshot. NOTE: this can be exploited by remote attackers by leveraging CVE-2014-2330...

8.5CVSS6.3AI score0.00805EPSS
Exploits1References3
RedHat Linux
RedHat Linuxadded 2013/10/22 5:17 p.m.1 views

kernel: dm: dm-snapshot data leak

Interpretation conflict in drivers/md/dm-snap-persistent.c in the Linux kernel through 3.11.6 allows remote authenticated users to obtain sensitive information or modify data via a crafted mapping to a snapshot block device...

6CVSS6.8AI score0.00804EPSS
Exploits1References4
Rows per page
Query Builder