Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

32 matches found

OSV
OSVadded 2026/06/15 10:16 p.m.3 views

UBUNTU-CVE-2026-12087

Socket versions before 2.041 for Perl have an out-of-bounds heap read. In Socket.xs, packipmreqsource checks the length of its source argument before the argument is read, so the check tests the byte length carried over from the preceding multiaddr argument instead. Both addresses occupy a 4-byte...

9.1CVSS5.8AI score0.00389EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/06/09 5:5 p.m.31 views

CVE-2026-45596 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

...

7CVSS0.00179EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/06/09 12:0 a.m.13 views

PT-2026-47847

FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary telecom switches to a software implementation that runs on any commodity hardware. Prior to version 1.11.1, esl recv event parses Content-Length with atol and passes the result straight to mallocle...

9.1CVSS5.4AI score0.0031EPSS
Exploits0References4
OSV
OSVadded 2026/05/21 1:33 a.m.5 views

MAL-2026-4470 Malicious code in @zentrix23/baileys (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00e60d3c1f2afd09e236dc4a5ae0cf2373029e6c62c4f7a9c571b13c2da01cd7 This package is a fork of @whiskeysockets/baileys with an undocumented modification: inside makeNewsletterSocket called unconditionally by...

5.8AI score
Exploits0References1
OSV
OSVadded 2026/03/02 3:45 p.m.4 views

MAL-2026-1126 Malicious code in @yaoii-bails/socket (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b9d1cc19b4be6f6fb1f29ceb7bedcf05a41ca8135b966956c84c5095c1629126 The package @yaoii-bails/socket was found to contain malicious code. Source: ghsa-malware...

5.7AI score
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2023-36911

Malicious code in bioql PyPI...

5.5CVSS5.4AI score0.00373EPSS
Exploits1References4
OSV
OSVadded 2024/08/13 6:15 p.m.1 views

CVE-2024-38141

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability...

7.8CVSS5.8AI score0.03566EPSS
Exploits0References1
BDU FSTEC
BDU FSTECadded 2024/06/04 12:0 a.m.3 views

The vulnerability of the Socket Library component in computer typesetting systems like LuaTeX, TeX Live, and MiKTeX allows attackers to execute arbitrary commands.

The vulnerability of the Socket Library component in computer typesetting systems using LuaTeX, TeX Live, and MiKTeX exists due to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

10CVSS6.2AI score0.00373EPSS
Exploits1References11Affected Software4
Mageia
Mageiaadded 2024/04/05 6:24 p.m.40 views

Updated texlive-20220321 packages fix security vulnerabilities

LuaTeX before 1.17.0 allows a document compiled with the default settings to make arbitrary network requests. This occurs because full access to the socket library is permitted by default, as stated in the documentation. This also affects TeX Live before 2023 r66984 and MiKTeX before 23.5...

8.1CVSS7.8AI score0.00902EPSS
Exploits1References2
NVD
NVDadded 2023/05/11 6:15 a.m.12 views

CVE-2023-32668

LuaTeX before 1.17.0 allows a document compiled with the default settings to make arbitrary network requests. This occurs because full access to the socket library is permitted by default, as stated in the documentation. This also affects TeX Live before 2023 r66984 and MiKTeX before 23.5...

5.5CVSS5.8AI score0.00373EPSS
Exploits1References5
OSV
OSVadded 2023/05/11 6:15 a.m.24 views

CVE-2023-32668

LuaTeX before 1.17.0 allows a document compiled with the default settings to make arbitrary network requests. This occurs because full access to the socket library is permitted by default, as stated in the documentation. This also affects TeX Live before 2023 r66984 and MiKTeX before 23.5...

5.5CVSS7.2AI score
Exploits0References5
Prion
Prionadded 2023/05/11 6:15 a.m.20 views

Default configuration

LuaTeX before 1.17.0 allows a document compiled with the default settings to make arbitrary network requests. This occurs because full access to the socket library is permitted by default, as stated in the documentation. This also affects TeX Live before 2023 r66984 and MiKTeX before 23.5...

1.9CVSS5.5AI score0.00373EPSS
Exploits1References4Affected Software3
OSV
OSVadded 2023/05/11 6:15 a.m.1 views

UBUNTU-CVE-2023-32668

LuaTeX before 1.17.0 allows a document compiled with the default settings to make arbitrary network requests. This occurs because full access to the socket library is permitted by default, as stated in the documentation. This also affects TeX Live before 2023 r66984 and MiKTeX before 23.5...

5.5CVSS6.2AI score0.00373EPSS
Exploits1References7
Cvelist
Cvelistadded 2023/05/11 12:0 a.m.19 views

CVE-2023-32668

LuaTeX before 1.17.0 allows a document compiled with the default settings to make arbitrary network requests. This occurs because full access to the socket library is permitted by default, as stated in the documentation. This also affects TeX Live before 2023 r66984 and MiKTeX before 23.5...

6.1AI score0.00373EPSS
Exploits1References4
CNNVD
CNNVDadded 2023/05/11 12:0 a.m.2 views

LuaTeX 安全漏洞

LuaTeX is an extended version of pdfTeX from LuaTeX, using Lua as the embedded scripting language. A security vulnerability exists in LuaTeX versions prior to 1.17.0, which stems from enabling the socket library by default...

5.5CVSS5.5AI score0.00373EPSS
Exploits1References5
Debian CVE
Debian CVEadded 2023/05/11 12:0 a.m.24 views

CVE-2023-32668

LuaTeX before 1.17.0 allows a document compiled with the default settings to make arbitrary network requests. This occurs because full access to the socket library is permitted by default, as stated in the documentation. This also affects TeX Live before 2023 r66984 and MiKTeX before 23.5...

5.5CVSS5.4AI score0.00373EPSS
Exploits1
OSV
OSVadded 2021/01/08 12:15 a.m.1 views

UBUNTU-CVE-2020-36049

socket.io-parser before 3.4.1 allows attackers to cause a denial of service memory consumption via a large packet because a concatenation approach is used...

7.5CVSS7.3AI score0.02589EPSS
Exploits1References5
Tenable Nessus
Tenable Nessusadded 2020/07/09 12:0 a.m.153 views

Debian DSA-4721-1 : ruby2.5 - security update

Several vulnerabilities have been discovered in the interpreter for the Ruby language. - CVE-2020-10663 Jeremy Evans reported an unsafe object creation vulnerability in the json gem bundled with Ruby. When parsing certain JSON documents, the json gem can be coerced into creating arbitrary objects...

7.5CVSS7.5AI score0.06811EPSS
Exploits1References7
Debian
Debianadded 2020/07/08 3:31 p.m.43 views

[SECURITY] [DSA 4721-1] ruby2.5 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4721-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 08, 2020 https://www.debian.org/security/faq -...

7.5CVSS8AI score0.06811EPSS
Exploits1
Debian
Debianadded 2020/07/08 3:31 p.m.150 views

[SECURITY] [DSA 4721-1] ruby2.5 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4721-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 08, 2020 https://www.debian.org/security/faq -...

5CVSS1.4AI score0.06811EPSS
Exploits1
Rows per page
Query Builder