Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

933 matches found

Positive Technologies
Positive Technologiesadded 2023/10/16 12:0 a.m.3 views

PT-2023-6565 · Unknown · Eisbaer Scada

Name of the Vulnerable Software and Affected Versions: EisBaer Scada affected versions not specified Description: The issue is related to the exposure of sensitive information, allowing an unauthorized actor to gain access to protected information. This can be exploited by a remote attacker...

7.8CVSS7.1AI score0.00622EPSS
Exploits0References7
Positive Technologies
Positive Technologiesadded 2023/10/11 12:0 a.m.2 views

PT-2023-20610 · Xiaomi · Xiaomi Router

Name of the Vulnerable Software and Affected Versions: Xiaomi Router affected versions not specified Description: The issue is related to an Improper Neutralization of Special Elements used in a Command, also known as Command Injection. This allows for Command Injection in the Xiaomi Router...

7.2CVSS7.2AI score0.00878EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2023/10/11 12:0 a.m.3 views

PT-2023-14116 · Ibm · Bigfix Patch Management

Name of the Vulnerable Software and Affected Versions: BigFix Patch Management affected versions not specified Description: The issue concerns certain credentials within the BigFix Patch Management Download Plug-ins being stored insecurely. This could potentially expose them to a local privileged...

4.6CVSS6.4AI score0.0015EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2023/10/10 12:0 a.m.7 views

PT-2023-30800 · Smodbip · Smodbip

Name of the Vulnerable Software and Affected Versions: SmodBIP affected versions not specified Description: SmodBIP is vulnerable to Cross-Site Request Forgery, which could be used to induce logged-in users to perform unintended actions, including creation of additional accounts with administrati...

8.8CVSS6.9AI score0.00328EPSS
Exploits0References7
Positive Technologies
Positive Technologiesadded 2023/10/10 12:0 a.m.2 views

PT-2023-5929 · Microsoft · Message Queuing +1

Name of the Vulnerable Software and Affected Versions: Microsoft Message Queuing MSMQ affected versions not specified Description: The issue is related to errors in processing input data in the Message Queuing component of the Windows operating system. It allows a remote attacker to cause a denia...

7.8CVSS9.1AI score0.02395EPSS
Exploits0References8
Positive Technologies
Positive Technologiesadded 2023/10/10 12:0 a.m.3 views

PT-2023-6043 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to insufficient access control in the Windows operating system kernel, allowing an attacker to potentially elevate their privileges. This could affect the system, but...

7.8CVSS9.2AI score0.0053EPSS
Exploits0References7
Positive Technologies
Positive Technologiesadded 2023/10/02 12:0 a.m.6 views

PT-2023-5869 · Qualcomm · Qualcomm Data Modem

Name of the Vulnerable Software and Affected Versions: Qualcomm Data Modem affected versions not specified Description: The issue is related to a cryptographic problem in the Data Modem due to improper authentication during the TLS handshake. This can allow a remote attacker to gain read, modify,...

9.1CVSS7AI score0.0043EPSS
Exploits0References9
Positive Technologies
Positive Technologiesadded 2023/10/02 12:0 a.m.3 views

PT-2023-24153 · Qualcomm · Snapdragon +59

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue involves memory corruption that occurs while parsing the ADSP response command. No information is provided about the estimated number of...

7.8CVSS6.9AI score0.0011EPSS
Exploits0References6
Positive Technologies
Positive Technologiesadded 2023/09/30 12:0 a.m.3 views

PT-2023-28941 · Unknown · Oscommerce

Name of the Vulnerable Software and Affected Versions: Os Commerce affected versions not specified Description: The issue is a Cross-Site Scripting XSS vulnerability that allows attackers to inject JavaScript through the PACKING SLIPS SUMMARY TITLE1 parameter. This could potentially lead to...

5.4CVSS5.2AI score0.00431EPSS
Exploits1References9
Positive Technologies
Positive Technologiesadded 2023/09/30 12:0 a.m.2 views

PT-2023-28955 · Unknown · Oscommerce

Name of the Vulnerable Software and Affected Versions: Os Commerce affected versions not specified Description: The issue is a Cross-Site Scripting XSS vulnerability that allows attackers to inject JavaScript through the name parameter, potentially leading to unauthorized execution of scripts...

5.4CVSS5.3AI score0.00431EPSS
Exploits1References9
Positive Technologies
Positive Technologiesadded 2023/09/12 12:0 a.m.2 views

PT-2023-5292 · Foxit · Foxit Pdf Reader

Name of the Vulnerable Software and Affected Versions: Foxit PDF Reader affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this issue, where the target mus...

7.8CVSS8AI score0.0046EPSS
Exploits0References9
NVD
NVDadded 2023/09/06 1:15 p.m.15 views

CVE-2023-41946

A cross-site request forgery CSRF vulnerability in Jenkins Frugal Testing Plugin 1.1 and earlier allows attackers to connect to Frugal Testing using attacker-specified credentials, and to retrieve test IDs and names from Frugal Testing, if a valid credential corresponds to the attacker-specified...

3.5CVSS5.3AI score0.00271EPSS
Exploits0References2
Cvelist
Cvelistadded 2023/09/06 12:9 p.m.16 views

CVE-2023-41946

A cross-site request forgery CSRF vulnerability in Jenkins Frugal Testing Plugin 1.1 and earlier allows attackers to connect to Frugal Testing using attacker-specified credentials, and to retrieve test IDs and names from Frugal Testing, if a valid credential corresponds to the attacker-specified...

4.7AI score0.00271EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2023/09/04 12:0 a.m.2 views

PT-2023-24567 · Unknown · Vowifiservice

Name of the Vulnerable Software and Affected Versions: vowifiservice affected versions not specified Description: The issue is related to a possible missing permission check in vowifiservice. This could lead to local information disclosure with no additional execution privileges. Recommendations:...

5.5CVSS5.1AI score0.00081EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2023/09/04 12:0 a.m.4 views

PT-2023-26432 · Unknown · Vowifiservice

Name of the Vulnerable Software and Affected Versions: vowifiservice affected versions not specified Description: The issue is related to a possible missing permission check in vowifiservice. This could lead to a local denial of service with no additional execution privileges. Recommendations: At...

5.5CVSS5.2AI score0.00076EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2023/09/04 12:0 a.m.3 views

PT-2023-21795 · Wlan Hal · Wlan Hal

Name of the Vulnerable Software and Affected Versions: WLAN HAL affected versions not specified Description: The issue is related to memory corruption in the WLAN HAL when processing Tx/Rx commands from QDART. This can potentially lead to unspecified consequences. There is no information provided...

7.8CVSS7AI score0.0011EPSS
Exploits0References7
Positive Technologies
Positive Technologiesadded 2023/09/04 12:0 a.m.3 views

PT-2023-24145 · Qualcomm · Qualcomm Snapdragon

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon processors affected versions not specified Description: The issue is related to memory corruption in Graphics while processing user packets for command submission. This can potentially lead to security risks, but specific...

8.4CVSS7.2AI score0.00111EPSS
Exploits0References7
Positive Technologies
Positive Technologiesadded 2023/08/29 12:0 a.m.4 views

PT-2023-23860 · Tenable · Nessus

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: An improper authorization issue exists, allowing an authenticated, low-privileged remote attacker to view a list of all users available in the...

4.3CVSS6.6AI score0.00391EPSS
Exploits0References6
Code423n4
Code423n4added 2023/08/28 12:0 a.m.9 views

Rounding Issue and Inconsistent Fee Application

Lines of code Vulnerability details Summary There is a bug in the swap function. The bug can potentially cause incorrect balance checks and outputs when swapping. This issue arises due to improper usage of the applyFeeByRounding function. Affected Function: swap Details: In the swap function, the...

6.7AI score
Exploits0
AlpineLinux
AlpineLinuxadded 2023/08/21 10:34 p.m.20 views

CVE-2023-4301

A cross-site request forgery CSRF vulnerability in Jenkins Fortify Plugin 22.1.38 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

5.4CVSS6.8AI score0.00196EPSS
Exploits0References1
Rows per page
Query Builder