Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

14826 matches found

RedHat Linux
RedHat Linuxadded 2024/09/11 6:33 p.m.33 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.14.36 security update

Red Hat OpenShift Container Platform release 4.14.36 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.14. Red Hat Product Security has rated this update as having a...

7.5CVSS7AI score0.94072EPSS
Exploits5References41
CVE
CVEadded 2024/09/11 3:14 p.m.89 views

CVE-2024-45030

The CVE affects the Linux kernel igb NIC driver: when MAX_SKB_FRAG grows large (e.g., 45), payloads can be corrupted on TX because the driver does not correctly account for shared info size while choosing the ring layout and may fit two packets in a single 4K page. Root cause: underestimation of ...

5.5CVSS6AI score0.00209EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessusadded 2024/09/10 12:0 a.m.88 views

NewStart CGSL MAIN 6.02 : openssh Vulnerability (NS-SA-2024-0061)

The remote NewStart CGSL host, running version MAIN 6.02, has openssh packages installed that are affected by a vulnerability: - A vulnerability was found in OpenSSH. The PKCS11 feature in the ssh-agent in OpenSSH has an insufficiently trustworthy search path, leading to remote code execution if ...

9.8CVSS8.3AI score0.76768EPSS
Exploits10References3
Tenable Nessus
Tenable Nessusadded 2024/09/10 12:0 a.m.34 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : wireshark (SUSE-SU-2024:3165-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3165-1 advisory. wireshark was updated from version 3.6.23 to version 4.2.6 jscPED-8517: - Security issues fixed...

7.8CVSS7.3AI score0.03456EPSS
Exploits7References34
OpenVAS
OpenVASadded 2024/09/10 12:0 a.m.12 views

Fedora: Security Advisory (FEDORA-2023-a3af7820e8)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.4AI score0.94072EPSS
Exploits4References4
OpenVAS
OpenVASadded 2024/09/10 12:0 a.m.12 views

Fedora: Security Advisory (FEDORA-2023-11f1c85512)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7AI score0.00613EPSS
Exploits1References8
OpenVAS
OpenVASadded 2024/09/10 12:0 a.m.13 views

Fedora: Security Advisory (FEDORA-2023-31d5d51a2d)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7AI score0.00613EPSS
Exploits1References8
OpenVAS
OpenVASadded 2024/09/10 12:0 a.m.17 views

Fedora: Security Advisory (FEDORA-2023-791e2dc6cb)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS6.8AI score0.05623EPSS
Exploits0References4
ICS
ICSadded 2024/09/10 12:0 a.m.36 views

Siemens Industrial Products

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...

8.1CVSS9AI score0.99506EPSS
Exploits68References10
RedHat Linux
RedHat Linuxadded 2024/09/05 2:13 p.m.2 views

python-jose: algorithm confusion with OpenSSH ECDSA keys and other key formats

python-jose through 3.3.0 has algorithm confusion with OpenSSH ECDSA keys and other key formats. This is similar to CVE-2022-29217...

6.5CVSS7.3AI score0.00307EPSS
Exploits1References4
Packet Storm
Packet Stormadded 2024/09/01 12:0 a.m.269 views

Cerberus FTP Server SFTP Username Enumeration

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'net/ssh' class MetasploitModule 'Cerberus FTP Server SFTP Username Enumeration', 'Description' = %q This module uses a dictionary to brute force valid usernames...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/09/01 12:0 a.m.240 views

Fortinet SSH Backdoor Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Fortinet SSH Backdoor Scanner', 'Description' = %q This module scans for the Fortinet SSH backdoor. , 'Author' = 'operator8203 ', PoC 'wvu' Modul...

10CVSS7AI score0.71268EPSS
Exploits8
Packet Storm
Packet Stormadded 2024/09/01 12:0 a.m.213 views

GitLab User Enumeration

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'json' class MetasploitModule 'GitLab User Enumeration', 'Description' = " The GitLab 'internal' API is exposed unauthenticated on GitLab. This allows the userna...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/09/01 12:0 a.m.145 views

Apache Karaf Default Credentials Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'net/ssh' class MetasploitModule "Apache Karaf Default Credentials Command Execution", 'Description' = %q This module exploits a default misconfiguration flaw on...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/09/01 12:0 a.m.168 views

Eaton Xpert Meter SSH Private Key Exposure Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework XXX: This shouldn't be necessary but is now require 'net/ssh' require 'net/ssh/commandstream' class MetasploitModule 'Eaton Xpert Meter SSH Private Key Exposure Scanner'...

10CVSS7.1AI score0.34929EPSS
Exploits3
Packet Storm
Packet Stormadded 2024/09/01 12:0 a.m.267 views

Juniper SSH Backdoor Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'net/ssh' class MetasploitModule 'Juniper SSH Backdoor Scanner', 'Description' = %q This module scans for the Juniper SSH backdoor also valid on Telnet. Any...

10CVSS7AI score0.614EPSS
Exploits7
Packet Storm
Packet Stormadded 2024/08/31 12:0 a.m.143 views

Sysax Multi-Server 6.10 SSHD Key Exchange Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Sysax Multi-Server 6.10 SSHD Key Exchange Denial of Service', 'Description' = %q This module sends a specially-crafted SSH Key Exchange causing t...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/08/31 12:0 a.m.262 views

Progress MOVEit SFTP Authentication Bypass for Arbitrary File Read

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'net/ssh/transport/session' require 'net/sftp' require 'openssl' class MetasploitModule 'Progress MOVEit SFTP Authentication Bypass for Arbitrary File Read',...

9.8CVSS7.1AI score0.75812EPSS
Exploits3
Packet Storm
Packet Stormadded 2024/08/31 12:0 a.m.289 views

QNAP QTS and Photo Station Local File Inclusion

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'QNAP QTS and Photo Station Local File Inclusion', 'Description' = %q This module exploits a local file inclusion in QNAP QTS and Photo Station th...

9.8CVSS7AI score0.89681EPSS
Exploits11
The Hacker News
The Hacker Newsadded 2024/08/30 6:12 a.m.45 views

Atlassian Confluence Vulnerability Exploited in Crypto Mining Campaigns

Threat actors are actively exploiting a now-patched, critical security flaw impacting the Atlassian Confluence Data Center and Confluence Server to conduct illicit cryptocurrency mining on susceptible instances. "The attacks involve threat actors that employ methods such as the deployment of shel...

10CVSS9.6AI score0.99984EPSS
Exploits31
Rows per page
Query Builder