Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Xen Project
Xen Projectadded 3 days ago9 views

Arm: Completion of memory accesses not guaranteed by completion of a TLBI

ISSUE DESCRIPTION A hardware issue has been identified in certain Arm CPU designs. A broadcast TLBI on one PE may complete before affected memory accesses on another PE are globally observed. This may permit bypass of Stage 1 translation, Stage 2 translation, or GPT protection. The erratum occurs...

9.1CVSS5.4AI score0.00026EPSS
Exploits0
OSV
OSVadded 2026/05/29 7:47 p.m.6 views

GHSA-G3HP-F6MG-559V Sparkle's AppInstaller post-stage-1 XPC listener accepts unvalidated connections, allowing spoofed appcast item data injection

Summary AppInstaller post-stage-1 XPC listener accepts unvalidated connections, allowing spoofed appcast item data injection. Details Autoupdate/AppInstaller.m's shouldAcceptNewConnection: only enforces SUCodeSigningVerifier validateConnection: before stage 1 completes. After...

4.2CVSS5.8AI score
Exploits0References2
Github Security Blog
Github Security Blogadded 2026/05/29 7:47 p.m.18 views

Sparkle's AppInstaller post-stage-1 XPC listener accepts unvalidated connections, allowing spoofed appcast item data injection

Summary AppInstaller post-stage-1 XPC listener accepts unvalidated connections, allowing spoofed appcast item data injection. Details Autoupdate/AppInstaller.m's shouldAcceptNewConnection: only enforces SUCodeSigningVerifier validateConnection: before stage 1 completes. After...

5.8AI score
Exploits0References2Affected Software1
Positive Technologies
Positive Technologiesadded 2026/05/29 12:0 a.m.7 views

PT-2026-45020

Summary AppInstaller post-stage-1 XPC listener accepts unvalidated connections, allowing spoofed appcast item data injection. Details Autoupdate/AppInstaller.m's shouldAcceptNewConnection: only enforces SUCodeSigningVerifier validateConnection: before stage 1 completes. After...

4.2CVSS5.8AI score
Exploits0References3
The Hacker News
The Hacker Newsadded 2020/04/15 8:26 p.m.30 views

How to transform your revolutionary idea into a reality: $100K Nokia Bell Labs Prize

Revolutionary ideas in science, technology, engineering, and mathematics don't occur every day. But when those "eureka" moments happen, we need to provide a forum to explore those ideas, judge them on their merits, and distinguish the extraordinary from the merely good. Once a year, Nokia Bell La...

6.8AI score
Exploits0
CNVD
CNVDadded 2017/09/29 12:0 a.m.2 views

ARM Trusted Firmware Authentication Vulnerability

ARM Trusted Firmware is an implementation of multiple ARM interface standards. A security vulnerability exists in the BL1 FWU SMC handling code in ARM Trusted Firmware versions prior to 1.4. The vulnerability can be exploited by an attacker with the help of a specially crafted AArch32 image to...

7CVSS7AI score0.00186EPSS
Exploits0References1
GithubExploit
GithubExploitadded 2016/12/08 7:41 a.m.13 views

Exploit for Race Condition in Linux Linux_Kernel

ocoboroot.c linux AFPACKET race condition exploit exploit for...

7.8CVSS6.7AI score0.4799EPSS
Exploits16
Rows per page
Query Builder