Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

OSV
OSVadded 2026/05/21 12:58 p.m.6 views

CLSA-2026-1779368297 polkit: Fix of CVE-2026-4897

CVE-2026-4897: Fix unbounded stdin reads that allow local user to trigger OOM and DoS in setuid helper; add input length checks and limit allocations...

5.5CVSS5.8AI score0.00006EPSS
Exploits0References1
EUVD
EUVDadded 2026/05/19 5:36 p.m.7 views

EUVD-2026-30964

Kitty is a cross-platform GPU based terminal. Versions 0.46.2 and below contain a heap buffer overflow in loadimagedata that allows any process which can write to the terminal's stdin to crash kitty immediately. The vulnerability is triggered by a single APC graphics protocol command with a PNG...

7.5CVSS5.9AI score0.00043EPSS
Exploits1References2
OSV
OSVadded 2026/04/14 12:16 a.m.2 views

UBUNTU-CVE-2026-33948

jq is a command-line JSON processor. Commits before 6374ae0bcdfe33a18eb0ae6db28493b1f34a0a5b contain a vulnerability where CLI input parsing allows validation bypass via embedded NUL bytes. When reading JSON from files or stdin, jq uses strlen to determine buffer length instead of the actual byte...

6.3CVSS6AI score0.00137EPSS
Exploits1References6
ATTACKERKB
ATTACKERKBadded 2026/03/26 2:56 p.m.2 views

CVE-2026-4897

A flaw was found in polkit. A local user can exploit this by providing a specially crafted, excessively long input to the polkit-agent-helper-1 setuid binary via standard input stdin. This unbounded input can lead to an out-of-memory OOM condition, resulting in a Denial of Service DoS for the...

5.5CVSS5.7AI score0.00006EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/03/26 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2026-4897

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in polkit. A local user can exploit this by providing a specially crafted, excessively long input to the polkit-agent-helper-1 setuid binary vi...

5.5CVSS5.7AI score0.00006EPSS
Exploits0References4
OSV
OSVadded 2025/06/06 2:4 p.m.1 views

OESA-2025-1599 pam security update

PAM Pluggable Authentication Modules is a system of libraries that handle the authentication tasks of applications services on the system. Security Fixes: A vulnerability was found in PAM. The secret information is stored in memory, where the attacker can trigger the victim program to execute by...

4.7CVSS6.8AI score0.00042EPSS
Exploits0References2
OSV
OSVadded 2020/01/31 12:0 a.m.1 views

UBUNTU-CVE-2019-18634

In Sudo before 1.8.26, if pwfeedback is enabled in /etc/sudoers, users can trigger a stack-based buffer overflow in the privileged sudo process. pwfeedback is a default setting in Linux Mint and elementary OS; however, it is NOT the default for upstream and many other packages, and would exist on...

7.8CVSS7.3AI score0.88008EPSS
Exploits13References6
OSV
OSVadded 2017/07/19 12:0 a.m.0 views

UBUNTU-CVE-2017-11449

coders/mpc.c in ImageMagick before 7.0.6-1 does not enable seekable streams and thus cannot validate blob sizes, which allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via an image received from stdin...

8.8CVSS6.8AI score0.00442EPSS
Exploits0References3
Rows per page
Query Builder