Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

OSV
OSVadded 2026/02/05 3:20 a.m.1 views

GO-2026-4395 terraform-provider-proxmox has insecure sudo recommendation in the documentation in github.com/bpg/terraform-provider-proxmox

terraform-provider-proxmox has insecure sudo recommendation in the documentation in github.com/bpg/terraform-provider-proxmox...

8.7CVSS5.3AI score0.0003EPSS
Exploits1References3
Cvelist
Cvelistadded 2025/12/30 7:15 p.m.22 views

CVE-2025-69257 theshit vulnerable to unsafe loading of user-owned Python rules when running as root.

theshit is a command-line utility that automatically detects and fixes common mistakes in shell commands. Prior to version 0.1.1, the application loads custom Python rules and configuration files from user-writable locations e.g., /.config/theshit/ without validating ownership or permissions when...

6.7CVSS0.00004EPSS
Exploits0References2
OpenVAS
OpenVASadded 2025/09/25 12:0 a.m.1 views

Avoid Using the root User to Access the System Locally

Users with the root permission can access all Linux resources. If the root user is used to log in to the Linux OS to perform operations, there are many potential security risks. To avoid the risks, do not use the root user to log in to the Linux OS. If necessary, indirectly use the root user...

6.8AI score
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 8:59 a.m.4 views

CVE-2019-9891

The function getoptsimple as described in Advanced Bash Scripting Guide ISBN 978-1435752184 allows privilege escalation and execution of commands when used in a shell script called, for example, via sudo...

10CVSS7.3AI score0.00738EPSS
Exploits2References1
OpenVAS
OpenVASadded 2025/05/07 12:0 a.m.2 views

Disable the Root User from Logging in to the System Using SSH

The PermitRootLogin parameter in the SSH configuration file /etc/ssh/sshdconfig specifies whether the root user can log in to the system using SSH. The root user is not allowed to log in to the system using SSH. System administrators must use their own user to log in to the system using SSH and r...

7.3AI score
Exploits0References4
Positive Technologies
Positive Technologiesadded 2023/01/11 12:0 a.m.1 views

PT-2023-1103 · Cisco · Cisco Cx Cloud Agent

Name of the Vulnerable Software and Affected Versions: Cisco CX Cloud Agent affected versions not specified Description: A vulnerability in Cisco CX Cloud Agent could allow an authenticated, local attacker to elevate their privileges due to insecure file permissions. An attacker could exploit thi...

6.7CVSS6.5AI score0.00054EPSS
Exploits0References5
OSV
OSVadded 2022/06/07 6:15 p.m.0 views

CVE-2019-9971

PhoneSystem Terminal in 3CX Phone System Debian based installation 16.0.0.1570 allows an attacker to gain root privileges by using sudo with the tcpdump command, without a password. This occurs because the -z aka postrotate-command option to tcpdump can be unsafe when used in conjunction with sud...

8.8CVSS5.7AI score
Exploits0References3
CNNVD
CNNVDadded 2020/11/27 12:0 a.m.2 views

B&r Automation APROL Command Injection Vulnerability

B&r Automation APROL is a Linux-based process control system for industrial control applications from B&r Automation Australia. A command injection vulnerability exists in B&R Industrial Automation APROL versions prior to R4.2 V7.08, which can be exploited to execute with root privileges by...

10CVSS7.5AI score0.00695EPSS
Exploits0References2
Rows per page
Query Builder