Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CERT
CERTadded 2026/03/24 12:0 a.m.8 views

IDrive for Windows contains local privilege escalation vulnerability

Overview The IDrive Cloud Backup Client for Windows, versions 7.0.0.63 and earlier, contains a privilege escalation vulnerability that allows any authenticated user to run arbitrary executables with NT AUTHORITY\SYSTEM permissions. Description IDrive is a cloud backup service that allows users to...

7.8CVSS6.3AI score0.00171EPSS
Exploits0References1
NVD
NVDadded 2026/02/03 6:16 p.m.2 views

CVE-2025-69431

The ZSPACE Q2C NAS contains a vulnerability related to incorrect symbolic link following. Attackers can format a USB drive to ext4, create a symbolic link to its root directory, insert the drive into the NAS device's slot, and then access the USB drive's directory mounted on the NAS using the Sam...

6.1CVSS0.00281EPSS
Exploits1References1
CVE
CVEadded 2026/01/30 6:4 a.m.19 views

CVE-2026-0963

The CVE-2026-0963 entry concerns Crafty Controller's File Operations API Endpoint, where an input neutralization flaw allows a remote, authenticated attacker to perform file tampering and remote code execution via path traversal. The vulnerability affects the File Operations API Endpoint componen...

9.9CVSS6.5AI score0.00681EPSS
Exploits0References1Affected Software1
OSV
OSVadded 2025/11/12 4:47 p.m.1 views

MAL-2025-162867 Malicious code in nokire-loklok16 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d50515c04bd512a225facc37076bca95b9c98b31c12b860c62d0e3df9091a6d8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSVadded 2025/11/11 7:26 a.m.1 views

MAL-2025-101758 Malicious code in dramatic_flyingfish_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 572e6a2dc480b821a20279d6ba43f0a1f196de58a4fe16c829f83ea6559a019f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSVadded 2025/11/10 4:40 a.m.1 views

MAL-2025-53437 Malicious code in nadia-soto28-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ec6e753d19f801d0110b7183f5f1d494a70a0ccce2ee2dfcae157231564ca79e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
CNNVD
CNNVDadded 2025/06/24 12:0 a.m.2 views

Hitachi MicroSCADA X SYS600 安全漏洞

Hitachi MicroSCADA X SYS600 is a Hitachi MicroSCADA X SYS600 data acquisition and monitoring control system primarily used in power systems. A security vulnerability exists in Hitachi MicroSCADA X SYS600, which can be exploited by an unauthorized local attacker to cause a denial of service by...

6.9CVSS6.1AI score0.0012EPSS
Exploits0References2
Rows per page
Query Builder