Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6002 matches found

Positive Technologies
Positive Technologiesadded 2026/05/29 12:0 a.m.9 views

PT-2026-44907

Name of the Vulnerable Software and Affected Versions Froxlor version 2.3.6 Description A symlink-following flaw exists in the root-owned SSH key synchronization path used for customer FTP users. The provisioning code appends public keys to /.ssh/authorized keys within a customer-controlled home...

8.8CVSS5.9AI score0.00366EPSS
Exploits0References8
Tenable Nessus
Tenable Nessusadded 2026/05/29 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-46173

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - exit: prevent preemption of oopsing TASKDEAD task When an already-exiting task oopses, maketaskdead currently calls dotaskdead with preemption enabled. That is...

7.8CVSS5.9AI score0.00126EPSS
Exploits0References4
NVD
NVDadded 2026/05/28 6:16 p.m.22 views

CVE-2026-45374

CodeWhale is a DeepSeek + MiMo coding agent in terminal. Prior to 0.8.26, the taskcreate tool spawns durable sub-agents that inherit two insecure defaults, allowshell defaults to true config.rs:1499: self.allowshell.unwraportrue and autoapprove defaults to true taskmanager.rs:297: autoapprove:...

9.6CVSS0.0026EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/05/28 5:26 p.m.29 views

CVE-2026-45374 CodeWhale: task_create Insecure Defaults Enable RCE via Prompt Injection in Project Files

CodeWhale is a DeepSeek + MiMo coding agent in terminal. Prior to 0.8.26, the taskcreate tool spawns durable sub-agents that inherit two insecure defaults, allowshell defaults to true config.rs:1499: self.allowshell.unwraportrue and autoapprove defaults to true taskmanager.rs:297: autoapprove:...

9.6CVSS0.0026EPSS
Exploits0References2
EUVD
EUVDadded 2026/05/28 5:26 p.m.8 views

EUVD-2026-32962

CodeWhale is a DeepSeek + MiMo coding agent in terminal. Prior to 0.8.26, the taskcreate tool spawns durable sub-agents that inherit two insecure defaults, allowshell defaults to true config.rs:1499: self.allowshell.unwraportrue and autoapprove defaults to true taskmanager.rs:297: autoapprove:...

9.6CVSS5.8AI score0.0026EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/05/28 5:26 p.m.8 views

CVE-2026-45374 CodeWhale: task_create Insecure Defaults Enable RCE via Prompt Injection in Project Files

CodeWhale is a DeepSeek + MiMo coding agent in terminal. Prior to 0.8.26, the taskcreate tool spawns durable sub-agents that inherit two insecure defaults, allowshell defaults to true config.rs:1499: self.allowshell.unwraportrue and autoapprove defaults to true taskmanager.rs:297: autoapprove:...

9.6CVSS5.8AI score0.0026EPSS
Exploits0References2
CVE
CVEadded 2026/05/28 5:26 p.m.21 views

CVE-2026-45374

CVE-2026-45374 affects CodeWhale’s DeepSeek+MiMo task_create flow. Before version 0.8.26, sub-agents inherit two insecure defaults: allow_shell = true and auto_approve = true, enabling unrestricted, unapproved shell access after user approval of a task_create prompt. This can lead to remote comma...

9.6CVSS5.8AI score0.0026EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2026/05/28 5:14 p.m.9 views

CVE-2026-46180

A flaw was found in the Linux kernel. A use-after-free vulnerability exists in the brcmfmac Wi-Fi driver when stopping the watchdog task. This issue occurs because the watchdog task might terminate prematurely, leading to a use-after-free condition. This could allow a local attacker to cause a...

7.8CVSS6AI score0.00135EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2026/05/28 5:14 p.m.7 views

CVE-2026-46173

A flaw was found in the Linux kernel. During the exit process of a task that has encountered an error, the system can incorrectly allow the task to be interrupted. This can lead to improper management of the task's memory, potentially causing memory corruption. Such an issue could allow a local...

7.8CVSS5.8AI score0.00126EPSS
Exploits0References4
EUVD
EUVDadded 2026/05/28 12:30 p.m.16 views

EUVD-2026-32862

FlowIntel up to version 3.3.0 contains a server-side request forgery SSRF vulnerability in the external reference URL probe functionality in app/case/task.py. An attacker who can submit an external reference URL can cause the application server to issue an HTTP HEAD request to an attacker-specifi...

6.2CVSS5.8AI score0.00232EPSS
Exploits0References2
NVD
NVDadded 2026/05/28 10:16 a.m.11 views

CVE-2026-46180

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix potential use-after-free issue when stopping watchdog task Watchdog task might end between sendsig and kthreadstop calls, what results in the use-after-free issue. Fix this by increasing watchdog task referenc...

7.8CVSS0.00135EPSS
Exploits0References8
NVD
NVDadded 2026/05/28 10:16 a.m.9 views

CVE-2026-46173

In the Linux kernel, the following vulnerability has been resolved: exit: prevent preemption of oopsing TASKDEAD task When an already-exiting task oopses, maketaskdead currently calls dotaskdead with preemption enabled. That is forbidden: dotaskdead calls schedule, which has a comment saying...

7.8CVSS0.00126EPSS
Exploits0References7
OSV
OSVadded 2026/05/28 10:16 a.m.3 views

UBUNTU-CVE-2026-46173

In the Linux kernel, the following vulnerability has been resolved: exit: prevent preemption of oopsing TASKDEAD task When an already-exiting task oopses, maketaskdead currently calls dotaskdead with preemption enabled. That is forbidden: dotaskdead calls schedule, which has a comment saying...

7.8CVSS5.7AI score0.00126EPSS
Exploits0References8
ATTACKERKB
ATTACKERKBadded 2026/05/28 9:36 a.m.8 views

CVE-2026-46180

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix potential use-after-free issue when stopping watchdog task Watchdog task might end between sendsig and kthreadstop calls, what results in the use-after-free issue. Fix this by increasing watchdog task referenc...

7.8CVSS5.8AI score0.00135EPSS
Exploits0References9Affected Software1
EUVD
EUVDadded 2026/05/28 9:36 a.m.11 views

EUVD-2026-32807

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix potential use-after-free issue when stopping watchdog task Watchdog task might end between sendsig and kthreadstop calls, what results in the use-after-free issue. Fix this by increasing watchdog task referenc...

5.8AI score0.00135EPSS
Exploits0References5
CVE
CVEadded 2026/05/28 9:36 a.m.31 views

CVE-2026-46180

CVE-2026-46180 concerns a use-after-free in wifi brcmfmac when stopping the watchdog task in the Linux kernel. The vulnerability is addressed by increasing the watchdog task reference count before send_sig() and then dropping it with kthread_stop_put(). Connected OSV entries show patches in Root:...

7.8CVSS5.8AI score0.00135EPSS
Exploits0References8Affected Software1
Cvelist
Cvelistadded 2026/05/28 9:36 a.m.30 views

CVE-2026-46180 wifi: brcmfmac: Fix potential use-after-free issue when stopping watchdog task

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix potential use-after-free issue when stopping watchdog task Watchdog task might end between sendsig and kthreadstop calls, what results in the use-after-free issue. Fix this by increasing watchdog task referenc...

0.00135EPSS
Exploits0References8
CVE
CVEadded 2026/05/28 9:36 a.m.26 views

CVE-2026-46173

CVE-2026-46173 concerns the Linux kernel. The issue arises when an already-exiting task oopses and make_task_dead() calls do_task_dead() with preemption enabled, while __schedule() must be called with preemption disabled. If a preempted oopsing task is still in the dead-state, finish_task_switch(...

7.8CVSS5.7AI score0.00126EPSS
Exploits0References7Affected Software1
Cvelist
Cvelistadded 2026/05/28 9:36 a.m.30 views

CVE-2026-46173 exit: prevent preemption of oopsing TASK_DEAD task

In the Linux kernel, the following vulnerability has been resolved: exit: prevent preemption of oopsing TASKDEAD task When an already-exiting task oopses, maketaskdead currently calls dotaskdead with preemption enabled. That is forbidden: dotaskdead calls schedule, which has a comment saying...

7.8CVSS0.00126EPSS
Exploits0References7
ATTACKERKB
ATTACKERKBadded 2026/05/28 9:36 a.m.7 views

CVE-2026-46173

In the Linux kernel, the following vulnerability has been resolved: exit: prevent preemption of oopsing TASKDEAD task When an already-exiting task oopses, maketaskdead currently calls dotaskdead with preemption enabled. That is forbidden: dotaskdead calls schedule, which has a comment saying...

7.8CVSS5.7AI score0.00126EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder