Lucene search
K

3460 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/29 12:0 a.m.12 views

Azure Linux 3.0 Security Update: CBL-Mariner Releases (CVE-2026-39829)

The version of CBL-Mariner Releases installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2026-39829 advisory. - The RSA and DSA public key parsers did not enforce size limits on key parameters. A crafted...

7.5CVSS5.8AI score0.004EPSS
Exploits0References1
Circl
Circl
added 2026/05/26 7:0 p.m.13 views

CVE-2026-8856

creationtimestamp| type| source ---|---|--- 2026-05-26 19:00:50+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmroikayjn2t...

9.1CVSS5.8AI score0.00197EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/26 12:56 p.m.12 views

CVE-2026-48132

The Security Gateway does not correctly validate a length value in certain IKE packets when NAT-T is used 4500/UDP. As a result, a specially crafted or malformed packet can cause the VPN processing service to terminate unexpectedly, leading to denial of service temporary interruption of VPN...

8.1CVSS5.8AI score0.02139EPSS
Exploits0References2
NVD
NVD
added 2026/05/25 3:16 p.m.12 views

CVE-2018-25367

NASA openVSP 3.16.1 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an excessively long string in the geometry name field. Attackers can trigger a denial of service by pasting a 5000-byte payload into the name input field within the Geom...

6.9CVSS0.00168EPSS
Exploits0References3
The Hacker News
The Hacker News
added 2026/05/23 11:55 a.m.38 views

Claude Mythos AI Finds 10,000 High-Severity Flaws in Widely Used Software

Anthropic on Friday disclosed that Project Glasswing has helped uncover more than 10,000 high- or critical-severity vulnerabilities across some of the most "systemically" important software across the world since the cybersecurity initiative went live last month. Project Glasswing is a defensive...

9.3CVSS6.7AI score0.00468EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2026/05/23 1:29 a.m.22 views

SUSE CVE-2026-39829

The RSA and DSA public key parsers did not enforce size limits on key parameters. A crafted public key with an excessively large modulus or DSA parameter could cause several minutes of CPU consumption during signature verification. This could be triggered by unauthenticated clients during public...

7.5CVSS5.8AI score0.004EPSS
Exploits0References28
Circl
Circl
added 2026/05/22 5:4 p.m.8 views

CVE-2022-31231

creationtimestamp| type| source ---|---|--- 2026-05-22 17:04:19+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmhg4jwbkx2t...

7.5CVSS5.8AI score0.00346EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2026/05/21 9:52 p.m.8 views

@airalogy/airalogy-engine (>=0.0.1 <=0.0.2) potentially affected by CVE-2026-46695 via @boxlite-ai/boxlite (=0.8.2)

@boxlite-ai/boxlite NPM version =0.8.2 is affected by a known vulnerability. The following packages have a transitive dependency on @boxlite-ai/boxlite and may be impacted: - @airalogy/airalogy-engine =0.0.1, =0.0.2 Source cves: CVE-2026-46695 Source advisory: OSV:GHSA-G6WW-W5J2-R7X3...

10CVSS5.4AI score0.00289EPSS
Exploits0
Wolfi
Wolfi
added 2026/05/20 7:48 p.m.23 views

CVE-2026-46378 vulnerabilities

Vulnerabilities for packages: vale...

5.8AI score0.0005EPSS
Exploits0
NVD
NVD
added 2026/05/20 5:16 p.m.13 views

CVE-2026-20171

A vulnerability in the Border Gateway Protocol BGP enforce-first-as feature of Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an unauthenticated, remote attacker to trigger BGP peer flaps, resulting in a denial of service DoS condition...

6.8CVSS0.00467EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2026/05/20 11:38 a.m.26 views

GitHub Breached — Employee Device Hack Led to Exfiltration of 3,800+ Internal Repos

GitHub on Tuesday said it's investigating unauthorized access to its internal repositories after the notorious threat actor known as TeamPCP listed the platform's source code and internal organizations for sale on a cybercrime forum. "While we currently have no evidence of impact to customer...

6.1AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/20 12:0 a.m.11 views

PT-2026-42190

Name of the Vulnerable Software and Affected Versions Cisco Nexus 3000 Series Switches versions prior to 10.61s Cisco Nexus 9000 Series Switches versions prior to 10.61s Description A flaw in the Border Gateway Protocol BGP enforce-first-as feature of Cisco Nexus 3000 and 9000 Series Switches in...

6.8CVSS5.8AI score0.00467EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/19 12:0 a.m.15 views

AMD多款产品 安全漏洞

AMD Ryzen and AMD EPYC are both products of American semiconductor company AMD. AMD Ryzen is a central processing unit CPU. AMD EPYC is a high-performance server processor. Several AMD products have security vulnerabilities. These vulnerabilities stem from improper input validation, which may all...

4.6CVSS5.8AI score0.00186EPSS
Exploits0References1
Snyk
Snyk
added 2026/05/18 8:37 p.m.11 views

Out-of-bounds Write

Overview Magick.NET-Q16-HDRI-OpenMP-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this...

6.2CVSS5.9AI score0.00116EPSS
Exploits0References3
CBLMariner
CBLMariner
added 2026/05/18 8:36 p.m.22 views

CVE-2026-6638 affecting package postgresql for versions less than 16.14-1

CVE-2026-6638 affecting package postgresql for versions less than 16.14-1. An upgraded version of the package is available that resolves this issue...

8.8CVSS5.8AI score0.0018EPSS
Exploits0
NVD
NVD
added 2026/05/18 3:16 p.m.43 views

CVE-2026-41949

Dify before version 1.14.2 contains an authorization bypass vulnerability in the file preview endpoint that allows any authenticated user to read up to 3,000 characters of any uploaded document across all tenants and workspaces using only the file's UUID. Attackers can access the...

8.2CVSS0.00435EPSS
Exploits1References6
NVD
NVD
added 2026/05/16 4:16 p.m.10 views

CVE-2020-37234

Internet Download Manager 6.38.12 contains a buffer overflow vulnerability in the Scheduler component that allows local attackers to crash the application by supplying oversized input. Attackers can paste malicious data exceeding 5000 bytes into the 'Open the following file when done' field to...

6.9CVSS0.00147EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/16 3:25 p.m.8 views

EUVD-2020-31238

Internet Download Manager 6.38.12 contains a buffer overflow vulnerability in the Scheduler component that allows local attackers to crash the application by supplying oversized input. Attackers can paste malicious data exceeding 5000 bytes into the 'Open the following file when done' field to...

6.9CVSS6AI score0.00147EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/15 12:0 a.m.10 views

AMD多款产品 缓冲区错误漏洞

AMD Radeon is a set of device driver and utility software packages developed by American semiconductor company AMD for Advanced Micro Devices’ graphics cards and GPUs. Several AMD products have a buffer error vulnerability, which stems from insufficient parameter cleaning. This vulnerability may...

4.6CVSS6AI score0.00112EPSS
Exploits0References1
Circl
Circl
added 2026/05/14 6:32 a.m.15 views

CVE-2026-6271

creationtimestamp| type| source ---|---|--- 2026-05-14 06:32:06+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mls72nq6sn2q 2026-05-14 09:06:26+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlshon6mjj2k 2026-05-14 13:30:30+00:00| seen|...

9.8CVSS5.7AI score0.00665EPSS
Exploits1References4
Rows per page
Query Builder