Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

Positive Technologies
Positive Technologiesadded 2022/08/27 12:0 a.m.1 views

PT-2022-24571 · Zaver · Zaver

Name of the Vulnerable Software and Affected Versions: Zaver versions through 2020-12-15 Description: The issue allows directory traversal via the GET /.. substring. This can be exploited through the "GET /.. substring" API endpoint. Recommendations: For versions through 2020-12-15, consider...

7.5CVSS7.9AI score0.49013EPSS
Exploits1References3
OSV
OSVadded 2022/08/24 6:15 a.m.1 views

CVE-2022-36945

The Remote Keyless Entry RKE receiving unit on certain Mazda vehicles through 2020 allows remote attackers to perform unlock operations and force a resynchronization after capturing three consecutive valid key-fob signals over the radio, aka a RollBack attack. The attacker retains the ability to...

6.4CVSS5.8AI score
Exploits0References5
OSV
OSVadded 2022/07/11 1:15 a.m.2 views

CVE-2022-31512

The Atom02/flask-mvc repository through 2020-09-14 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS5.8AI score
Exploits0References1
OSV
OSVadded 2021/08/25 8:51 p.m.1 views

GHSA-8GF5-Q9P9-WVMC Data race in atomic-option

An issue was discovered in the atomic-option crate through 2020-10-31 for Rust. Because AtomicOption implements Sync unconditionally, a data race can occur...

5.9CVSS5.9AI score0.00389EPSS
Exploits1References4
OSV
OSVadded 2021/08/25 8:48 p.m.1 views

GHSA-WGX2-6432-J3FW Unsoundness in bigint

An issue was discovered in the bigint crate through 2020-05-07 for Rust. It allows a soundness violation...

9.8CVSS5.9AI score0.00433EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2021/05/21 12:0 a.m.4 views

PT-2021-11316 · Stmicroelectronics · Stm32L4

Name of the Vulnerable Software and Affected Versions: STMicroelectronics STM32L4 devices through 2020-10-19 Description: The issue concerns incorrect access control in the affected devices. Specifically, the flash read-out protection RDP can be degraded from RDP level 2, which allows no access v...

7CVSS7.3AI score0.00107EPSS
Exploits0References7
OSV
OSVadded 2020/12/31 10:15 a.m.0 views

CVE-2020-35881

An issue was discovered in the traitobject crate through 2020-06-01 for Rust. It has false expectations about fat pointers, possibly causing memory corruption in, for example, Rust 2.x...

9.8CVSS7.3AI score0.00328EPSS
Exploits1References1
OSV
OSVadded 2020/12/31 10:15 a.m.0 views

CVE-2020-35860

An issue was discovered in the cbox crate through 2020-03-19 for Rust. The CBox API allows dereferencing raw pointers without a requirement for unsafe code...

9.8CVSS7.3AI score0.00372EPSS
Exploits1References1
OSV
OSVadded 2020/04/22 2:15 p.m.1 views

CVE-2020-11416

JetBrains Space through 2020-04-22 allows stored XSS in Chats...

5.4CVSS6.1AI score
Exploits0References1
Positive Technologies
Positive Technologiesadded 2020/03/19 12:0 a.m.2 views

PT-2020-12267 · Denx +2 · Das U-Boot +2

Name of the Vulnerable Software and Affected Versions: Das U-Boot versions through 2020.01 Description: The issue allows attackers to bypass verified boot restrictions and subsequently boot arbitrary images by providing a crafted FIT image to a system configured to boot the default configuration...

10CVSS8.1AI score0.01959EPSS
Exploits1References98
Rows per page
Query Builder