Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

CVE
CVEadded 2025/06/24 6:27 p.m.32 views

CVE-2025-2566

CVE-2025-2566 affects Kaleris NAVIS N4 ULC (Ultra Light Client). The vulnerability is an unsafe Java deserialization flaw that allows an unauthenticated attacker to send specially crafted requests to execute arbitrary code on the server (remote code execution). Per available documents, the issue ...

9.3CVSS8.3AI score0.00893EPSS
Exploits0References1
Hacker One
Hacker Oneadded 2019/11/04 4:12 a.m.34 views

U.S. Dept Of Defense: [HTAF4-213] [Pre-submission] Unsafe AMF deserialization (CVE-2017-5641) in Apache Flex BlazeDS at the https://www.███████/daip/messagebroker/amf

The vulnerability was an unsafe AMF Action Message Format deserialization issue in Apache Flex BlazeDS, affecting the /daip/messagebroker/amf endpoint. Successful exploitation could allow an attacker to trigger a DNS lookup by sending a crafted AMF payload. The vulnerability was identified and...

9.8CVSS8.6AI score0.48477EPSS
Exploits4
RedHat Linux
RedHat Linuxadded 2018/02/28 8:6 p.m.10 views

rubygems: Unsafe object deserialization through YAML formatted gem specifications

A vulnerability was found where the rubygems module was vulnerable to an unsafe YAML deserialization when inspecting a gem. Applications inspecting gem files without installing them can be tricked to execute arbitrary code in the context of the ruby interpreter...

9.8CVSS7.7AI score0.05545EPSS
Exploits1References5
Rows per page
Query Builder