Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3037 matches found

Tenable Nessus
Tenable Nessusadded 2023/04/12 12:0 a.m.44 views

Mozilla Thunderbird < 102.10

The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 102.10. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2023-15 advisory. - Mozilla developers Andrew Osmond, Sebastian Hengst, Andrew McCreight, and the Mozilla Fuzzing Team...

9.8CVSS7.7AI score0.00974EPSS
Exploits0References16
OSV
OSVadded 2023/04/10 9:15 p.m.3 views

CVE-2023-28093

A user with a compromised configuration can start an unsigned binary as a service...

6.5CVSS7.1AI score0.01389EPSS
Exploits0References1
NVD
NVDadded 2023/04/10 9:15 p.m.17 views

CVE-2023-28093

A user with a compromised configuration can start an unsigned binary as a service...

7.5CVSS6.7AI score0.01389EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2023/04/10 12:0 a.m.7 views

CVE-2023-28093

A user with a compromised configuration can start an unsigned binary as a service...

7.5CVSS6.9AI score0.01389EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2023/04/10 12:0 a.m.3 views

PT-2023-21553 · Pegasystems +1 · Synchronization Engine

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: A user with a compromised configuration can start an unsigned binary as a service. There is no information provided about the estimated number of...

7.5CVSS7.4AI score0.01389EPSS
Exploits0References4
CVE
CVEadded 2023/04/10 12:0 a.m.30 views

CVE-2023-28093

Concrete details found in connected documents indicate a Pegasystems Synchronization Engine vulnerability (Pegasystem Synchronization Engine) affecting versions 3.1.1 through 3.1.27. The issue allows a user with non-administrative access to modify a client configuration and server URL, enabling p...

7.5CVSS7.5AI score0.01389EPSS
Exploits0References1Affected Software1
OSV
OSVadded 2023/04/05 2:1 p.m.15 views

OSV-2023-281 Heap-buffer-overflow in unsigned long simdutf::haswell::convert_masked_utf8_to_utf16<

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=57673 Crash type: Heap-buffer-overflow WRITE 16 Crash state: unsigned long simdutf::haswell::convertmaskedutf8toutf16 simdutf::haswell::implementation::convertutf8toutf16le roundtrip.cc...

7.2AI score
Exploits0References1
SUSE CVE
SUSE CVEadded 2023/04/04 2:16 a.m.1 views

SUSE CVE-2023-0185

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer, where sign conversion issuescasting an unsigned primitive to signed may lead to denial of service or information disclosure...

7.1CVSS6.6AI score0.00216EPSS
Exploits0References3
OSV
OSVadded 2023/03/24 4:15 a.m.1 views

CVE-2023-28818

An issue was discovered in Veritas NetBackup IT Analytics 11 before 11.2.0. The application upgrade process included unsigned files that could be exploited and result in a customer installing unauthentic components. A malicious actor could install rogue Collector executable files aptare.jar or...

5.3CVSS6.1AI score
Exploits0References1
NVD
NVDadded 2023/03/24 4:15 a.m.17 views

CVE-2023-28818

An issue was discovered in Veritas NetBackup IT Analytics 11 before 11.2.0. The application upgrade process included unsigned files that could be exploited and result in a customer installing unauthentic components. A malicious actor could install rogue Collector executable files aptare.jar or...

5.3CVSS5.2AI score0.00168EPSS
Exploits0References1
Prion
Prionadded 2023/03/24 4:15 a.m.21 views

Design/Logic Flaw

An issue was discovered in Veritas NetBackup IT Analytics 11 before 11.2.0. The application upgrade process included unsigned files that could be exploited and result in a customer installing unauthentic components. A malicious actor could install rogue Collector executable files aptare.jar or...

5CVSS5.3AI score0.00168EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichmentadded 2023/03/24 12:0 a.m.6 views

CVE-2023-28818

An issue was discovered in Veritas NetBackup IT Analytics 11 before 11.2.0. The application upgrade process included unsigned files that could be exploited and result in a customer installing unauthentic components. A malicious actor could install rogue Collector executable files aptare.jar or...

5.3CVSS5.3AI score0.00168EPSS
Exploits0References1
CVE
CVEadded 2023/03/24 12:0 a.m.75 views

CVE-2023-28818

CVE-2023-28818 affects Veritas NetBackup IT Analytics 11.x prior to 11.2.0. The upgrade process permits unsigned files, enabling a attacker to install rogue Collector executables (aptare.jar or upgrademanager.zip) on the Portal server, which could be downloaded and installed on collectors, compro...

5.3CVSS5.2AI score0.00168EPSS
Exploits0References1Affected Software2
CNNVD
CNNVDadded 2023/03/24 12:0 a.m.3 views

Veritas Technologies Veritas NetBackup 数据伪造问题漏洞

Veritas Technologies Veritas NetBackup is a powerful enterprise-class data backup management software from Veritas Technologies, USA. A security vulnerability exists in Veritas Technologies Veritas NetBackup IT Analytics version 11 prior to 11.2.0, which stems from an application upgrade process...

5.3CVSS5.7AI score0.00168EPSS
Exploits0References2
Cvelist
Cvelistadded 2023/03/24 12:0 a.m.21 views

CVE-2023-28818

An issue was discovered in Veritas NetBackup IT Analytics 11 before 11.2.0. The application upgrade process included unsigned files that could be exploited and result in a customer installing unauthentic components. A malicious actor could install rogue Collector executable files aptare.jar or...

5.3CVSS5.6AI score0.00168EPSS
Exploits0References1
NVD
NVDadded 2023/03/10 9:15 p.m.48 views

CVE-2022-33242

Memory corruption due to improper authentication in Qualcomm IPC while loading unsigned lib in audio PD...

7.8CVSS7.9AI score0.00141EPSS
Exploits0References1
Prion
Prionadded 2023/03/10 9:15 p.m.23 views

Authentication flaw

Memory corruption due to improper authentication in Qualcomm IPC while loading unsigned lib in audio PD...

4.3CVSS7.9AI score0.00141EPSS
Exploits0References1
Cvelist
Cvelistadded 2023/03/07 4:43 a.m.49 views

CVE-2022-33242 Improper authentication in Qualcomm IPC

Memory corruption due to improper authentication in Qualcomm IPC while loading unsigned lib in audio PD...

7.8CVSS8.1AI score0.00141EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2023/03/07 12:0 a.m.8 views

PT-2023-13256 · Qualcomm · Qualcomm Ipc

Name of the Vulnerable Software and Affected Versions: Qualcomm IPC affected versions not specified Description: The issue is related to memory corruption due to improper authentication in Qualcomm IPC while loading unsigned libraries in the audio processing domain. Recommendations: At the moment...

7.8CVSS7.3AI score0.00141EPSS
Exploits0References4
SUSE CVE
SUSE CVEadded 2023/02/15 6:16 a.m.3 views

SUSE CVE-2005-4605

The procfs code procmisc.c in Linux 2.6.14.3 and other versions before 2.6.15 allows attackers to read sensitive kernel memory via unspecified vectors in which a signed value is added to an unsigned value...

2.1CVSS7AI score0.01023EPSS
Exploits5References5
Rows per page
Query Builder