Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

OSV
OSVadded 2021/12/30 2:15 p.m.2 views

DEBIAN-CVE-2021-43861

Mermaid is a Javascript based diagramming and charting tool that uses Markdown-inspired text definitions and a renderer to create and modify complex diagrams. Prior to version 8.13.8, malicious diagrams can run javascript code at diagram readers' machines. Users should upgrade to version 8.13.8 t...

5.4CVSS6.3AI score0.00493EPSS
Exploits0References1
UbuntuCve
UbuntuCveadded 2021/12/30 2:15 p.m.25 views

CVE-2021-43861

Mermaid is a Javascript based diagramming and charting tool that uses Markdown-inspired text definitions and a renderer to create and modify complex diagrams. Prior to version 8.13.8, malicious diagrams can run javascript code at diagram readers' machines. Users should upgrade to version 8.13.8 t...

7.2CVSS6.8AI score0.00493EPSS
Exploits0References1
Debian CVE
Debian CVEadded 2021/12/30 1:40 p.m.21 views

CVE-2021-43861

Mermaid is a Javascript based diagramming and charting tool that uses Markdown-inspired text definitions and a renderer to create and modify complex diagrams. Prior to version 8.13.8, malicious diagrams can run javascript code at diagram readers' machines. Users should upgrade to version 8.13.8 t...

7.2CVSS6.2AI score0.00493EPSS
Exploits0
OSV
OSVadded 2017/03/28 2:59 a.m.1 views

UBUNTU-CVE-2016-9469

Multiple versions of GitLab expose a dangerous method to any authenticated user that could lead to the deletion of all Issue and MergeRequest objects on a GitLab instance. For GitLab instances with publicly available projects this vulnerability could be exploited by an unauthenticated user. A fix...

8.2CVSS7.2AI score0.00135EPSS
Exploits1References4
Debian CVE
Debian CVEadded 2017/03/28 2:46 a.m.20 views

CVE-2016-9469

Removed by vendor...

8.2CVSS7.2AI score0.00135EPSS
Exploits1
Tenable Nessus
Tenable Nessusadded 2011/11/18 12:0 a.m.32 views

Sendmail < 8.13.8 Header Processing Overflow DoS

The remote mail server is running a version of Sendmail earlier than 8.13.8. Such versions are reportedly affected by a use-after-free flaw that may allow an attacker to crash the server. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid17724; scriptversion"1.9";...

7.5CVSS5.4AI score0.07028EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2010/02/24 12:0 a.m.37 views

Debian DSA-1985-1 : sendmail - insufficient input validation

It was discovered that sendmail, a Mail Transport Agent, does not properly handle a '\0' character in a Common Name CN field of an X.509 certificate. This allows an attacker to spoof arbitrary SSL-based SMTP servers via a crafted server certificate issued by a legitimate Certification Authority,...

7.5CVSS5.6AI score0.00771EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2006/08/29 12:0 a.m.2 views

PT-2006-5235 · Sendmail · Sendmail

Name of the Vulnerable Software and Affected Versions: Sendmail versions prior to 8.13.8 Description: A use-after-free issue allows remote attackers to cause a denial of service, potentially crashing the system via a long "header line", which causes a previously freed variable to be referenced. T...

7.5CVSS7.4AI score0.07028EPSS
Exploits0References22
Rows per page
Query Builder