Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

OSV
OSVadded 2025/11/14 2:45 p.m.19 views

HSEC-2023-0002 Improper Verification of Cryptographic Signature

Improper Verification of Cryptographic Signature The Biscuit specification version 1 contains a vulnerable algorithm that allows malicious actors to forge valid Γ-signatures. Such an attack would allow an attacker to create a token with any access level. The version 2 of the specification mandate...

9.8CVSS9.4AI score0.00289EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.0 views

EUVD-2022-5973

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00289EPSS
Exploits1References6
NVD
NVDadded 2022/06/13 8:15 p.m.12 views

CVE-2022-31053

Biscuit is an authentication and authorization token for microservices architectures. The Biscuit specification version 1 contains a vulnerable algorithm that allows malicious actors to forge valid Γ-signatures. Such an attack would allow an attacker to create a token with any access level. The...

9.8CVSS0.00289EPSS
Exploits1References2
Prion
Prionadded 2022/06/13 8:15 p.m.5 views

Authentication flaw

Biscuit is an authentication and authorization token for microservices architectures. The Biscuit specification version 1 contains a vulnerable algorithm that allows malicious actors to forge valid G-signatures. Such an attack would allow an attacker to create a token with any access level. The...

7.5CVSS9.5AI score0.00289EPSS
Exploits1References2Affected Software4
CERT
CERTadded 2020/03/19 12:0 a.m.66 views

Machine learning classifiers trained via gradient descent are vulnerable to arbitrary misclassification attack

Overview Machine learning models trained using gradient descent can be forced to make arbitrary misclassifications by an attacker that can influence the items to be classified. The impact of a misclassification varies widely depending on the ML model's purpose and of what systems it is a part...

6.6AI score
Exploits0References11
NVD
NVDadded 2014/06/17 3:55 p.m.12 views

CVE-2013-6078

The default configuration of EMC RSA BSAFE Toolkits and RSA Data Protection Manager DPM 20130918 uses the Dual Elliptic Curve Deterministic Random Bit Generation DualECDRBG algorithm, which makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms by leveraging...

5.8CVSS6.1AI score0.00318EPSS
Exploits0References4
Exploit DB
Exploit DBadded 2007/05/04 12:0 a.m.26 views

Zoo 2.10 - .ZOO Compression Algorithm Remote Denial of Service

/ source: https://www.securityfocus.com/bid/23823/info The Zoo compression algorithm is prone to a remote denial-of-service vulnerability. This issue arises when applications implementing the Zoo algorithm process certain malformed archives. A successful attack can exhaust system resources and...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2007/05/04 12:0 a.m.12 views

Zoo 2.10 - .ZOO Compression Algorithm Remote Denial of Service

Zoo 2.10 - .ZOO Compression Algorithm Remote Denial of Service / source: https://www.securityfocus.com/bid/23823/info The Zoo compression algorithm is prone to a remote denial-of-service vulnerability. This issue arises when applications implementing the Zoo algorithm process certain malformed...

0.8AI score
Exploits0
Rows per page
Query Builder