CVEs Published
CWE 4.14 is available
2024-03-01MITRE has released version 4.14 of the Common Weakness Enumeration (CWE) with a new weakness for "Hardware Micro Architectures", a view for "ISA/IEC 62443 Requirements", and new demonstrative examples from "HACK@DAC". Changes in 4.14 New Waknesses: CWE-1420: Exposure of Sensitive Information du...
What's new in SecDB 24.2
2024-02-29This new version of SecDB brings new features and improvements. Polished UI, improved support for EPSS, Web & Social references (from Reddit and Mastodon) in CVEs, new Security Advisories and sections (NASL & NVT and Packages), and much more. Improved the EPSS (Exploit Prediction Scoring System) s...
What's new in SecDB 22.11 - EPSS, Packages & Software, new Security Advisory feeds... and more!
2022-11-30Notable changes in SecDB Introduced the Exploit Prediction Scoring System (EPSS) Added the Exploit Prediction Scoring System (EPSS) score in all tables and CVE pages. The Exploit Prediction Scoring System (EPSS) is an open, data-driven effort for estimating the likelihood (probability) that a sof...
- 2022 CWE Top 25 Most Dangerous Software Weaknesses (2022-06-28)
- CISA Adds 34 Known Exploited Vulnerabilities to Catalog (2022-05-25)
- CISA Adds 20 Known Exploited Vulnerabilities to Catalog (2022-05-24)
- CSIRT Publish 71 known vulnerabilities based on evidence of active exploitation (2022-05-12)
- Nmap Log4Shell NSE script for discovery Apache Log4j RCE (CVE-2021-44228) (2021-12-13)
- ...all articles
ALPINE:CVE-2023-46103
2024-05-16medium
intel-ucode vulnerability
ALPINE:CVE-2023-45745
2024-05-16high
intel-ucode vulnerability
ALPINE:CVE-2023-45733
2024-05-16low
intel-ucode vulnerability
USN-6778-1
2024-05-16medium
Linux kernel vulnerabilities
USN-6777-1
2024-05-16high
Linux kernel vulnerabilities
USN-6776-1
2024-05-16medium
Linux kernel vulnerabilities
USN-6775-1
2024-05-16medium
Linux kernel vulnerabilities
USN-6774-1
2024-05-16medium
Linux kernel vulnerabilities
ALPINE:CVE-2023-46842
2024-05-16xen vulnerability
ALPINE:CVE-2024-31142
2024-05-16xen vulnerability
CVE-2024-28063
2024-05-18
Kiteworks Totemomail through 7.0.0 allows /responsiveUI/EnvelopeOpenServlet envelopeRecipient reflected XSS....
CVE-2024-28064
2024-05-18
Kiteworks Totemomail 7.x and 8.x before 8.3.0 allows /responsiveUI/EnvelopeOpenServlet messageId directory traversal for...
CVE-2024-36050
2024-05-18
Nix through 2.22.1 mishandles certain usage of hash caches, which makes it easier for attackers to replace current sourc...
CVE-2024-36048
2024-05-18
QAbstractOAuth in Qt Network Authorization in Qt before 5.15.17, 6.x before 6.2.13, 6.3.x through 6.5.x before 6.5.6, an...
CVE-2024-5094
2024-05-18CVSS3 7.3 CVSS2 7.5 CWE-89
A vulnerability was found in SourceCodester Best House Rental Management System 1.0 and classified as critical. This iss...
CVE-2024-36043
2024-05-18
question_image.ts in SurveyJS Form Library before 1.10.4 allows contentMode=youtube XSS via the imageLink property....
CVE-2024-5093
2024-05-18CVSS3 7.3 CVSS2 7.5 CWE-89
A vulnerability has been found in SourceCodester Best House Rental Management System 1.0 and classified as critical. Thi...
CVE-2024-34083
2024-05-18CVSS3 5.4 CWE-349
aiosmptd is a reimplementation of the Python stdlib smtpd.py based on asyncio. Prior to version 1.4.6, servers based on...
CVE-2024-31879
2024-05-18CVSS3 7.5 CWE-502
IBM i 7.2, 7.3, and 7.4 could allow a remote attacker to execute arbitrary code leading to a denial of service of networ...
CVE-2024-3745
2024-05-18CVSS3 7.8 CWE-863
MSI Afterburner v4.6.6.16381 Beta 3 is vulnerable to an ACL Bypass vulnerability in the RTCore64.sys driver, which leads...