CVEs Published
What's new in SecDB 24.8
2024-08-12This new version of SecDB brings new features and improvements. Added CVSS v4.0 support Last November 2023, the final specifications for CVSS v4.0 were released by FIRST and organizations and vendors began adopting the new standard for determining vulnerability severity. In late June 2024, NIST...
CWE 4.14 is available
2024-03-01MITRE has released version 4.14 of the Common Weakness Enumeration (CWE) with a new weakness for "Hardware Micro Architectures", a view for "ISA/IEC 62443 Requirements", and new demonstrative examples from "HACK@DAC". Changes in 4.14 New Waknesses: CWE-1420: Exposure of Sensitive Information du...
What's new in SecDB 24.2
2024-02-29This new version of SecDB brings new features and improvements. Polished UI, improved support for EPSS, Web & Social references (from Reddit and Mastodon) in CVEs, new Security Advisories and sections (NASL & NVT and Packages), and much more. Improved the EPSS (Exploit Prediction Scoring System) s...
- What's new in SecDB 22.11 - EPSS, Packages & Software, new Security Advisory feeds... and more! (2022-11-30)
- 2022 CWE Top 25 Most Dangerous Software Weaknesses (2022-06-28)
- CISA Adds 34 Known Exploited Vulnerabilities to Catalog (2022-05-25)
- CISA Adds 20 Known Exploited Vulnerabilities to Catalog (2022-05-24)
- CSIRT Publish 71 known vulnerabilities based on evidence of active exploitation (2022-05-12)
- Nmap Log4Shell NSE script for discovery Apache Log4j RCE (CVE-2021-44228) (2021-12-13)
- ...all articles
FEDORA-2024-1e6d6f8452
2024-09-20critical
Fedora 40: python3.9
FEDORA-2024-6dedbc5cf9
2024-09-20critical
Fedora 40: python3.8
FEDORA-2024-f652468298
2024-09-20critical
Fedora 39: python3.8
FEDORA-2024-7db9258d37
2024-09-20critical
Fedora 39: python3.9
FEDORA-2024-37d9c902dd
2024-09-20high
Fedora 39: python3.11
FEDORA-2024-2fb325d068
2024-09-20medium
Fedora 39: ruby
FEDORA-2024-2fff2b9a18
2024-09-20high
Fedora 39: frr
FEDORA-2024-7a069f48e4
2024-09-20critical
Fedora 41: python3.8
FEDORA-2024-308628ebb8
2024-09-20critical
Fedora 41: python3.9
FEDORA-2024-ae2925c3ae
2024-09-20high
Fedora 41: python3.11
CVE-2024-9008
2024-09-19CVSS4 5.3 CVSS3 6.3 CVSS2 6.5 CWE-89
A vulnerability classified as critical was found in SourceCodester Best Online News Portal 1.0. This vulnerability affec...
CVE-2024-7207
2024-09-19CVSS3 8.2 CWE-20
A flaw was found in Envoy. It is possible to modify or manipulate headers from external clients when pass-through routes...
CVE-2024-9006
2024-09-19CVSS4 5.3 CVSS3 6.3 CVSS2 6.5 CWE-94
A vulnerability was found in jeanmarc77 123solar 1.8.4.5. It has been rated as critical. Affected by this issue is some ...
CVE-2024-9007
2024-09-19CVSS4 5.3 CVSS3 3.5 CVSS2 4 CWE-79
A vulnerability classified as problematic has been found in jeanmarc77 123solar 1.8.4.5. This affects an unknown part of...
CVE-2024-46984
2024-09-19CVSS3 8.6 CWE-611
The reference validator is a tool to perform advanced validation of FHIR resources for TI applications and interoperabil...
CVE-2023-27584
2024-09-19CVSS3 9.8 CWE-321
Dragonfly is an open source P2P-based file distribution and image acceleration system. It is hosted by the Cloud Native ...
CVE-2024-45410
2024-09-19CVSS3 9.8 CWE-345 CWE-348
Traefik is a golang, Cloud Native Application Proxy. When a HTTP request is processed by Traefik, certain HTTP headers s...
CVE-2024-45614
2024-09-19CVSS3 5.4 CWE-639
Puma is a Ruby/Rack web server built for parallelism. In affected versions clients could clobber values set by intermedi...
CVE-2024-46983
2024-09-19CVSS3 9.8 CWE-74
sofa-hessian is an internal improved version of Hessian3/4 powered by Ant Group CO., Ltd. The SOFA Hessian protocol uses...
CVE-2024-38210
2024-08-22CVSS3 7.8 CWE-125 CWE-NVD-noinfo
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability...