● Live advisory feed
Security Advisory Fusion for CSIRTs, SOCs & Defenders
Security advisories from 24 sources — CISA, CERT-EU, NCSC-UK, BSI, CERT-FR, NCSC-NL, JPCERT/CC, JVN, HKCERT, the Canadian Cyber Centre, NVD, GitHub, Microsoft, Cisco, Fortinet, Palo Alto Networks and more — normalized, translated to English and flagged against the CISA KEV catalog. One global feed for CSIRTs, SOCs and defenders.
A remote, authenticated attacker can exploit a vulnerability in Red Hat Advanced Cluster Management and Multicluster engine for Kubernetes to execute arbitrary program code or cause a denial-of-service condition.
A remote, anonymous attacker can exploit a vulnerability in Red Hat JBoss Enterprise Application Platform to disclose information.
An attacker can exploit multiple vulnerabilities in cURL to bypass security measures, disclose confidential information, or manipulate data.
An attacker can exploit multiple vulnerabilities in Xen and Citrix Systems XenServer to escalate privileges, bypass security measures, modify and disclose data, or cause a denial-of-service condition.
An attacker can exploit multiple vulnerabilities in Red Hat Enterprise Linux to execute arbitrary program code or cause a Denial-of-Service condition.
An attacker can exploit multiple vulnerabilities in Prometheus to conduct a denial of service attack, disclose confidential information, or perform cross-site scripting attacks.
A remote, anonymous attacker can exploit a vulnerability in Red Hat Enterprise Linux to conduct a denial of service attack.
A remote, anonymous attacker can exploit multiple vulnerabilities in GNU libc to manipulate files, cause a denial-of-service condition, or carry out other unspecified attacks.
A local attacker can exploit a vulnerability in expat to conduct a Denial of Service attack.
A remote, anonymous attacker can exploit multiple vulnerabilities in Red Hat Enterprise Linux and Red Hat Satellite to disclose information or execute arbitrary code.
A remote, authenticated attacker can exploit a vulnerability in Red Hat OpenShift Container Platform to bypass security measures.
An attacker can exploit multiple vulnerabilities in Bouncy Castle BC-JAVA to bypass cryptographic security measures, disclose confidential information, or cause a denial-of-service condition.
A remote, anonymous attacker can exploit a vulnerability in Red Hat Enterprise Linux (pcs) to carry out a denial of service attack.
An attacker can exploit multiple vulnerabilities in Python to bypass security precautions and manipulate data.
An attacker can exploit multiple vulnerabilities in Apache log4j to manipulate files.
An attacker can exploit multiple vulnerabilities in CPython to bypass security measures and manipulate data.
An attacker can exploit multiple vulnerabilities in GStreamer to potentially execute arbitrary code, manipulate data, or trigger a Denial-of-Service condition.
A remote, anonymous attacker can exploit a vulnerability in the zipfile module of CPython to manipulate files.
An attacker can exploit multiple vulnerabilities in Palo Alto Networks PAN-OS to perform a Cross-Site Scripting attack, execute arbitrary code, bypass security measures, manipulate data, disclose confidential information, or trigger a Denial-of-Service condition.
An attacker can exploit multiple vulnerabilities in Xen to carry out a denial-of-service attack, disclose information, or escalate privileges.
A local attacker can exploit a vulnerability in Palo Alto Networks Cortex XDR Broker VM to escalate their privileges.
A remote, anonymous attacker can exploit a vulnerability in Python to carry out a denial of service attack.
A remote, anonymous attacker can exploit a vulnerability in Python to bypass security measures.
A remote, anonymous attacker can exploit a vulnerability in FreeType to disclose information.
An attacker can exploit multiple vulnerabilities in OpenSSH to conduct an unspecified attack, perform a denial of service attack, disclose information, manipulate files, and bypass security measures.
A remote, authenticated attacker can exploit a vulnerability in Red Hat Enterprise Linux to overwrite arbitrary files and potentially execute arbitrary code.
A local attacker can exploit multiple vulnerabilities in Linux Kernel to cause memory corruption, disclose kernel memory, or trigger denial-of-service conditions.
A remote, anonymous attacker can exploit multiple vulnerabilities in Python to manipulate files or bypass security measures.
A remote, anonymous attacker can exploit a vulnerability in GStreamer to carry out a denial of service attack.
An attacker can exploit multiple vulnerabilities in Coolify to execute arbitrary code, escalate privileges, disclose information, present false information, manipulate files, conduct a denial of service attack, and bypass security measures.
An attacker can exploit multiple vulnerabilities in Erlang/OTP to conduct a denial of service attack, disclose information, and bypass security measures.
An attacker can exploit multiple vulnerabilities in Splunk Splunk Enterprise to bypass security measures, disclose confidential information, manipulate data, execute code, cause a denial-of-service condition, and cause further unspecified impacts.
An attacker can exploit multiple vulnerabilities in Red Hat Satellite to gain elevated privileges, including administrative rights, bypass authentication, manipulate data, disclose confidential information, and cause a Denial of Service condition.
A remote, authenticated attacker can exploit a vulnerability in Python to disclose information.
A remote, anonymous attacker can exploit multiple vulnerabilities in Red Hat Enterprise Linux to conduct a denial of service attack, bypass security measures, manipulate data, or disclose confidential information.
A remote, anonymous attacker can exploit multiple vulnerabilities in vim to execute arbitrary program code.
A remote, authenticated attacker can exploit a vulnerability in Python to manipulate files.
A remote, authenticated attacker can exploit multiple vulnerabilities in n8n to perform SQL injection, bypass security measures, disclose sensitive information, manipulate data, or cause a Denial of Service condition.
A remote, anonymous attacker can exploit a vulnerability in Python to bypass security measures.
An attacker can exploit a vulnerability in vim to carry out a denial of service attack.
A remote, anonymous attacker can exploit a vulnerability in cURL to disclose information.
An attacker can exploit multiple vulnerabilities in cURL to bypass security measures, disclose confidential information, or cause a denial-of-service condition or memory corruption.
A remote, anonymous attacker can exploit multiple vulnerabilities in GStreamer to conduct a denial of service attack.
A remote, authenticated attacker can exploit multiple vulnerabilities in Google Cloud Platform to execute arbitrary program code, bypass security measures, manipulate data, disclose confidential information, or cause a denial-of-service condition.
A local attacker can exploit a vulnerability in Python and Red Hat Enterprise Linux to execute arbitrary program code.
An attacker can exploit multiple vulnerabilities in NGINX and NGINX Plus to manipulate data, execute arbitrary code, disclose confidential information, or trigger a denial-of-service condition.
An attacker from an adjacent network can exploit a vulnerability in TianoCore EDK2 to conduct a denial of service attack.
An attacker can exploit multiple vulnerabilities in Mozilla Firefox, Mozilla Firefox ESR, and Mozilla Thunderbird to execute arbitrary code, gain elevated privileges, cause memory corruption, bypass security measures, escape the sandbox, disclose confidential information, manipul…
A remote, anonymous attacker can exploit a vulnerability in cURL to bypass security measures.
A remote, authenticated attacker can exploit a vulnerability in the Red Hat OpenShift Container Platform to conduct a denial of service attack.