9.8 CVE-2023-44014
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain multiple stack overflows...

2023-09-27 18:45:00

9.8 CVE-2023-44013
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack overflow...

2023-09-27 18:45:00

5.4 CVE-2023-30959
In Apollo change requests, comments added by users could contain a javascript URI link that when rendered...

2023-09-27 18:45:00

9.8 CVE-2023-44021
Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a stack overflow...

2023-09-27 18:44:00

5.5 CVE-2023-40426
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sonoma...

2023-09-27 18:43:00

7.2 CVE-2023-39377
SiberianCMS - CWE-434: Unrestricted Upload of File with Dangerous Type - A malicious user with administrative...

2023-09-27 18:43:00

6.5 CVE-2023-39376
SiberianCMS - CWE-284 Improper Access Control Authorized user may disable a security feature over the...

2023-09-27 18:43:00

8.8 CVE-2023-39378
SiberianCMS - CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...

2023-09-27 18:42:00

5.5 CVE-2023-40429
A permissions issue was addressed with improved validation. This issue is fixed in tvOS 17, iOS 17 and...

2023-09-27 18:41:00

5.5 CVE-2023-40428
The issue was addressed with improved handling of caches. This issue is fixed in iOS 17 and iPadOS 17....

2023-09-27 18:41:00

7.8 CVE-2023-40431
The issue was addressed with improved memory handling. This issue is fixed in iOS 17 and iPadOS 17....

2023-09-27 18:40:00

5.5 CVE-2023-23495
A permissions issue was addressed with improved redaction of sensitive information. This issue is fixed...

2023-09-27 18:40:00

What is the Sherlock® KB project?

First of all KB for "Knowledge Base". The company ProHacktive is making its database of known vulnerabilities to date available for free. This database combines Nist's CVE database (https://nvd.nist.gov/), the CWE database (https://cwe.mitre.org/) and the CAPEC database (https://capec.mitre.org/).

For what purpose?

ProHacktive's promise is the democratization of the Cybersecurity Audit. For this, it seemed relevant to us to offer our "Knowledge Base" in different languages. Associated with this multilingual database, a clear and concise interface allows you to consult all the CVE ("Common Vulnerabilities and Exposures") present on your network. The Sherlock® service database is updated every hour from the various sources enriching our Sherlock® KB and immediately tested on the devices concerned by the new vulnerability.

Search for vulnerabilities

We also offer a simple search module in the description of each CVE. For the more curious, an advanced search allows you to point precisely to an application, an OS or a hardware. This advanced search is based on the mechanics used in our solution Sherlock®: the permanent Cybersecurity audit accessible financially and technically to all.

Developments?

We will add new languages regularly. A monitoring module will be implemented: you will be able to monitor an application, an OS or a hardware to be alerted of new vulnerabilities concerning it. Subscribe to our mailing list to be alerted when this feature is released (available on search results).