CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

57410 matches found

The Hacker News•added 2026/05/20 11:38 a.m.•24 views

GitHub Breached — Employee Device Hack Led to Exfiltration of 3,800+ Internal Repos

GitHub on Tuesday said it's investigating unauthorized access to its internal repositories after the notorious threat actor known as TeamPCP listed the platform's source code and internal organizations for sale on a cybercrime forum. "While we currently have no evidence of impact to customer...

6.1AI score

Exploits0

OSSF Malicious Packages•added 2026/05/20 11:37 a.m.•5 views

Malicious code in libhmac (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fccbd481dd2bd04274c5045995a08ddbcf302780c24f39eb63821d5d63a998d1 The PyPI name 'libhmac' matches the well-known libyal/libhmac C forensics library HMAC primitive, but the package contents have nothing to do with HM...

5.9AI score

Exploits0References2

RedHat Linux•added 2026/05/20 11:36 a.m.•4 views

python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API

A flaw was found in the Python webbrowser.open API. If a specially crafted URL containing "%action" is processed, an attacker could bypass a previous mitigation for CVE-2026-4519. This bypass allows for command injection into the underlying shell, potentially leading to arbitrary code execution...

7CVSS7AI score0.00021EPSS

Exploits0References7

RedHat Linux•added 2026/05/20 11:36 a.m.•5 views

python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules

A flaw was found in Python's decompression modules, including lzma.LZMADecompressor, bz2.BZ2Decompressor, and gzip.GzipFile. This vulnerability, a use-after-free, can occur if a program attempts to re-use a decompression object after a memory allocation error, especially when the system is...

9.1CVSS7.7AI score0.00164EPSS

Exploits0References10

RedHat Linux•added 2026/05/20 11:36 a.m.•9 views

Important: Red Hat Security Advisory: python3 security update

An update for python3 is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerabili...

9.1CVSS7.8AI score0.00164EPSS

Exploits0References3

RedHat Linux•added 2026/05/20 11:27 a.m.•5 views

Important: Red Hat Security Advisory: python3.9 security update

An update for python3.9 is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available f...

9.1CVSS7.8AI score0.00164EPSS

Exploits0References3

RedHat Linux•added 2026/05/20 10:23 a.m.•15 views

Important: Red Hat Security Advisory: python3.9 security update

An update for python3.9 is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

9.1CVSS7.8AI score0.00164EPSS

Exploits0References3

RedHat Linux•added 2026/05/20 10:23 a.m.•6 views

python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API

7CVSS7AI score0.00021EPSS

Exploits0References7

RedHat Linux•added 2026/05/20 10:23 a.m.•11 views

python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules

9.1CVSS7.7AI score0.00164EPSS

Exploits0References10