CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

90 matches found

Circl•added 2026/03/17 3:0 a.m.•1 views

CVE-2026-4276

creationtimestamp| type| source ---|---|--- 2026-03-17 03:00:09+00:00| seen| https://kb.cert.org/vuls/id/624941 2026-03-18 23:07:02+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhem37zmxp25...

7.5CVSS5.7AI score0.00086EPSS

Exploits0References2

Cvelist•added 2026/03/16 3:31 p.m.•20 views

CVE-2026-4276 LibreChat RAG API, version 0.7.0, contains a log-injection vulnerability that allows attackers to forge log entries.

LibreChat RAG API, version 0.7.0, contains a log-injection vulnerability that allows attackers to forge log entries...

0.00086EPSS

Exploits0References1

OSV•added 2026/03/04 5:27 a.m.•0 views

MINI-935M-HR9C-4276

Bulletin has no description...

8.6CVSS5.9AI score0.00007EPSS

Exploits0

EUVD•added 2026/01/23 4:47 p.m.•2 views

EUVD-2026-4276

MyBB Delete Account Plugin 1.4 contains a cross-site scripting vulnerability in the account deletion reason input field. Attackers can inject malicious scripts that will execute in the admin interface when viewing delete account reasons...

6.1CVSS5.1AI score0.00044EPSS

Exploits1References5

RedhatCVE•added 2026/01/09 11:56 a.m.•7 views

CVE-2018-4276

A null pointer dereference was addressed with improved validation. This issue affected versions prior to macOS High Sierra 10.13.6...

7.5CVSS6.1AI score0.0039EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:57 a.m.•4 views

CVE-2023-4276

The Absolute Privacy plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.1. This is due to missing nonce validation on the 'abprprofileShortcode' function. This makes it possible for unauthenticated attackers to change user email and password via a...

8.8CVSS6.6AI score0.00115EPSS

Exploits0References1

RedhatCVE•added 2025/11/05 6:54 a.m.•4 views

CVE-2025-20728

In wlan STA driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00447115; Issue ID: MSV-4276...

7.8CVSS6.7AI score0.00017EPSS

Exploits0References1

NVD•added 2025/11/04 7:15 a.m.•2 views

CVE-2025-20728

7.8CVSS0.00017EPSS

Exploits0References1

CVE•added 2025/11/04 6:19 a.m.•5 views

CVE-2025-20728

The CVE-2025-20728 entry concerns a local escalation of privilege via an out-of-bounds write in the wlan STA driver. Connected sources indicate the vulnerability affects Qualcomm wlan STA driver with an incorrect bounds check, enabling local privilege escalation with low privileges required and n...

7.8CVSS6.3AI score0.00017EPSS

Exploits0References1Affected Software1

RedhatCVE•added 2025/08/15 2:36 a.m.•2 views

CVE-2025-4276

UsbCoreDxe has a vulnerability which can be used to write arbitrary memory inside SMRAM and execute arbitrary code at SMM level...

7.5CVSS8.1AI score0.00026EPSS

Exploits0References1

Circl•added 2025/08/13 1:59 a.m.•0 views

CVE-2025-4276

creationtimestamp| type| source ---|---|--- 2025-08-13 01:59:03+00:00| seen| Telegram/rU5oJGNs0e8Tc5wMUa5CCAp4Vm7DOdqwJfUb75b-5rHo1s...

7.5CVSS4.8AI score0.00026EPSS

Exploits0

RedhatCVE•added 2025/05/22 12:12 a.m.•4 views

CVE-2005-4276

Westell Versalink 327W allows remote attackers to cause a denial of service device crash via an IP packet with the same source and destination IPs and ports, and with the SYN flag set aka LanD. NOTE: the provenance of this issue is unknown; the details are obtained solely from third party...

7.8CVSS7AI score0.06306EPSS

Exploits0References1

Circl•added 2025/05/21 1:45 a.m.•0 views

RHSA-2024:4276

creationtimestamp| type| source ---|---|--- 2025-05-21 01:45:15+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/17098...

4.8AI score

Exploits0References1

Tenable Nessus•added 2025/03/04 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2013-4276

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple stack-based buffer overflows in LittleCMS aka lcms or liblcms 1.19 and earlier allow remote attackers to cause a denial of service crash via a crafted ...

4.3CVSS5.9AI score0.02338EPSS

Exploits0References2

Circl•added 2025/02/11 2:18 a.m.•2 views

CVE-2024-4276

creationtimestamp| type| source ---|---|--- 2025-02-11 02:18:56+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhult7wcjm2c...

7AI score

Exploits0References1

OSV•added 2024/11/07 10:6 a.m.•8 views

CGA-HC5C-4276-WXGM

Bulletin has no description...

7.5CVSS7.1AI score0.00163EPSS

Exploits0

Tenable Nessus•added 2024/10/09 12:0 a.m.•25 views

CentOS 7 : kernel (RHSA-2020:4276)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4276 advisory. - Improper input validation in BlueZ may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access. CVE-2020-1235...

8.8CVSS7.2AI score0.02874EPSS

Exploits6References3

Tenable Nessus•added 2024/07/02 12:0 a.m.•14 views

RHEL 9 : qemu-kvm (RHSA-2024:4276)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:4276 advisory. Kernel-based Virtual Machine KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the...

7.8CVSS7.4AI score0.00052EPSS

Exploits0References3

Circl•added 2023/08/10 12:15 p.m.•0 views

CVE-2023-4276

creationtimestamp| type| source ---|---|--- 2023-08-10 12:15:37+00:00| seen| https://t.me/cibsecurity/68176...

8.8CVSS8.6AI score0.00115EPSS

Exploits0References1