CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 3 days ago•15 views

CVE-2026-46325

The CVE CVE-2026-46325 affects Linux kernel RDMA/rxe where iova-to-va conversion is incorrect when MR page size differs from system PAGE_SIZE. Root cause: rxe_set_page() advances with mr->page_size steps but the page_list stores PAGE_SIZE pages, causing wrong VA calculation for two cases: MR p...

5.4AI score0.00017EPSS

Exploits0References3

OSSF Malicious Packages•added 3 days ago•5 views

Malicious code in @demica/shared (npm)

Note: This report is updated by a verification record Dep-confusion squat of internal @demica/shared at sentinel high version 99.99.100 + auto-exec postinstall canary.js beaconing to RAW IP 157.230.17.236:80/dc. Sentinel-high-version + auto-exec beacon = MALICIOUS per operator policy c913;...

OSV•added 3 days ago•4 views

MAL-2026-5351 Malicious code in @demica/shared (npm)

OSSF Malicious Packages•added 3 days ago•6 views

Malicious code in @demica/resources (npm)

Note: This report is updated by a verification record Dep-confusion squat of internal @demica/resources at sentinel high version 99.99.100 + auto-exec postinstall canary.js beaconing to RAW IP 157.230.17.236:80/dc. Sentinel-high-version + auto-exec beacon = MALICIOUS per operator policy c913;...

OSV•added 3 days ago•4 views

MAL-2026-5350 Malicious code in @demica/resources (npm)

Circl•added 3 days ago•6 views

CVE-2026-8895

creationtimestamp| type| source ---|---|--- 2026-06-09 07:15:55+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mntnmwxq7f2j 2026-06-10 11:16:54+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mnwlk2bnvx2m...

6.4CVSS5.3AI score0.00029EPSS

EUVD•added 3 days ago•7 views

EUVD-2026-35288

SAP Wily Introscope Enterprise Manager allows an unauthenticated attacker to craft a specially crafted URL. Under certain conditions, when accessed by a victim, the injected script could execute in the user�s browser within the context of the application. This issue has a low impact on the...

4.7CVSS5.6AI score0.00055EPSS

OSV•added 3 days ago•4 views

GHSA-2VQW-3MP8-CGMX Puma PROXY Protocol v1 Accepts Repeated Protocol Headers on Persistent Connections

Impact Puma is vulnerable to source IP spoofing when setremoteaddress proxyprotocol: :v1 is enabled and persistent connections are used. PROXY protocol v1 is a connection-level protocol. Support was added to Puma in v5.5.0. A proxy sends one PROXY header at the beginning of a TCP connection, befo...

7.5CVSS5.5AI score

Exploits0References4

Github Security Blog•added 3 days ago•6 views

Puma PROXY Protocol v1 Accepts Repeated Protocol Headers on Persistent Connections

5.5AI score

Exploits0References4Affected Software1

Positive Technologies•added 3 days ago•5 views

PT-2026-47841

Issue summary: When the X509 VERIFY PARAM set1 email is called by an application to validate a crafted e-mail address, such as during S/MIME message validation, an out of bounds read can happen. Impact summary: This out of bounds read will not directly exfiltrate the data read to the attacker so...

5.6AI score0.00012EPSS

Exploits0References3

FreeBSD•added 3 days ago•4 views

FreeBSD-kernel -- ASLR bypass for setuid executables via procctl(2)

Problem Description: The ELF image activator cleared per-process ASLR preference flags for setuid binaries after the code that computes the PIE base address, rather than before. As a result, a user-requested ASLR disable was still in effect at the point where the base address was chosen. Impact: ...

5.5AI score

Cvelist•added 3 days ago•27 views

CVE-2026-36822

Shenzhen Tenda Technology Co., Ltd Tenda W20E v15.11.0.6 was discovered to contain a buffer overflow in the macAddr parameter of the formDelStaState function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted HTTP request...

0.00254EPSS

Exploits0References1

Positive Technologies•added 3 days ago•6 views

PT-2026-47704

A remote, unauthenticated BLE peer can trigger a 2-byte out-of-bounds write in the Bluetooth host during L2CAP LE CoC SDU reassembly. When the application enables segmentation via chan ops.alloc buf and the chosen RX pool has a user data size smaller than 2 bytes, the segmentation counter stored ...

7.6CVSS5.5AI score0.00015EPSS

Positive Technologies•added 3 days ago•8 views

PT-2026-47834

Name of the Vulnerable Software and Affected Versions OpenSSL affected versions not specified Description A NULL pointer dereference occurs in the OpenSSL QUIC server when receiving a QUIC initial packet containing an invalid or expired token. This issue is triggered specifically when address...

9.1CVSS5.5AI score0.00066EPSS

Exploits0References58

Positive Technologies•added 3 days ago•5 views

PT-2026-47626

Impact Puma is vulnerable to source IP spoofing when set remote address proxy protocol: :v1 is enabled and persistent connections are used. PROXY protocol v1 is a connection-level protocol. Support was added to Puma in v5.5.0. A proxy sends one PROXY header at the beginning of a TCP connection,...

7.5CVSS5.6AI score

Exploits0References5

FreeBSD Advisory•added 3 days ago•7 views

FreeBSD-SA-26:32.elf

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-26:32.elf Security Advisory The FreeBSD Project Topic: ASLR bypass for setuid executables via procctl2 Category: core Module: kernel Announced: 2026-06-09...

5.8AI score

Packet Storm News•added 3 days ago•2 views

FreeBSD Security Advisory - FreeBSD-SA-26:32.elf

FreeBSD Security Advisory - The ELF image activator cleared per-process ASLR preference flags for setuid binaries after the code that computes the PIE base address, rather than before. As a result, a user-requested ASLR disable was still in effect at the point where the base address was chosen...

5.5AI score