CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2026/02/18 12:0 a.m.•6 views

Amazon Linux 2023 : kmod-nvidia-open-dkms (ALAS2023NVIDIA-2026-272)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023NVIDIA-2026-272 advisory. NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attacker could cause an integer overflow or wraparound. A successful exploit of this vulnerability mig...

7.8CVSS5.7AI score0.00186EPSS

Tenable Nessus•added 2026/02/18 12:0 a.m.•4 views

Amazon Linux 2023 : nvidia-libXNVCtrl, nvidia-libXNVCtrl-devel, nvidia-settings (ALAS2023NVIDIA-2026-265)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023NVIDIA-2026-265 advisory. NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attacker could cause an integer overflow or wraparound. A successful exploit of this vulnerability mig...

7.8CVSS5.7AI score0.00186EPSS

Amazon•added 2026/02/05 12:0 a.m.•7 views

Medium: golang-github-cpuguy83-go-md2man

Issue Overview: net/http: memory exhaustion in Request.ParseForm CVE-2025-61726 archive/zip: denial of service when parsing arbitrary ZIP archives CVE-2025-61728 crypto/tls: handshake messages may be processed at the incorrect encryption level CVE-2025-61730 crypto/tls: Config.Clone copies...

Amazon•added 2026/02/05 12:0 a.m.•8 views

Medium: oci-add-hooks

10CVSS6.7AI score0.00765EPSS

Amazon•added 2026/02/05 12:0 a.m.•10 views

Medium: golist

Amazon•added 2026/02/05 12:0 a.m.•8 views

Medium: containerd

10CVSS6.7AI score0.00765EPSS

Amazon•added 2026/02/05 12:0 a.m.•9 views

Medium: amazon-ecr-credential-helper

Amazon•added 2026/02/05 12:0 a.m.•10 views

Medium: golist

Amazon•added 2026/02/05 12:0 a.m.•9 views

Medium: cri-tools

Amazon•added 2026/02/05 12:0 a.m.•10 views

Medium: libcap

Amazon•added 2026/02/05 12:0 a.m.•4 views

Important: kernel-livepatch-6.1.158-180.294

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: remove never-working support for setting nsh fields CVE-2025-40254 Affected Packages: kernel-livepatch-6.1.158-180.294 Issue Correction: Please ensure you have live patching enabled. Run dnf upda...

5.3AI score0.00199EPSS

Tenable Nessus•added 2026/02/05 12:0 a.m.•4 views

Amazon Linux 2 : python-urllib3, --advisory ALAS2-2026-3149 (ALAS-2026-3149)

The version of python-urllib3 installed on the remote host is prior to 1.25.9-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2026-3149 advisory. urllib3 is an HTTP client library for Python. urllib3's streaming API is designed for the efficient handling of large HTTP...

8.9CVSS5.6AI score0.0068EPSS

Amazon•added 2026/02/05 12:0 a.m.•6 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: tcpmetrics: use dstdevnetrcu CVE-2025-40075 Affected Packages: kernel Note: This advisory is applicable to Amazon Linux 2 - Kernel-5.4 Extra. Visit this page to learn more about Amazon Linux 2 AL2 Extras and this...

5.2AI score0.00164EPSS

Amazon•added 2026/02/05 12:0 a.m.•7 views

Medium: aws-nitro-enclaves-cli

Issue Overview: openssl: rust-openssl Use-After-Free in Md::fetch and Cipher::fetch CVE-2025-3416 Affected Packages: aws-nitro-enclaves-cli Note: This advisory is applicable to Amazon Linux 2 - Nitro-enclaves Extra. Visit this page to learn more about Amazon Linux 2 AL2 Extras and this FAQ sectio...

3.7CVSS5.4AI score0.00426EPSS

Tenable Nessus•added 2026/02/05 12:0 a.m.•6 views

Amazon Linux 2023 : nodejs20, nodejs20-devel, nodejs20-full-i18n (ALAS2023-2026-1402)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1402 advisory. Bypass File System Permissions using crafted symlinks CVE-2025-55130 A flaw in Node.js's buffer allocation logic can expose uninitialized memory when allocations are interrupted, when using th...

9.1CVSS7AI score0.01056EPSS

Exploits2References14

Tenable Nessus•added 2026/02/05 12:0 a.m.•1 views

Amazon Linux 2023 : nerdctl (ALAS2023-2026-1400)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1400 advisory. SSH Agent servers do not validate the size of messages when processing new identity requests, which may cause the program to panic if the message is malformed due to an out of bounds read...

5.3CVSS6.7AI score0.00521EPSS

Exploits0References6

Tenable Nessus•added 2026/02/05 12:0 a.m.•2 views

Amazon Linux 2 : nerdctl, --advisory ALAS2-2026-3155 (ALAS-2026-3155)

The version of nerdctl installed on the remote host is prior to 2.2.1-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2026-3155 advisory. SSH Agent servers do not validate the size of messages when processing new identity requests, which may cause the program ...

5.3CVSS6.8AI score0.00521EPSS

Exploits0References6

Amazon•added 2026/02/05 12:0 a.m.•5 views

Medium: nerdctl

Issue Overview: SSH Agent servers do not validate the size of messages when processing new identity requests, which may cause the program to panic if the message is malformed due to an out of bounds read. CVE-2025-47914 SSH servers parsing GSSAPI authentication requests do not validate the number...

5.3CVSS6.6AI score0.00521EPSS

Amazon•added 2026/02/05 12:0 a.m.•4 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: tcpmetrics: use dstdevnetrcu CVE-2025-40075 Affected Packages: kernel Note: This advisory is applicable to Amazon Linux 2 - Kernel-5.15 Extra. Visit this page to learn more about Amazon Linux 2 AL2 Extras and this...

5.2AI score0.00164EPSS