CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

239 matches found

EUVD•added 2 days ago•7 views

EUVD-2025-210020

Memory Corruption when processing device identifier strings that exceed the expected maximum length...

7.8CVSS5.8AI score0.00011EPSS

Exploits0References2

ATTACKERKB•added 3 days ago•5 views

CVE-2025-59605

Memory Corruption when processing device identifier strings that exceed the expected maximum length...

7.8CVSS5.8AI score0.00011EPSS

Exploits0References2

CVE•added 3 days ago•11 views

CVE-2025-59605

Technical details are not publicly available in the provided documents. No information on affected products, root cause, impact, or fixes is included. Monitor for updates and request vendor clarification when new data becomes available.

7.8CVSS5.8AI score0.00011EPSS

Exploits0References1Affected Software1

Positive Technologies•added 3 days ago•10 views

PT-2026-45630

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description Memory corruption occurs when processing device identifier strings that exceed the expected maximum length. Recommendations At the moment, there is no informatio...

7.8CVSS5.8AI score0.00011EPSS

Exploits0References4

Tenable Nessus•added 6 days ago•6 views

Linux Distros Unpatched Vulnerability : CVE-2026-46151

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - usb: usblp: fix heap leak in IEEE 1284 device ID via short response usblpctrlmsg collapses the usbcontrolmsg return value to 0/-errno, discarding the actual...

5.9AI score0.00032EPSS

Exploits0References2

NVD•added 2026/05/28 10:16 a.m.•7 views

CVE-2026-4377

Dlink DWR-X1820 router uses weak default password generated from its IMEI number and does not require users to change it. An attacker who knows how passwords are generated can easily crack the default password if they have the device IMEI number. This issue was fixed in version 1.00B16CP...

6CVSS0.0002EPSS

Exploits0References2

Vulnrichment•added 2026/05/28 9:2 a.m.•3 views

CVE-2026-4377 Use of Weak Credentials in D-Link DWR-X1820 router

6CVSS5.8AI score0.0002EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: 9p/xen: fixed the issue of releasing IRQs twice. Kernel logs indicate that an IRQ was released twice. The correct device ID must be passed during the IRQ release process. Dominique: removed the confusing variable reset to 0...

7.8CVSS6.2AI score0.00025EPSS

Exploits0References2

RedhatCVE•added 2026/05/15 7:57 p.m.•6 views

CVE-2026-22706

Strapi is an open source headless content management system. In Strapi versions prior to 5.33.3, changing or resetting a user's password did not invalidate the user's existing refresh-token sessions by default. The refresh-token invalidation step in the users-permissions and admin authentication...

6.5CVSS5.8AI score0.00059EPSS

Exploits0References1

Github Security Blog•added 2026/05/13 8:2 p.m.•5 views

Strapi: Password Reset Does Not Revoke Existing Refresh Sessions

Summary of CVE-2026-22706 Vulnerability Details - CVE: CVE-2026-22706 - CVSS v3.1 Vector: CVSS:4.0/AV:N/AC:H/AT:N/PR:H/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N 2.1 — Low - Affected Versions: @strapi/admin and @strapi/plugin-users-permissions =5.33.3 Description of CVE-2026-22706 In Strapi versions prio...

6.5CVSS5.8AI score0.00059EPSS

Exploits0References3Affected Software2