CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2666 matches found

CVE-2026-46748

A vulnerability has been identified in SINEC INS All versions V1.0 SP2 Update 6. The affected system includes a binary that is configured with the capdacoverride capability. This capability allows the process to bypass file system permission checks, resulting in unrestricted file system access...

8.8CVSS

Exploits0References1

EUVD•added 3 hours ago•3 views

EUVD-2026-35385

8.8CVSS5.5AI score

Exploits0References1

RedhatCVE•added 4 days ago•5 views

CVE-2026-42497

Archive::Tar versions before 3.08 for Perl extract hardlinks to attacker controlled paths outside the extraction directory. makespecialfile passes the tar header's linkname to link without validating it against absolute paths or .. segments, creating a hardlink that shares the victim file's inode...

7.5CVSS5.4AI score0.00048EPSS

Exploits0References1

RedhatCVE•added 4 days ago•6 views

CVE-2026-8704

Crypt::DSA versions through 1.19 for Perl use 2-args open, allowing existing files to be modified...

6.5CVSS5.3AI score0.00012EPSS

Exploits0References1

RedhatCVE•added 4 days ago•6 views

CVE-2025-36145

IBM watsonx.data 2.2 through 2.3.1 IBM Lakehouse does not properly restrict inbound and outbound connections which could allow an attacker to transfer or modify files without restrictions...

5.4CVSS5.5AI score0.00028EPSS

Exploits0References1

RedhatCVE•added 4 days ago•6 views

CVE-2025-41670

A local user with low privileges may be able to influence the behavior of a privileged system service by manipulating configuration or application-related files located in user-writable areas of the filesystem. The affected service processes data from locations that are not sufficiently protected...

8.7CVSS5.5AI score0.00033EPSS

Exploits0References1

Cvelist•added 5 days ago•33 views

CVE-2026-36180

A lack of runtime integrity in GNCC GP5 v7.1.76 allows physically-proximate attackers to bypass file system read-only protections and modify system files and binaries for the duration of a boot session via a bind-mount attack...

0.00017EPSS

Exploits0References3

Positive Technologies•added 5 days ago•9 views

PT-2026-46247

5.8AI score0.00017EPSS

Exploits0References4

Vulnrichment•added 5 days ago•3 views

CVE-2026-36180

5.5AI score0.00017EPSS

Exploits0References3

Snyk•added 2026/06/01 2:9 p.m.•5 views

Missing Authorization

Overview vitest is a Next generation testing framework powered by Vite Affected versions of this package are vulnerable to Missing Authorization through the api and browser.api request handlers in the server and UI components. An attacker can run tests, modify project files, or overwrite snapshot...

9.2CVSS6AI score

Exploits0References2

Snyk•added 2026/06/01 2:9 p.m.•6 views

Missing Authorization

Overview @vitest/browser is a Browser running for Vitest Affected versions of this package are vulnerable to Missing Authorization through the api and browser.api request handlers in the server and UI components. An attacker can run tests, modify project files, or overwrite snapshots by connectin...

9.2CVSS6AI score

Exploits0References2

NVD•added 2026/05/26 5:16 p.m.•5 views

CVE-2025-36145

IBM watsonx.data 2.2 through 2.3.1 IBM Lakehouse does not properly restrict inbound and outbound connections which could allow an attacker to transfer or modify files without restrictions...

5.4CVSS0.00028EPSS

Exploits0References1

ATTACKERKB•added 2026/05/26 3:50 p.m.•5 views

CVE-2025-36145

IBM watsonx.data 2.2 through 2.3.1 IBM Lakehouse does not properly restrict inbound and outbound connections which could allow an attacker to transfer or modify files without restrictions...

5.4CVSS5.8AI score0.00028EPSS

Exploits0References2Affected Software1

CVE•added 2026/05/26 3:50 p.m.•11 views

CVE-2025-36145

CVE-2025-36145 affects IBM watsonx.data (Lakehouse) versions 2.2–2.3.1. The issue is inadequate restriction of inbound/outbound connections, enabling an attacker to transfer or modify files without proper controls. Impact: confidentiality/integrity concerns with file operations; no exploit detail...

5.4CVSS5.8AI score0.00028EPSS

Exploits0References1Affected Software1

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в libyaml-libyaml-perl

YAML-LibYAML before version 0.903.0 for Perl uses 2-args open, allowing existing files to be modified...

9.1CVSS5.4AI score0.00372EPSS

Exploits1References2

EUVD•added 2026/05/16 12:31 a.m.•7 views

EUVD-2026-30668

Crypt::DSA versions through 1.19 for Perl use 2-args open, allowing existing files to be modified...

5.8AI score0.00012EPSS

Exploits0References3

NVD•added 2026/05/15 11:16 p.m.•6 views

CVE-2026-8704

Crypt::DSA versions through 1.19 for Perl use 2-args open, allowing existing files to be modified...

6.5CVSS0.00012EPSS

Exploits0References3

OSV•added 2026/05/15 11:16 p.m.•5 views

DEBIAN-CVE-2026-8704

Crypt::DSA versions through 1.19 for Perl use 2-args open, allowing existing files to be modified...

6.5CVSS5.8AI score0.00012EPSS

Exploits0References1

OSV•added 2026/05/15 11:16 p.m.•1 views

UBUNTU-CVE-2026-8704

Crypt::DSA versions through 1.19 for Perl use 2-args open, allowing existing files to be modified...

6.5CVSS5.8AI score0.00012EPSS

Exploits0References6

Vulnrichment•added 2026/05/15 10:18 p.m.•5 views

CVE-2026-8704 Crypt::DSA versions through 1.19 for Perl use 2-args open, allowing existing files to be modified

Crypt::DSA versions through 1.19 for Perl use 2-args open, allowing existing files to be modified...

5.8AI score0.00012EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by