CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

17716 matches found

Ubuntu•added 2026/03/16 3:20 p.m.•7 views

USN-8098-1: Linux kernel vulnerabilities

Qualys discovered that several vulnerabilities existed in the AppArmor Linux kernel Security Module LSM. An unprivileged local attacker could use these issues to load, replace, and remove arbitrary AppArmor profiles causing denial of service, exposure of sensitive information kernel memory, local...

7.8CVSS6AI score0.00248EPSS

Exploits0References1

Tenable Nessus•added 2026/03/16 12:0 a.m.•8 views

EulerOS Virtualization 2.10.1 : kernel (EulerOS-SA-2026-1537)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : media: v4l2-mem2mem: add lock to protect parameter numrdyCVE-2023-53519 md: Replace snprintf with scnprintfCVE-2022-50299 mm/vmscan...

7.8CVSS7.6AI score0.00544EPSS

Exploits2References99

Snyk•added 2026/03/13 3:48 p.m.•6 views

Time-of-check Time-of-use (TOCTOU) Race Condition

Overview openclaw is a 🦞 OpenClaw — Personal AI Assistant Affected versions of this package are vulnerable to Time-of-check Time-of-use TOCTOU Race Condition through the handling of temporary file creation and population in the sandboxed file system bridge. An attacker can write arbitrary data...

7.5CVSS5.9AI score0.0008EPSS

Exploits0References3

Redos•added 2026/03/13 12:0 a.m.•3 views

ROS-20260313-73-0009

A vulnerability in the nfsfsprocnetinit function of the NFS file system of the Linux operating system kernel is related to incorrect resource cleanup or release. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS7.3AI score0.00183EPSS

Exploits0

RedHat Linux•added 2026/03/12 9:34 p.m.•4 views

runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects

A flaw was found in runc. This attack is a more sophisticated variant of CVE-2019-16884, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process...

7.5CVSS7.3AI score0.00526EPSS

Exploits1References6

Github Security Blog•added 2026/03/12 8:32 p.m.•9 views

TinaCMS CLI has Arbitrary File Read via Disabled Vite Filesystem Restriction

Summary The TinaCMS CLI dev server configures Vite with server.fs.strict: false, which disables Vite's built-in filesystem access restriction. This allows any unauthenticated attacker who can reach the dev server to read arbitrary files on the host system Details When running tinacms dev, the CLI...

6.2CVSS5.9AI score0.01025EPSS

Exploits1References3Affected Software1

Vulnrichment•added 2026/03/12 4:48 p.m.•6 views

CVE-2026-28792 Cross-Origin File Exfiltration via CORS Misconfiguration + Path Traversal in TinaCMS

Tina is a headless content management system. Prior to 2.1.8 , the TinaCMS CLI dev server combines a permissive CORS configuration Access-Control-Allow-Origin: with the path traversal vulnerability previously reported to enable a browser-based drive-by attack. A remote attacker can enumerate the...

9.6CVSS6AI score0.00535EPSS

Exploits1References1

OSV•added 2026/03/12 10:32 a.m.•5 views

CLSA-2026-1773311565 nfs-utils: Fix of CVE-2025-12801

CVE-2025-12801: fix rpc.mountd privilege escalation allowing NFSv3 clients to bypass rootsquash and allsquash when mounting subdirectories...

6.5CVSS5.8AI score0.00462EPSS

Exploits0References1

CNVD•added 2026/03/12 12:0 a.m.•1 views

OpenClaw File Inclusion Vulnerability

OpenClaw is openclaw open source an intelligent artificial assistant. OpenClaw suffers from a file inclusion vulnerability. An attacker can exploit this vulnerability to read arbitrary files in the local file system...

8.2CVSS5.9AI score0.00292EPSS

Exploits0References1

ATTACKERKB•added 2026/03/11 10:58 p.m.•5 views

CVE-2026-31988

yauzl aka Yet Another Unzip Library version 3.2.0 for Node.js contains an off-by-one error in the NTFS extended timestamp extra field parser within the getLastModDate function. The while loop condition checks cursor data.length + 4 instead of cursor + 4 = data.length, allowing readUInt16LE to rea...

6.9CVSS6AI score0.00485EPSS

Exploits0References5Affected Software1

SUSE CVE•added 2026/03/11 5:29 p.m.•3 views

SUSE CVE-2025-12801

A vulnerability was recently discovered in the rpc.mountd daemon in the nfs-utils package for Linux, that allows a NFSv3 client to escalate the privileges assigned to it in the /etc/exports file at mount time. In particular, it allows the client to access any subdirectory or subtree of an exporte...

6.5CVSS5.8AI score0.00462EPSS

Exploits0References7

OSV•added 2026/03/11 12:9 a.m.•4 views

GHSA-364Q-W7VH-VHPC OliveTin's unsafe parsing of UniqueTrackingId can be used to write files

When the saveLogs feature is enabled, OliveTin persists execution log entries to disk. The filename used for these log files is constructed in part from the user-supplied UniqueTrackingId field in the StartAction API request. This value is not validated or sanitized before being used in a file...

8.5CVSS6.5AI score0.00712EPSS

Exploits1References5